[tor-talk] Ports required for Tor and hidden services

Forst forst at waifu.club
Sat Jan 25 13:30:34 UTC 2020


In that case, what would be best approach to achieve that all traffic is 
forced though Tor and direct internet connection blocked, preferably 
even if/when the system is breached?

On 2020-01-24 14:19, Andreas Krey wrote:
> On Fri, 24 Jan 2020 01:12:10 +0000, Forst wrote:
>> Please don't make assumptions. If outgoing traffic is restricted, 
>> which
>> ports are required for Tor to work as in outgoing traffic default 
>> action
>> is drop?
> 
> Technically, all of them. A tor client connects to the OR-Ports of tor
> relays, and they can be on any port. Many are on 443 and 9001, though.
> 
> But you can configure your node to only use specific ports outgoing,
> see FirewallPorts and  FascistFirewall in
> https://2019.www.torproject.org/docs/tor-manual.html.en
> So, even only of 443, 9001, and perhaps 80 is workable.
> 
> - Andreas
> 
> --
> "Totally trivial. Famous last words."
> From: Linus Torvalds <torvalds@*.org>
> Date: Fri, 22 Jan 2010 07:29:21 -0800


More information about the tor-talk mailing list