[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] TransPort: Convert iptables to pf

To: Tor Relays <tor-relays@xxxxxxxxxxxxxxxxxxxx>
Subject: [tor-relays] TransPort: Convert iptables to pf
From: diffusae <punasipuli@xxxxxxxxxxx>
Date: Wed, 21 Dec 2016 20:29:17 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 21 Dec 2016 14:29:41 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.5.1

Hello!

Does anybody know how to convert this to pf rules in FreeBSD:

iptables -t nat -A OUTPUT -p tcp -d 10.192.0.0/10 -j REDIRECT --to-ports
9040

I' running a Tor client in a jail on a different IP and want to route
only the .onion traffic through.

The DNS stuff is working fine, but I can't find a solution for the above
iptables rule, which is working. I like transparently do DNS and Routing
for .onion traffic on the network.

I looked into the wiki and also find some pf rules, which are routing
all the traffic though Tor, but this only works locally.

The machine is on FreeBSD 11.0-STABLE. Tor is running in a jail with
cloned loopback interface (lo1) and has also a private IP address on the
main NIC.

Maybe you have some hints.

Thanks a lot

Regards,

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] TransPort: Convert iptables to pf
  - From: Corl3ss
- Re: [tor-relays] TransPort: Convert iptables to pf
  - From: Ivan Markin

Prev by Author: Re: [tor-relays] TransPort: Convert iptables to pf
Next by Author: Re: [tor-relays] Unwarranted discrimination of relays with dynamic IP
Previous by thread: Re: [tor-relays] Is MaxMemInQueues recognized my tor? (was: A Question about aes-ni and the use of RAM.)
Next by thread: Re: [tor-relays] TransPort: Convert iptables to pf
Index(es):
- Author
- Thread