Re: [tor-relays] Fast Exit Node Operators - ISP in US
On 11/28/2014 11:40 PM, I wrote: How many instances could this run? Intel E3-1240 Dedicated Server Special Server Location: Buffalo USA Processor: Intel Xeon E3-1240 V2 3.40 GHz HDD: 500GB 7200RPM RAM: 16GB DDR3 Bandwidth: 10TB Monthly Traffic IP: /29 Port Speed: 1Gbit fully overpowered ;-) I do own a dedicated 4-core (+ 4 cores with hyper threading) system, and just 1 processor is used at 10 % at lowest available cpu frequency level (1.6 GHz) for a band width of 30 MBit/s. -- Toralf pgp key: 0076 E94E ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
How many instances could this run? Intel E3-1240 Dedicated Server Special Server Location: Buffalo USA Processor: Intel Xeon E3-1240 V2 3.40 GHz HDD: 500GB 7200RPM RAM: 16GB DDR3 Bandwidth: 10TB Monthly Traffic IP: /29 Port Speed: 1Gbit Price: $119/Month Sale Price: $59/month Robert ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
10TB/month is 30Mbit/s. You will have reached those 10TBs long before coming close to maxing out a single CPU core. I'd estimate that a single E3-1240 CPU core can deliver between 150Mbit/s and 250Mbit/s. The specs on that server are fine, it's just not a lot of bandwidth. Tom I schreef op 28/11/14 om 23:40: How many instances could this run? Intel E3-1240 Dedicated Server Special Server Location: Buffalo USA Processor: Intel Xeon E3-1240 V2 3.40 GHz HDD: 500GB 7200RPM RAM: 16GB DDR3 Bandwidth: 10TB Monthly Traffic IP: /29 Port Speed: 1Gbit Price: $119/Month Sale Price: $59/month Robert ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays smime.p7s Description: S/MIME-cryptografische ondertekening ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 11/25/2014 02:29 PM, Syrup-tan wrote: The colocation isn’t cheap to say the least, and it only gives 5TB/month unless we want to pay more per month; This may the largest logistical problem I've encountered when looking for dedicated servers intended to be exit nodes. For most providers, even expensive and powerful servers (16+ GB of RAM, 8+ cores) will come with 2-10 TB of monthly bandwidth. Because much cheaper servers can saturate a 100 Mbps link (IIRC) and thereby greatly exceed those limits, buying such packages just doesn't make sense. The additional bandwidth prices are usually strangely high, too. The pricing is often progressive - each additional terabyte costs more than the last. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJUd9JIAAoJELxHvGCsI27NrXkQAJrXBrP7gdtQAyU0s7qukHaA I2armmeyEkPMWYwPWlH3MAONgqthM8HhvClf1bgRcVF+EmkGoX8bWxQFB3Lmafq/ ewbdKqnFa1m3KXUOZ1qZCJFPUP/8dBgpRbaWvwB5qUzKxXkdsDm/aaRuoGnu0NHr KhiCoslwJ5AhbB0p2JSz/lrKBL08wRHzlcBr4BWTNff5UMkXh3A+P3XJ8+yaGka2 tLP1IAvP5H/PIUv/Mvw+l+5OWgUZcmDjKOkq/F1rFpJaEaYW9ZJ2dYXzlEUdUWWy u4LpT5K8DolfdxtTjznMydqG/48WBLoYBygJwXe7uHUkj0vz/5l0VTu9EDO1ihAo FdjMO34GYUoXmiFj9J0Nq51JGs6HAtXOy3c+0+AcX0b21X5JpZ/Bq2qbjqxwMDOU oWGSdAyHdZVap6tT2w/WQOularC1A13QdLJodQkehYFLKfZJjQmsI9uCGqWvZXSi 2kI9NNshxXZ8ZZ/iPkUV+F2kka5HMoaLfc+IPrR6aUFzOigrsJrG69qwOxYmworu VQ9YW6rkKhKVhob9AAsuvyCC/pHCJRIaoJMyQ/jmSY8gjOOoZVJhPGzjuyQTCl5y eUyRmDmpxJv8xzRG0TdW3+x9nD0E77pzlwiNUnz3P9OY0hLXuWIAQTuBb/7dw5p3 5AZhkQ+qziv/sHIXjjuo =41yu -END PGP SIGNATURE- ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
Turns out the colocation costs $672/year for the network, and another $780/year for power, so I don’t think Voxility is very feasible for an exit node without bargaining with them. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. I recently rented a dedi from Online.net http://online.net/ (http://www.online.net/en/dedicated-server/dedibox-xc http://www.online.net/en/dedicated-server/dedibox-xc) which offers unmetered b/w, but I’ve heard bad things about the network. I’ll do some testing this weekend on whether or not I can get the full 150Mb/s link. On Nov 27, 2014, at 5:39 PM, Libertas liber...@mykolab.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 11/25/2014 02:29 PM, Syrup-tan wrote: The colocation isn’t cheap to say the least, and it only gives 5TB/month unless we want to pay more per month; This may the largest logistical problem I've encountered when looking for dedicated servers intended to be exit nodes. For most providers, even expensive and powerful servers (16+ GB of RAM, 8+ cores) will come with 2-10 TB of monthly bandwidth. Because much cheaper servers can saturate a 100 Mbps link (IIRC) and thereby greatly exceed those limits, buying such packages just doesn't make sense. The additional bandwidth prices are usually strangely high, too. The pricing is often progressive - each additional terabyte costs more than the last. