you can try this https://www.configserver.com/cp/csf.html
> Thanks. I just could not see how Fail2ban would work on an ORport. What log > would it look at? What criteria for the jail? The fai2ban on my non-tor > VPS does not yet work with IPv6, which is partly the nature of IPV6 rather > than a programming issue. I did not realise IPV6 was ignored until a weak > email account was found. So I firewalled off most IPv6 ports instead. > > -----Original Message----- > From: tor-relays <tor-relays-boun...@lists.torproject.org> On Behalf Of > potlatch > Sent: 05 August 2019 00:04 > To: tor-relays@lists.torproject.org > Subject: Re: [tor-relays] DoS attack on Tor exit relay > > Gerry, > At this point I have no working scripts for Tor/fail2ban. Be happy to share > if they ever materialize. Fail2ban is sorely lacking documentation--or at > least I can't find detailed docs. I downloaded fail2ban on current debian > and ubuntu VPS and got different version numbers--none were the current > release. Stay tuned or give a hand. > -potlatch > > > Sent with ProtonMail Secure Email. > > ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ > On Thursday, August 1, 2019 4:16 AM, <ger...@bulger.co.uk> wrote: > >> Can we have your fail2ban scripts for the OR port? The jail and rules? >> >> Gerry >> >> -----Original Message----- >> From: tor-relays tor-relays-boun...@lists.torproject.org On Behalf Of teor >> Sent: 01 August 2019 00:28 >> To: tor-relays@lists.torproject.org >> Subject: Re: [tor-relays] DoS attack on Tor exit relay >> >> Hi, >> >>> On 1 Aug 2019, at 02:27, Larry Brandt lbra...@cni.net wrote: >>> Yes, I have fail2ban installed but the attack is focused on my ORPort >> 9001. Similarly, I have an external firewall but it permits 9001 port >> passage. >> >> If you're trying to prevent too many connections, you can adjust the DoS >> torrc options: >> DoSConnectionEnabled 1 >> DoSConnectionMaxConcurrentCount 1 >> DoSConnectionDefenseType 2 >> >> If that works, try adjusting DoSConnectionMaxConcurrentCount a bit >> higher: 10 or 25 are good values. >> >> T >> >> -- >> teor >> >> >> tor-relays mailing list >> tor-relays@lists.torproject.org >> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > > _______________________________________________ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > > _______________________________________________ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
pEpkey.asc
Description: application/pgp-keys
_______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
