[e-privacy] tor relay su rete nattata (fastweb)

Andrea Trentini trentini at dico.unimi.it
Mon Apr 20 23:26:03 CEST 2009 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=== Report (primo test, mail lunga)

[per gli impazienti] Pare funzioni :)

== Situazione
- - nodo esterno: virtualserver (atrent.it)
- - nodo interno: mio portatile in casa (dentro fastweb)

== Sul VS ho lanciato ssh cosi':
 ssh -v -R 9002:localhost:9002 user at atrent.it

(la 9002 perche' ho gia' un relay sulla 9001 che gira sul VS)

== Sul mio portatile lancio tor con la seguente config:

...
Log notice file /var/log/tor/notices.log
...
Log debug file /var/log/tor/debug.log
...
RunAsDaemon 1
...
Nickname tunneledtor
...
Address www.atrent.it
...
ContactInfo Andrea Trentini <tor AT atrent dot it>
...
ORPort 9002
...
ExitPolicy reject *:1214
...
ExitPolicy reject *:4661-4666
...
ExitPolicy reject *:6346-6429
...
ExitPolicy reject *:6881-6999
...
ExitPolicy reject *:25


== Il risultato e'...

= Dal punto di vista di https://torstatus.kgprog.com:
 (vedi text allegato)

= Dal punto di vista dei log (il "verbose" di ssh) sul VS, ne
incollo un pezzettino:

debug1: client_request_forwarded_tcpip: listen localhost port 9002,
originator 80.190.246.100 port 55628
debug1: connect_next: host localhost ([127.0.0.1]:9002) in progress,
fd=49
debug1: channel 43: new [80.190.246.100]
debug1: confirm forwarded-tcpip
debug1: channel 43: connected to localhost port 9002
debug1: channel 16: free: 80.190.246.100, nchannels 64
debug1: client_input_channel_open: ctype forwarded-tcpip rchan 19
win 2097152 max 32768
debug1: client_request_forwarded_tcpip: listen localhost port 9002,
originator 85.214.149.251 port 40749
debug1: connect_next: host localhost ([127.0.0.1]:9002) in progress,
fd=22
debug1: channel 16: new [85.214.149.251]
debug1: confirm forwarded-tcpip
debug1: channel 16: connected to localhost port 9002
debug1: client_input_channel_open: ctype forwarded-tcpip rchan 67
win 2097152 max 32768
debug1: client_request_forwarded_tcpip: listen localhost port 9002,
originator 88.198.224.65 port 33610
debug1: connect_next: host localhost ([127.0.0.1]:9002) in progress,
fd=70
debug1: channel 64: new [88.198.224.65]
debug1: confirm forwarded-tcpip
debug1: channel 64: connected to localhost port 9002


= Dal punto di vista del log di tor sul mio portatile, sempre
qualche pezzo di debug incollato:

Apr 20 23:09:22.019 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 809
Apr 20 23:09:22.019 [debug] connection_edge_package_raw_inbuf():
(45) Packaging 498 bytes (464 waiting).
Apr 20 23:09:22.019 [debug] relay_send_command_from_edge():
delivering 2 cell backward.
Apr 20 23:09:22.020 [debug] append_cell_to_circuit_queue(): Made a
circuit active.
Apr 20 23:09:22.020 [debug] connection_edge_package_raw_inbuf():
conn->package_window is now 391
Apr 20 23:09:22.020 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 808
Apr 20 23:09:22.020 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 808
Apr 20 23:09:22.020 [debug] connection_edge_package_raw_inbuf():
(45) Packaging 464 bytes (0 waiting).
Apr 20 23:09:22.020 [debug] relay_send_command_from_edge():
delivering 2 cell backward.
Apr 20 23:09:22.020 [debug] connection_edge_package_raw_inbuf():
conn->package_window is now 390
Apr 20 23:09:22.020 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 807
Apr 20 23:09:22.020 [debug] conn_write_callback(): socket 17 wants
to write.
Apr 20 23:09:22.021 [debug] flush_chunk_tls(): flushed 512 bytes, 0
ready to flush, 0 remain.
Apr 20 23:09:22.021 [debug] connection_handle_write(): After TLS
write of 512: 0 read, 586 written
Apr 20 23:09:22.021 [debug]
connection_or_flush_from_first_active_circuit(): Made a circuit
inactive.
Apr 20 23:09:22.021 [debug] conn_write_callback(): socket 17 wants
to write.
Apr 20 23:09:22.021 [debug] flush_chunk_tls(): flushed 1024 bytes, 0
ready to flush, 0 remain.
Apr 20 23:09:22.021 [debug] connection_handle_write(): After TLS
write of 1024: 0 read, 1098 written
Apr 20 23:09:22.078 [debug] conn_read_callback(): socket 45 wants to
read.
Apr 20 23:09:22.078 [debug] read_to_chunk(): Read 1460 bytes. 1460
on inbuf.
Apr 20 23:09:22.078 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 807
Apr 20 23:09:22.078 [debug] connection_edge_package_raw_inbuf():
(45) Packaging 498 bytes (962 waiting).
Apr 20 23:09:22.078 [debug] relay_send_command_from_edge():
delivering 2 cell backward.
Apr 20 23:09:22.078 [debug] append_cell_to_circuit_queue(): Made a
circuit active.
Apr 20 23:09:22.078 [debug] append_cell_to_circuit_queue(): Primed a
buffer.
Apr 20 23:09:22.078 [debug]
connection_or_flush_from_first_active_circuit(): Made a circuit
inactive.
Apr 20 23:09:22.078 [debug] connection_edge_package_raw_inbuf():
conn->package_window is now 389
Apr 20 23:09:22.078 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 806
Apr 20 23:09:22.078 [debug] connection_edge_package_raw_inbuf():
(45) Packaging 498 bytes (464 waiting).
Apr 20 23:09:22.078 [debug] relay_send_command_from_edge():
delivering 2 cell backward.
Apr 20 23:09:22.078 [debug] append_cell_to_circuit_queue(): Made a
circuit active.
Apr 20 23:09:22.078 [debug] connection_edge_package_raw_inbuf():
conn->package_window is now 388
Apr 20 23:09:22.078 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 805
Apr 20 23:09:22.078 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 805
Apr 20 23:09:22.078 [debug] connection_edge_package_raw_inbuf():
(45) Packaging 464 bytes (0 waiting).
Apr 20 23:09:22.078 [debug] relay_send_command_from_edge():
delivering 2 cell backward.
Apr 20 23:09:22.078 [debug] connection_edge_package_raw_inbuf():
conn->package_window is now 387
Apr 20 23:09:22.078 [debug] circuit_consider_stop_edge_reading():
considering circ->package_window 804
Apr 20 23:09:22.078 [debug] conn_write_callback(): socket 17 wants
to write.
Apr 20 23:09:22.079 [debug] flush_chunk_tls(): flushed 512 bytes, 0
ready to flush, 0 remain.
Apr 20 23:09:22.079 [debug] connection_handle_write(): After TLS
write of 512: 0 read, 586 written
Apr 20 23:09:22.079 [debug]
connection_or_flush_from_first_active_circuit(): Made a circuit
inactive.
Apr 20 23:09:22.079 [debug] conn_write_callback(): socket 17 wants
to write.
Apr 20 23:09:22.079 [debug] flush_chunk_tls(): flushed 1024 bytes, 0
ready to flush, 0 remain.
Apr 20 23:09:22.079 [debug] connection_handle_write(): After TLS
write of 1024: 0 read, 1098 written




Apr 20 20:40:39.389 [notice] Tor 0.2.0.31 (r16744) opening log file.
Apr 20 20:40:39.655 [notice] Your Tor server's identity key
fingerprint is 'tunneledtor 5191 0483 857E A26B AE9C F7A7 1D3F 2009
EF1B 617F'
Apr 20 20:40:39.944 [notice] We now have enough directory
information to build circuits.
Apr 20 20:40:45.562 [notice] Tor has successfully opened a circuit.
Looks like client functionality is working.
Apr 20 20:40:45.562 [notice] Now checking whether ORPort
81.174.66.93:9002 is reachable... (this may take up to 20 minutes --
look for log messages indicating success)
Apr 20 20:40:55.195 [notice] Self-testing indicates your ORPort is
reachable from the outside. Excellent. Publishing server descriptor.
Apr 20 20:42:43.867 [notice] Performing bandwidth self-test...done.



== Commenti?




- --
That's no moon...
		-- Obi-wan Kenobi
- ---
Andrea Trentini  -  http://www.atrent.it
.Dipartimento di Informatica e Comunicazione
..Universita' degli Studi di Milano
...and on msn/googletalk/icq/skype/facebook/etc.
....(don't blame me if you can't contact me)
- ---
NetLAMPS [cerco collaboratori!] (http://www.netlamps.org)
Difesa dei Motociclisti (http://www.motocivismo.it)
Software Libero! (http://www.gnu.org - http://www.fsf.org)
Ateismo, Sbattezzo (http://www.uaar.it)
Liberta', Privacy (http://www.eff.org - http://www.alcei.org)
Nonciclopedia ;) (http://nonciclopedia.wikia.com)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkns6GcACgkQekKz0ohcPd5vqACfedRz/IwF0kePb1f0J7xM476u
2tsAoMj8sjYa07SbRYdjG127QL076n4P
=vlJ0
-----END PGP SIGNATURE-----
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: tunneledtor.text
URL: <http://lists.winstonsmith.org/pipermail/e-privacy/attachments/20090420/8ed93975/attachment.text>

More information about the E-privacy mailing list