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJUd9JIAAoJELxHvGCsI27NrXkQAJrXBrP7gdtQAyU0s7qukHaA I2armmeyEkPMWYwPWlH3MAONgqthM8HhvClf1bgRcVF+EmkGoX8bWxQFB3Lmafq/ ewbdKqnFa1m3KXUOZ1qZCJFPUP/8dBgpRbaWvwB5qUzKxXkdsDm/aaRuoGnu0NHr KhiCoslwJ5AhbB0p2JSz/lrKBL08wRHzlcBr4BWTNff5UMkXh3A+P3XJ8+yaGka2 tLP1IAvP5H/PIUv/Mvw+l+5OWgUZcmDjKOkq/F1rFpJaEaYW9ZJ2dYXzlEUdUWWy u4LpT5K8DolfdxtTjznMydqG/48WBLoYBygJwXe7uHUkj0vz/5l0VTu9EDO1ihAo FdjMO34GYUoXmiFj9J0Nq51JGs6HAtXOy3c+0+AcX0b21X5JpZ/Bq2qbjqxwMDOU oWGSdAyHdZVap6tT2w/WQOularC1A13QdLJodQkehYFLKfZJjQmsI9uCGqWvZXSi 2kI9NNshxXZ8ZZ/iPkUV+F2kka5HMoaLfc+IPrR6aUFzOigrsJrG69qwOxYmworu VQ9YW6rkKhKVhob9AAsuvyCC/pHCJRIaoJMyQ/jmSY8gjOOoZVJhPGzjuyQTCl5y eUyRmDmpxJv8xzRG0TdW3+x9nD0E77pzlwiNUnz3P9OY0hLXuWIAQTuBb/7dw5p3 5AZhkQ+qziv/sHIXjjuo =41yu -END PGP SIGNATURE- ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
Someone may wish to look into Rokubear, I remember them being mentioned as Tor Exit friendly a few years back. -Jason On 11/28/2014 01:54 AM, Syrup-tan wrote: Turns out the colocation costs $672/year for the network, and another $780/year for power, so I don’t think Voxility is very feasible for an exit node without bargaining with them. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. I recently rented a dedi from Online.net http://Online.net (http://www.online.net/en/dedicated-server/dedibox-xc) which offers unmetered b/w, but I’ve heard bad things about the network. I’ll do some testing this weekend on whether or not I can get the full 150Mb/s link. On Nov 27, 2014, at 5:39 PM, Libertas liber...@mykolab.com mailto:liber...@mykolab.com wrote: On 11/25/2014 02:29 PM, Syrup-tan wrote: The colocation isn’t cheap to say the least, and it only gives 5TB/month unless we want to pay more per month; This may the largest logistical problem I've encountered when looking for dedicated servers intended to be exit nodes. For most providers, even expensive and powerful servers (16+ GB of RAM, 8+ cores) will come with 2-10 TB of monthly bandwidth. Because much cheaper servers can saturate a 100 Mbps link (IIRC) and thereby greatly exceed those limits, buying such packages just doesn't make sense. The additional bandwidth prices are usually strangely high, too. The pricing is often progressive - each additional terabyte costs more than the last. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. ___ tor-relays mailing list tor-relays@lists.torproject.org mailto:tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
sorry was https://www.rokabear.com/ not roku -Jason On 11/28/2014 01:56 AM, ja...@icetor.is wrote: Someone may wish to look into Rokubear, I remember them being mentioned as Tor Exit friendly a few years back. -Jason On 11/28/2014 01:54 AM, Syrup-tan wrote: Turns out the colocation costs $672/year for the network, and another $780/year for power, so I don’t think Voxility is very feasible for an exit node without bargaining with them. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. I recently rented a dedi from Online.net http://Online.net (http://www.online.net/en/dedicated-server/dedibox-xc) which offers unmetered b/w, but I’ve heard bad things about the network. I’ll do some testing this weekend on whether or not I can get the full 150Mb/s link. On Nov 27, 2014, at 5:39 PM, Libertas liber...@mykolab.com mailto:liber...@mykolab.com wrote: On 11/25/2014 02:29 PM, Syrup-tan wrote: The colocation isn’t cheap to say the least, and it only gives 5TB/month unless we want to pay more per month; This may the largest logistical problem I've encountered when looking for dedicated servers intended to be exit nodes. For most providers, even expensive and powerful servers (16+ GB of RAM, 8+ cores) will come with 2-10 TB of monthly bandwidth. Because much cheaper servers can saturate a 100 Mbps link (IIRC) and thereby greatly exceed those limits, buying such packages just doesn't make sense. The additional bandwidth prices are usually strangely high, too. The pricing is often progressive - each additional terabyte costs more than the last. