[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Ports required for Tor and hidden services

In that case, what would be best approach to achieve that all traffic is forced though Tor and direct internet connection blocked, preferably even if/when the system is breached?

On 2020-01-24 14:19, Andreas Krey wrote:
On Fri, 24 Jan 2020 01:12:10 +0000, Forst wrote:
Please don't make assumptions. If outgoing traffic is restricted, which ports are required for Tor to work as in outgoing traffic default action
is drop?

Technically, all of them. A tor client connects to the OR-Ports of tor
relays, and they can be on any port. Many are on 443 and 9001, though.

But you can configure your node to only use specific ports outgoing,
see FirewallPorts and  FascistFirewall in
So, even only of 443, 9001, and perhaps 80 is workable.

- Andreas

"Totally trivial. Famous last words."
From: Linus Torvalds <torvalds@*.org>
Date: Fri, 22 Jan 2010 07:29:21 -0800
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to