[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] RFC1918 addresses on outside interface

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] RFC1918 addresses on outside interface
From: Paul Syverson <syverson@xxxxxxxxxxxxxxxx>
Date: Fri, 30 Nov 2012 10:07:49 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 30 Nov 2012 20:44:33 -0500
In-reply-to: <1TdrC5-000GmG-4R@xxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <cf5866d82c4bd2f3f63aaf3875539857.squirrel@xxxxxxxxxxxxxxxxxxxxxx> <1TdrC5-000GmG-4R@xxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mutt/1.5.17 (2007-11-01)

On Wed, Nov 28, 2012 at 11:37:29PM -0000, temp5@xxxxxxxxxxx wrote:
> > Running a non-exit Tor relay on Linux and have iptables set up to block
> > inbound and outbound RFC1918 addresses on the outside interface. Notice in
> > the firewall logs several seemingly random private IP addresses connection
> > attempts to my relay port getting dropped on the outside over the past few
> > months. The MAC address associated with these matches my ISP's default
> > gateway.
> >
> > Does Tor do some type of loopback on the outside int.? Or is my ISP doing
> > something peculiar with NAT?
> 
> Assuming it's my ISP, is there any way to configure my relay to discourage
> clients in my AS from using it as an entry point?

Could you say more about why you would want to do that? I ask because
this increases those clients' risk from an AS-level attacker by
mandating an increase in the number of ASes that must be traversed
between client and entry node.

-Paul
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] RFC1918 addresses on outside interface
  - From: grarpamp
- Re: [tor-talk] RFC1918 addresses on outside interface
  - From: Julian Yon

References:
- Re: [tor-talk] RFC1918 addresses on outside interface
  - From: temp5

Prev by Author: Re: [tor-talk] Guard flag vs relay bandwidth
Next by Author: [tor-talk] Orbot blocks internet connection when off wifi (issues when on mobile data network only)
Previous by thread: Re: [tor-talk] RFC1918 addresses on outside interface
Next by thread: Re: [tor-talk] RFC1918 addresses on outside interface
Index(es):
- Author
- Thread