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. ___ tor-relays mailing list tor-relays@lists.torproject.org mailto:tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On 28/11/2014 02:54, Syrup-tan wrote: Turns out the colocation costs $672/year for the network, and another $780/year for power, so I don’t think Voxility is very feasible for an exit node without bargaining with them. This isn't all that expensive for colo; it's just not on the bargain end either. Very few providers are able to offer high bandwidths at forgettable cost. And colocation is not very price-efficient if you're looking to house a single midrange server - providers buy their dedicated servers in bulk, count on reselling old hosts and have less management overhead with their homogenous infrastructure, and those cost savings trickle down to their customers. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. I recently rented a dedi from Online.net http://Online.net (http://www.online.net/en/dedicated-server/dedibox-xc) which offers unmetered b/w, but I’ve heard bad things about the network. I’ll do some testing this weekend on whether or not I can get the full 150Mb/s link. Online S.A.S. used to have a poor network, but they recently (some months ago, I think) got a new datacenter that seems to fare much better; this is also when they stopped restricting Tor nodes in their ToS. I'm speculating that any reports of poor network performance since then are from customers on their cheapest servers, which are equipped with VIA Nano CPUs and probably aren't able to sustain high network throughput in many cases. That said, Online's network has several dozen Tor relays already (including mine, admittedly), more than any other network. Yet they have stated they do not like Tor (see the GoodBadISPs page) and if you run an exit they will kick you for receiving too many abuse complaints. On Nov 27, 2014, at 5:39 PM, Libertas liber...@mykolab.com mailto:liber...@mykolab.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 11/25/2014 02:29 PM, Syrup-tan wrote: The colocation isn’t cheap to say the least, and it only gives 5TB/month unless we want to pay more per month; This may the largest logistical problem I've encountered when looking for dedicated servers intended to be exit nodes. For most providers, even expensive and powerful servers (16+ GB of RAM, 8+ cores) will come with 2-10 TB of monthly bandwidth. Because much cheaper servers can saturate a 100 Mbps link (IIRC) and thereby greatly exceed those limits, buying such packages just doesn't make sense. The additional bandwidth prices are usually strangely high, too. The pricing is often progressive - each additional terabyte costs more than the last. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJUd9JIAAoJELxHvGCsI27NrXkQAJrXBrP7gdtQAyU0s7qukHaA I2armmeyEkPMWYwPWlH3MAONgqthM8HhvClf1bgRcVF+EmkGoX8bWxQFB3Lmafq/ ewbdKqnFa1m3KXUOZ1qZCJFPUP/8dBgpRbaWvwB5qUzKxXkdsDm/aaRuoGnu0NHr KhiCoslwJ5AhbB0p2JSz/lrKBL08wRHzlcBr4BWTNff5UMkXh3A+P3XJ8+yaGka2 tLP1IAvP5H/PIUv/Mvw+l+5OWgUZcmDjKOkq/F1rFpJaEaYW9ZJ2dYXzlEUdUWWy u4LpT5K8DolfdxtTjznMydqG/48WBLoYBygJwXe7uHUkj0vz/5l0VTu9EDO1ihAo FdjMO34GYUoXmiFj9J0Nq51JGs6HAtXOy3c+0+AcX0b21X5JpZ/Bq2qbjqxwMDOU oWGSdAyHdZVap6tT2w/WQOularC1A13QdLJodQkehYFLKfZJjQmsI9uCGqWvZXSi 2kI9NNshxXZ8ZZ/iPkUV+F2kka5HMoaLfc+IPrR6aUFzOigrsJrG69qwOxYmworu VQ9YW6rkKhKVhob9AAsuvyCC/pHCJRIaoJMyQ/jmSY8gjOOoZVJhPGzjuyQTCl5y eUyRmDmpxJv8xzRG0TdW3+x9nD0E77pzlwiNUnz3P9OY0hLXuWIAQTuBb/7dw5p3 5AZhkQ+qziv/sHIXjjuo =41yu -END PGP SIGNATURE- ___ tor-relays mailing list tor-relays@lists.torproject.org mailto:tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
