Re: a problem about run tor bridge
于 2010-3-24 10:19, torsecurity 写道: > Hi, everyone! > My computer is behind a NAT and I can connect to the Tor network > directly ( not using Tor bridges although I am in China). Now I want > to configure my tor as a bridge to let my friend connect to the Tor > network. His IP is 172.18.12.xxx. My configuration file looks like: > BridgeRelay 1 > ContactInfo hegaofeng at seu dot edu dot cn > ControlPort 9051 > ExitPolicy reject *:* > Log notice stdout > Nickname ORhgf > ORPort 443 > PublishServerDescriptor 0 > RelayBandwidthBurst 10485760 > RelayBandwidthRate 5242880 > And my bridge information is: 172.18.12.161:443 > But this dosen't work. The Vidalia is always stopping at "Loading > relay information...". > I use Wireshark and find the TLS handshake is normal. > Can anyone tell me why? Thanks a lot! > 2010-03-24 > > Gaofeng He first, you can't run any tor service behind NAT unless you can configure your firewall/NAT in order to enable port forwarding. By the way, what the hell is 172.18.12.161? Who can connect to that thing? second, I do not think "Loding relay information..." has anything to do with your recent bridge configuration.
Re: a problem about run tor bridge
于 2010-3-24 10:44, torsecurity 写道: > The 172.18.12.161 is my private network address and the bridge is only > intended to be used in the internal network. > 2010-03-24 > > Gaofeng He > > *发件人:* wang.wang.test > *发送时间:* 2010-03-24 10:35:33 > *收件人:* or-talk > *抄送:* > *主题:* Re: a problem about run tor bridge > 于 2010-3-24 10:19, torsecurity 写道: >> Hi, everyone! >> My computer is behind a NAT and I can connect to the Tor network >> directly ( not using Tor bridges although I am in China). Now I want >> to configure my tor as a bridge to let my friend connect to the Tor >> network. His IP is 172.18.12.xxx. My configuration file looks like: >> BridgeRelay 1 >> ContactInfo hegaofeng at seu dot edu dot cn >> ControlPort 9051 >> ExitPolicy reject *:* >> Log notice stdout >> Nickname ORhgf >> ORPort 443 >> PublishServerDescriptor 0 >> RelayBandwidthBurst 10485760 >> RelayBandwidthRate 5242880 >> And my bridge information is: 172.18.12.161:443 >> But this dosen't work. The Vidalia is always stopping at "Loading >> relay information...". >> I use Wireshark and find the TLS handshake is normal. >> Can anyone tell me why? Thanks a lot! >> 2010-03-24 >> >> Gaofeng He > first, you can't run any tor service behind NAT unless you can > configure your firewall/NAT in order to enable port forwarding. By the > way, what the hell is 172.18.12.161? Who can connect to that thing? > > second, I do not think "Loding relay information..." has anything to > do with your recent bridge configuration. sorry to misunderstand you. http://gitweb.torproject.org/tor.git?a=blob_plain;hb=HEAD;f=doc/spec/dir-spec.txt take a look at 5.1: If a client is missing a live network-status document, it tries to fetch it from a directory cache (or from an authority if it knows no caches). On failure, the client waits briefly, then tries that network-status document again from another cache. The client does not build circuits until it has a live network-status consensus document, and it has descriptors for more than 1/4 of the routers that it believes are running. maybe that's your problem -- no enough descriptors.
Re: a problem about run tor bridge
On Wed, Mar 24, 2010 at 10:19:45AM +0800, torbridges.secur...@gmail.com wrote 3.1K bytes in 92 lines about: : But this dosen't work. The Vidalia is always stopping at "Loading relay information...". : I use Wireshark and find the TLS handshake is normal. : Can anyone tell me why? Thanks a lot! What does his info level log say when trying to connect? -- Andrew Lewman The Tor Project pgp 0x31B0974B Website: https://www.torproject.org/ Blog: https://blog.torproject.org/ Identi.ca: torproject *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: a problem about run tor bridge
On Wed, 24 Mar 2010 10:35:05 +0800 "wang.wang.test" wrote: >ÓÚ 2010-3-24 10:19, torsecurity дµÀ: >> Hi, everyone! >> My computer is behind a NAT and I can connect to the Tor network >> directly ( not using Tor bridges although I am in China). Now I want >> to configure my tor as a bridge to let my friend connect to the Tor >> network. His IP is 172.18.12.xxx. My configuration file looks like: >> BridgeRelay 1 >> ContactInfo hegaofeng at seu dot edu dot cn >> ControlPort 9051 >> ExitPolicy reject *:* >> Log notice stdout >> Nickname ORhgf >> ORPort 443 >> PublishServerDescriptor 0 >> RelayBandwidthBurst 10485760 >> RelayBandwidthRate 5242880 >> And my bridge information is: 172.18.12.161:443 >> But this dosen't work. The Vidalia is always stopping at "Loading >> relay information...". >> I use Wireshark and find the TLS handshake is normal. >> Can anyone tell me why? Thanks a lot! >> 2010-03-24 >> >> Gaofeng He >first, you can't run any tor service behind NAT unless you can configure >your firewall/NAT in order to enable port forwarding. By the way, what Actually, I think you've overstated that a little bit. Hidden services can be offered by client-only systems and therefore can do so behind a NATing router without any port forwarding beyond what the NAT is already doing. >the hell is 172.18.12.161? Who can connect to that thing? Well, one would certainly hope that it's not his real address, now that he's publicized it as being supposedly a bridge address. As far as your second question is concerned, let us hope that the answer is "no one". > >second, I do not think "Loding relay information..." has anything to do >with your recent bridge configuration. > In this, you are most likely correct. To offer a relay of any type behind a NATing router, one does have to configure the router with the appropriate RDR for port forwarding, although I confess I've never played with BINAT and therefore have no idea whether there might be a way to make it work for tor. Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * ** *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Re: a problem about run tor bridge
The 172.18.12.161 is my private network address and the bridge is only intended to be used in the internal network. 2010-03-24 Gaofeng He 发件人: wang.wang.test 发送时间: 2010-03-24 10:35:33 收件人: or-talk 抄送: 主题: Re: a problem about run tor bridge 于 2010-3-24 10:19, torsecurity 写道: Hi, everyone! My computer is behind a NAT and I can connect to the Tor network directly ( not using Tor bridges although I am in China). Now I want to configure my tor as a bridge to let my friend connect to the Tor network. His IP is 172.18.12.xxx. My configuration file looks like: BridgeRelay 1 ContactInfo hegaofeng at seu dot edu dot cn ControlPort 9051 ExitPolicy reject *:* Log notice stdout Nickname ORhgf ORPort 443 PublishServerDescriptor 0 RelayBandwidthBurst 10485760 RelayBandwidthRate 5242880 And my bridge information is: 172.18.12.161:443 But this dosen't work. The Vidalia is always stopping at "Loading relay information...". I use Wireshark and find the TLS handshake is normal. Can anyone tell me why? Thanks a lot! 2010-03-24 Gaofeng He first, you can't run any tor service behind NAT unless you can configure your firewall/NAT in order to enable port forwarding. By the way, what the hell is 172.18.12.161? Who can connect to that thing? second, I do not think "Loding relay information..." has anything to do with your recent bridge configuration.