[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] We're trying out guard-n-primary-guards-to-use=2

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] We're trying out guard-n-primary-guards-to-use=2
From: Toralf Förster <toralf.foerster@xxxxxx>
Date: Mon, 11 Jul 2022 12:54:59 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 11 Jul 2022 06:55:19 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gmx.net; s=badeba3b8450; t=1657536906; bh=C+1FVg9zXLByVgKlZFOpSYmR5Hgz0WqlKibJU26jYBE=; h=X-UI-Sender-Class:Date:To:References:From:Subject:In-Reply-To; b=jfRMnOwIVX5YRvM1H2ovKwS1Kuu+JukRTEFJ1q0F0aJj2LOxvKqn+++p7xRdrI1hu sDjREhxfB1Cl1N/XNqpgz6brH9fBsTQu+emoN1VBvRvTdQP5nH9mmb9hdmhK0bqalw apXyVY5UJo6XZ9lW0+qNoJ5qQ9G9lUI9KY0CBQwY=
In-reply-to: <ff8f2cab-de02-4171-1f1d-28cc41981700@abc.se>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <YrpuYipNY5x6IWWl@moria.seul.org> <YsXgVKl5mxyFVbAy@moria.seul.org> <ff8f2cab-de02-4171-1f1d-28cc41981700@abc.se>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.11.0

On 7/10/22 22:28, Logforme wrote:

A week ago I implemented  connection limits per Toralf's post:
iptables -A INPUT -p tcp --destination-port 443 -m connlimit--connlimit-mask 32 --connlimit-above 30 -j DROP
This reduced the number of connections to about 10000.

I just now noticed that the relay is flagged as overloaded. What to do?
Decrease the connection limit from 32 to .. what?
Decrease my RelayBandwidthRate even more? Seems like giving in to the DoSer.


There're still about 200-300 VPS systems DDoS'ing my 2 Tor relays.
The iptables rule halfs the pressure.
I could nearly fully stop the DDoS by using [1].


[1] https://github.com/toralf/torutils/blob/master/ddos-inbound.sh

--
Toralf

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- Re: [tor-relays] We're trying out guard-n-primary-guards-to-use=2
  - From: Roger Dingledine
- Re: [tor-relays] We're trying out guard-n-primary-guards-to-use=2
  - From: Logforme

Prev by Author: Re: [tor-relays] relay memory leak?
Next by Author: Re: [tor-relays] relay memory leak?
Previous by thread: Re: [tor-relays] We're trying out guard-n-primary-guards-to-use=2
Next by thread: [tor-relays] Is ExoneraTor still alive?
Index(es):
- Author
- Thread