They don't seem to be offering a lot of servers right now... https://clients.rokabear.com/cart.php?gid=3 niklas On 28/11/2014 02:56, ja...@icetor.is wrote: Someone may wish to look into Rokubear, I remember them being mentioned as Tor Exit friendly a few years back. -Jason On 11/28/2014 01:54 AM, Syrup-tan wrote: Turns out the colocation costs $672/year for the network, and another $780/year for power, so I don’t think Voxility is very feasible for an exit node without bargaining with them. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. I recently rented a dedi from Online.net http://Online.net (http://www.online.net/en/dedicated-server/dedibox-xc) which offers unmetered b/w, but I’ve heard bad things about the network. I’ll do some testing this weekend on whether or not I can get the full 150Mb/s link. On Nov 27, 2014, at 5:39 PM, Libertas liber...@mykolab.com mailto:liber...@mykolab.com wrote: On 11/25/2014 02:29 PM, Syrup-tan wrote: The colocation isn’t cheap to say the least, and it only gives 5TB/month unless we want to pay more per month; This may the largest logistical problem I've encountered when looking for dedicated servers intended to be exit nodes. For most providers, even expensive and powerful servers (16+ GB of RAM, 8+ cores) will come with 2-10 TB of monthly bandwidth. Because much cheaper servers can saturate a 100 Mbps link (IIRC) and thereby greatly exceed those limits, buying such packages just doesn't make sense. The additional bandwidth prices are usually strangely high, too. The pricing is often progressive - each additional terabyte costs more than the last. If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. ___ tor-relays mailing list tor-relays@lists.torproject.org mailto:tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On Thursday, November 27, 2014 8:39pm, Libertas liber...@mykolab.com said: [snip] If anyone knows of a good way of finding high-bandwidth budget dedicated servers (a search term or a list of providers, for example), please share. I expected there to be more of a market for this kind of thing than I've found. http://lowendtalk.com/discussions/tagged/dedicated ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On 11/24/2014 03:06 AM, s7r wrote: If the only limit is consumed monthly traffic, and not the bandwidth your relays consumes daily (e.g. you use your VPS only for Tor) it is not recommended to use RelayBandwidthRate. Better use AccountingMax, and your relay will work at full speed until it hits the accounting limit, then go into hibernation. It will wake up at a random time in the next accounting period. As the Tor manual says, it's better to have a fast relay available some of the time instead of having a slow relay available all the time. Just use AccountingMax and do not forget there are other factors as well which count in the speed of a relay, such as CPU, RAM, network - a VPS (share resources machine) is unlikely to achieve maximum resources usage. Give it a try with AccountingMax (so you are sure it won't bypass the limit set by your provider and you don't have to pay extra) and see what what speed it reaches. OK, then. But in that case, and given that the provider states the throughput limit as 1000 GB per month, I would want to use monthly accounting, in order to be in synch with them: AccountingStart month 1 00:00 AccountingMax 900 GBytes Yes? That way, with no RelayBandwidthRate limit, relay utilization will presumably increase for two or three months, until AccountingMax is exceeded, and the relay hibernates. Subsequently, it will tend toward an equilibrium, with some mix of bandwidth and activity/month that depends on the configuration of the directory authorities. If I used daily accounting, the relay might end up hibernating every day. That would be worse, right? Also, I'm imagining that this might lead to lower average throughput, because the relay would show up as unstable? Is that correct? More generally, should AccountingStart (day vs week vs month) match the accounting period used by the service provider? Thanks. On 11/24/2014 5:24 AM, Mirimir wrote: On 11/23/2014 11:05 AM, s7r wrote: That is, because in almost all cases, providers allow unmetered incoming traffic to your server but keep count and accounting on outgoing traffic from your server, which is why the torrc setting acts the way it does. That would be great! I'll confirm with the provider. I'm also wondering what to set for RelayBandwidthRate for an exit. I see some old threads on this list, and a question at Tor.SE, but find nothing that's clear and persuasive. Assuming that the 1000 GB/mo limit applies to just outgoing traffic, throughput would need to average ca. 0.4 MB/sec. However, median advertised exit bandwidth from Tor Metrics is ca. 1 MB/sec, so it seems unlikely that an exit advertising 0.4 MB/sec would be used very heavily. And so actual usage would be far less than 0.4 MB/sec. Conversely, setting RelayBandwidthRate to 3 MB/sec would ultimately lead to heavy use. But with full utilization at 250 GB per day, the relay would hibernate after just four days. There must be some intermediate value that would bring average usage to 0.4 MB/sec. What is the optimal RelayBandwidthRate for a 1000 GB/mo VPS? I'm guessing that it's about 1 MB/sec. On 11/23/2014 7:58 PM, Seth wrote: On Sat, 22 Nov 2014 22:42:15 -0800, Mirimir miri...