[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] DDOS alerts from my provider

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] DDOS alerts from my provider
From: boldsuck <lists@xxxxxxxxxxxxxxx>
Date: Tue, 09 Jul 2024 23:24:35 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 09 Jul 2024 17:25:03 -0400
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=for-privacy.net; s=easymail; t=1720560289; bh=GhGgOqOYXBOdRPHqyyRbRQeZlxRk7SWY1sv2rdJU830=; h=From:To:Subject:Date:In-Reply-To:References:From; b=WiG12hMixgw7d6lqSp+5iqPPvUUrwf1SGW8L6SC0MntlhHIhjHP9xPADb7FdBX2TL 3v+sRsD5k7x1pQhQOiNzUVGj0zBEvW9xljv1HDm06zVet9PA0uk63D91dupCfl4HVh 0YE20Q7y1WTtuTgIZT4vMubtYv5zQ4HteCIZ87vi+9AZRDZxmamZzfq7YjfcadkPhO a219FmdaWkAOgufhXzjNZ17rtnBLVy8Sr4w+F1SlMQs9CGY/UO9sHNfVI4nlWVZknq rBR3jR60zs7b2grYvv5JruhMAANFM1nHH16/IxHU6UFpFcLRMyrI8z7rgPdbWF3IVT Nsbscw7amoSLg==
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=for-privacy.net; s=easymail; t=1720560288; bh=GhGgOqOYXBOdRPHqyyRbRQeZlxRk7SWY1sv2rdJU830=; h=From:To:Subject:Date:In-Reply-To:References:From; b=mdzUOnAhGhbypXjbU7EudQ/tyGaoVNB9XA1NuZhJNpfJSbHL0UOGU+fmLi5Xn4PCn rJB68mma5motKNWPRdIwMlSnIMtqDeLTB7eKiQ1wHAffJoxhHhfFSB87gOxysPgfn3 cPgXUpYlInIK4zwRj6x+ipG6ljEFGld6KPYnGl+eSjmQ4ppoiby3hZ9zswSXJaymID uoftB4Zhi3mS4Py0TaTraFf3UmKZZpktgM838GJ+ksdN0fVJ3FZ0o31/DkzJs67kY8 IhmB7PWPSxJF1e4V8clj7Nvt+4LgxmgoGaLt3WCkwqqquf4j83juo0knmIWTJjXnsS Of2bnSSUNSSVA==
In-reply-to: <1909761d609.e7224e0760339.6680585807014308535@r4fo.com>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <1909369a0e7.125f4089849297.9020280090988029846@r4fo.com> <6655689.GXAFRqVoOG@w530> <1909761d609.e7224e0760339.6680585807014308535@r4fo.com>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

On Dienstag, 9. Juli 2024 14:04:49 CEST Rafo (r4fo.com) via tor-relays wrote:
>             More specifically, I’m running a middle relay on Debian 12   

Here again the Github's of toralf & Enkidu from the above mentioned forum link. They have iptables:
https://github.com/toralf/torutils
https://github.com/Enkidu-6/tor-ddos

I just do it with nftables.
https://github.com/boldsuck/tor-relay-bootstrap/blob/nft/etc/nftables.conf_ddos

Be sure to adjust the SSH IP sets otherwise you will log out!
I have all Dyn-IP subnets from the providers from which I connect via SSH.
You can search for example on: https://bgp.tools/ or https://bgpview.io

Apart from SSH, only Tor is running and I don't have a 'table inet filter'.
If you need them, they are also on my Github.

-- 
╰_╯ Ciao Marco!

Debian GNU/Linux

It's free software and it gives you freedom!

Attachment: signature.asc
Description: This is a digitally signed message part.

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] DDOS alerts from my provider
  - From: Rafo (r4fo.com) via tor-relays
- Re: [tor-relays] DDOS alerts from my provider
  - From: lists
- Re: [tor-relays] DDOS alerts from my provider
  - From: Rafo (r4fo.com) via tor-relays

Prev by Author: [tor-relays] OT: Tor-Metrics for Hidden Services
Next by Author: Re: [tor-relays] Archive key from deb.torproject.org was renewed!
Previous by thread: Re: [tor-relays] DDOS alerts from my provider
Next by thread: Re: [tor-relays] DDOS alerts from my provider
Index(es):
- Author
- Thread