[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Behaviour of "Address" on a multi-ip server

To: or-talk@xxxxxxxx
Subject: Behaviour of "Address" on a multi-ip server
From: Mike Cardwell <tor@xxxxxxxxxxxxxxxxxx>
Date: Thu, 26 Apr 2007 12:02:41 +0100
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Thu, 26 Apr 2007 07:02:52 -0400
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mutt/1.5.13 (2006-08-11)

Hi,

My server has many IP addresses. I was paranoid that even though I set
"Address" in my configuration, outgoing connections might originate from
one of the other IP 's on the server. So to combat this I use the
following iptables rule:

iptables -t nat -A POSTROUTING -s ! 85.234.136.20 -m owner --uid-owner debian-tor -j SNAT --to-source 85.234.136.20

Where 'debian-tor' is the user my tor process runs as, and
85.234.136.20 is the IP I want all tor outgoing connections to appear
from.

My question is. Is this a waste of time? Does tor already originate
connections from the same IP it listens on? If not, it should... At
the very minimum, it should be a documented issue.

Thanks,
Mike

Follow-Ups:
- Re: Behaviour of "Address" on a multi-ip server
  - From: phobos

Prev by Author: Accept-encoding: gzip
Next by Author: Re: Behaviour of "Address" on a multi-ip server
Previous by thread: Re: Accept-encoding: gzip
Next by thread: Re: Behaviour of "Address" on a multi-ip server
Index(es):
- Author
- Thread