[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor transparent proxy implementation on Windows

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor transparent proxy implementation on Windows
From: Lee Fisher <blibbet@xxxxxxxxx>
Date: Sat, 24 Dec 2011 14:44:14 -0800
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 24 Dec 2011 17:43:38 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=eRNvyL299nOfhmU8DHbG5SXhuNx8vQVGrhPzFb3a7n4=; b=tVwZJZ+1bcUJzhRfe/KGmCurm8owrWKf0NmzV9K8kbnVU7sLCDzVfx/kHU7IoslquR 9oRnHczbUAZ/sSS+84+qGsiGMCnLKv7CkRKGrmk8Pk9e55Uxcu0kzs1YagJ3y0sO8p3Y 5RUeyreBKPt2i1Hpzm14UuoNWM4AcdlQhKhXU=
In-reply-to: <20111222122822.GC2671@xxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <N1--JaEkh2cw5@xxxxxxxxxxxxx> <20111222122822.GC2671@xxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.5; rv:6.0.1) Gecko/20110830 Thunderbird/6.0.1

On 12/22/11 4:28 AM, andrew@xxxxxxxxxxxxxx wrote:

https://svn.torproject.org/svn/torvm/trunk/doc/design.html.

I realize there are many reasons why a VM-based solution is useful,compared to a native solution.


However, this statement is incorrect:

"This is important in a Windows environment where capabilities likeLinux(R) netfilter or BSD(R) packet filter do not exist."

The WFP (Windows Filtering Platform) driver model has thesecapabilities. WFP deprecates the older TDI and NDIS solutions, whichalso had these capabilities. Granted, the command line interface to theearly Windows Firewall didn't match iptables, but these days it does.But the OS interface to do transparent proxying has been in NT fordecades, first with TDI and NDIS, now with WFP.


I also am confused by modern LibEvent performance and this comment:

"For Windows platforms offloading the TCP session intensive Tor processto a Linux guest with edge triggered IO can significantly improve theperformance of Tor and eliminate socket buffer problems."

Is it really a performance increase to use add: VirtualBox or QEmu (Ncomponents), a second OS (N components), WinPCap, and the OpenVPNTAP-Win32 driver to the solution? I would have thought a single WFP (orTDI or NDIS) driver would be improve the performance more than running aVM with a second OS and using TAP to talk to the virtual OS Linux network.

Is the current Windows implementation of LibEvent still thatperformance-challenged? I thought Nick and other [GSoC] LibEventcontributers have improved LibEvent to be a "first class citizen" onWindows, and have reasonably performance event implementation theseyears? Didn't the GSoC update include modern WinSock2/WinNT async model,and wasn't that helpful over the original WinSock1/Win9x model, for perf?


The document also as a broken URL pointer (HTTP 404):
http://wiki.noreply.org/noreply/TheOnionRouter/TransparentProxy
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Tor transparent proxy implementation on Windows
  - From: coderman

References:
- Re: [tor-talk] Tor transparent proxy implementation on Windows
  - From: hmoh
- Re: [tor-talk] Tor transparent proxy implementation on Windows
  - From: andrew

Prev by Author: Re: [tor-talk] Tor transparent proxy implementation on Windows
Next by Author: Re: [tor-talk] Tor transparent proxy implementation on Windows
Previous by thread: Re: [tor-talk] Tor transparent proxy implementation on Windows
Next by thread: Re: [tor-talk] Tor transparent proxy implementation on Windows
Index(es):
- Author
- Thread