[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] 5281E5AD.4080204@xxxxxxxxx

To: tor-talk@xxxxxxxxxxxxxxxxxxxx, lars.nooden@xxxxxxxxx
Subject: [tor-talk] 5281E5AD.4080204@xxxxxxxxx
From: M C J <mcj2770@xxxxxxxxx>
Date: Wed, 13 Nov 2013 01:40:24 +1100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 12 Nov 2013 09:41:08 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=nyqDHTNxSqSfIwfWzT91STu3HUJQdR7Vb+Pjlmemd9M=; b=hTNj0TBKUM+FoLqXd5+QGIVWOQbwjYb1vSeO0fI7SX864tUk410YlLHylVucEAf/Wt toJFxg+v+TM6q/SzBDt+GpUgGKJ4oo/A3uJ7rf98BaiYJ7jXeU7vJvJb316SpWVy4QOj zS3APL4/t+Jicwkz1BJtjwjxuB4Ctmi8vF/pQ8SSwRaF0vIz75FekY7m7Hnb+l1cE2pD mvWRlxqq12hN5VSS1DgeInlbK9r59JHAqE8hJGNKJFzzxCGm4wVdg5sEK0NW425OYIu1 2aDgQwUoBHDYykQaGh7erVDdBjQARGUpDL0taIvklZBYftmJOrxS4Y98fCnQrCMztWf2 1H5A==
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Thanks, Lars! This very simple option made it work. Thank you very much.


On 11/12/2013 05:38 AM, M C J wrote:
> I'm unable to connect to Tor with PF enabled. Without PF, Tor connects and
> runs fine (with Privoxy). Soon as PF is enabled, Tor will either
disconnect
> if already running, or fail to connect if I try.
>
> I've used a very basic pf.conf ruleset:
>
> #######################
> block in all
> pass out all keep state
> #######################

Usually loopback is not filtered[1].  You could try adding this ahead of
the above two rules:

  set skip on lo0

If Tor is listening on an external interface, then you should just need
to open that particular port

  pass in quick on $ext_if inet proto tcp to ( $ext_if ) port 8118

Otherwise, try logging blocked packets and see how it is trying to connect.

Regards,
/Lars

[1]     http://www.openbsd.org/faq/pf/filter.html
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: [tor-talk] FreeBSD PF (firewall) ruleset
Next by Author: [tor-talk] FreeBSD PF (firewall) ruleset
Previous by thread: Re: [tor-talk] Is it possible to access healthcare.gov through Tor?
Next by thread: [tor-talk] FreeBSD PF (firewall) ruleset
Index(es):
- Author
- Thread