[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Identifying a relay

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Identifying a relay
From: Eddie <stunnel@xxxxxxxxxxxxx>
Date: Thu, 16 Jun 2022 06:16:28 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 16 Jun 2022 09:59:37 -0400
In-reply-to: <1747384128.4506387.1655368425891@mail.yahoo.com>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <31b2f628-dfa5-239a-c694-1a2c976ad2c4@attglobal.net> <1747384128.4506387.1655368425891@mail.yahoo.com>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.10.0

Unfortunately that option is very specifically disallowed as it's considered as trying to hide the source IP.

Cheers.

On 6/16/2022 1:33 AM, Gary C. New via tor-relays wrote:

Eddie,

When experiencing similar issues, the recommended solution I received, from this list, and that seems to work best is a VPN for affected traffic.

With dnsmasq, iptables or reverse proxy, and a dedicated split-tunnel vpn, I shunt affect traffic over the split-tunnel vpn without end-users on my local network even knowing.

Seems to work fairly well.

Best of luck.

Gary

—
This Message Originated by the Sun.
iBigBlue 63W Solar Array (~12 Hour Charge)
+ 2 x Charmast 26800mAh Power Banks
= iPhone XS Max 512GB (~2 Weeks Charged)

On Wednesday, June 15, 2022, 11:56:37 PM PDT, Eddie <stunnel@xxxxxxxxxxxxx> wrote:

Have a question about how a server I connect to can tell I am running a

guard/middle relay. All I can think of is that they check the published

list of tor nodes against the IP. Or (maybe, but unlikely) portscan the

IP and probe any open ports to determine the service. Are there any

other methods that can be used.

Background: The corp my wife works for blocked our IP. The excuse they

gave was that it was due to a change made by a vendor they use to

identify malicious IP addresses. I have been running the relay for

almost 5 years without any previous flagging. They also state that

running a middle relay is not in violation of any policy, but the vendor

mis-identified our relay as an exit, hence blocking it.

After changing the IP, the new IP was also blocked in less than 24

hours. My feeling is that the vendor is now just using the full list of

tor nodes and indiscriminately blocking everything, despite what the

corp security folks say.

I'm looking for some sort of validation I can use to counter their claims.

_______________________________________________

tor-relays mailing list

tor-relays@xxxxxxxxxxxxxxxxxxxx

https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] Identifying a relay
  - From: Eddie
- Re: [tor-relays] Identifying a relay
  - From: Gary C. New via tor-relays

Prev by Author: [tor-relays] Metrics shows my relay down. But it's not.
Next by Author: Re: [tor-relays] FreeBSD 13.1: clock_gettime(CLOCK_MONOTONIC_FAST) ~ 50 % performance gain
Previous by thread: Re: [tor-relays] Identifying a relay
Next by thread: Re: [tor-relays] Identifying a relay
Index(es):
- Author
- Thread