[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Relay usage dropped 9x when enabling UFW. What UFW rules > do other relay operators enact?

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Relay usage dropped 9x when enabling UFW. What UFW rules > do other relay operators enact?
From: zorc via tor-relays <tor-relays@xxxxxxxxxxxxxxxxxxxx>
Date: Wed, 19 Jun 2024 12:43:15 +0000
Cc: zorc <zorc+tor@xxxxxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 19 Jun 2024 10:04:41 -0400
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=lists.torproject.org; s=2022-eugeni; t=1718805873; bh=CUkBWB2flePS1avYiXm1rlvTCUByOOAGIRA/fvc9g0c=; h=Date:To:Subject:List-Id:List-Unsubscribe:List-Archive:List-Post: List-Help:List-Subscribe:From:Reply-To:Cc:From; b=wt2tGP22X8le8QCsyz5NYAloVLVLn7k2A9mipfqsakI9C2j1shxcQbZUbMXzabgqE 6GLodZ3kg1htxesdRySFYm3xBdmrago6bP/BApB8AoX5nCsY60zpl65+WP5hIRBBtU xRNOERxKQxEY5LPqTx6ZDLeALysevScOrIiLm9uZ9cKBrjCdGxijfKbGd74xwrzxLl lBpydJWxXJSa3jDOEaLuOk2FPSFq4AMHYUBNfy01vdqFOvcgARydW1qCKb9FA8uAje DiuzUYUSkDCS/kbes9VOsp79MhHhZJsOkP/qZXJsxm0THOGkuYrdcslFGLmdkBjlP3 n70r0sGlrvzSw==
Feedback-id: 1946827:user:proton
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi Likogan,

> What UFW rules do other relay operators enact?

I'm running 4CEAFCE5841C0DAE30164B4F59452F7F4D818A67 on Linux Mint 21.3 (should be close to Ubuntu Jammy) with UFW enabled, and don't have any issues. I have the same two rules for Tor as you do. I can imagine three things:

1. To me it looks like you have other rules before your Tor rules. Are any of them rate limiting?
2. I don't run an exit node, so I don't know how UFW would behave in that case.
3. Do you have logging rules? I once had issues with my router running out of CPU due to some logging rules being triggered by Tor-related traffic (potentially malicious). Maybe UFW could achieve something similar?

Hope that helps.

Cheers,
zorc

Attachment: publickey - zorc+tor@protonmail.ch - 0x64C416E0.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Prev by Author: Re: [tor-relays] Tor non-exit list
Previous by thread: Re: [tor-relays] Tor non-exit list
Next by thread: [tor-relays] Quick Assist Technology and Tor?
Index(es):
- Author
- Thread