@riseup.net wrote: How much throughput do you get with your VPS, 1000 GB/mo or 2000 GB/mo? The 1000 GB/mo applies to whichever value is greater, input or output. So far the Tor node is pushing less than 1.5GB per day. Takes a while for traffic to ramp up apparently. As I read comments in torrc, AccountingMax applies separately to sent and received bytes, not to their sum, and so setting '4 GB' may allow up to 8 GB total before hibernating. Yes, others have raised this issue as well and I will look into it. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 11/24/2014 7:32 PM, Mirimir wrote: On 11/24/2014 03:06 AM, s7r wrote: If the only limit is consumed monthly traffic, and not the bandwidth your relays consumes daily (e.g. you use your VPS only for Tor) it is not recommended to use RelayBandwidthRate. Better use AccountingMax, and your relay will work at full speed until it hits the accounting limit, then go into hibernation. It will wake up at a random time in the next accounting period. As the Tor manual says, it's better to have a fast relay available some of the time instead of having a slow relay available all the time. Just use AccountingMax and do not forget there are other factors as well which count in the speed of a relay, such as CPU, RAM, network - a VPS (share resources machine) is unlikely to achieve maximum resources usage. Give it a try with AccountingMax (so you are sure it won't bypass the limit set by your provider and you don't have to pay extra) and see what what speed it reaches. OK, then. But in that case, and given that the provider states the throughput limit as 1000 GB per month, I would want to use monthly accounting, in order to be in synch with them: AccountingStart month 1 00:00 AccountingMax 900 GBytes Yes? That way, with no RelayBandwidthRate limit, relay utilization will presumably increase for two or three months, until AccountingMax is exceeded, and the relay hibernates. Subsequently, it will tend toward an equilibrium, with some mix of bandwidth and activity/month that depends on the configuration of the directory authorities. Sounds about right. If you have 1000GB from your provider, why set it to 900? You can put 995 GBytes without any problems, since 5GB per month is more than enough for management / administration and time to time regular operating system updates. If I used daily accounting, the relay might end up hibernating every day. That would be worse, right? Also, I'm imagining that this might lead to lower average throughput, because the relay would show up as unstable? Is that correct? More generally, should AccountingStart (day vs week vs month) match the accounting period used by the service provider? It does not matter really, as for traffic consumption will have the same effect. If you have 1000GB per month you can either set accounting period of 995GBytes per month or accounting period of 248GBytes per week - it will still prevent your relay to consume more than 1000GBytes per month... As a personal thought, I think it's much better to have a monthly accounting period as your provider accounts your traffic, this way you relay will go into hibernation one time per month rather than 4 times (after the end of each accounting period Tor goes into hibernation and waits for a random time until it 'wakes up' again). Thanks. On 11/24/2014 5:24 AM, Mirimir wrote: On 11/23/2014 11:05 AM, s7r wrote: That is, because in almost all cases, providers allow unmetered incoming traffic to your server but keep count and accounting on outgoing traffic from your server, which is why the torrc setting acts the way it does. That would be great! I'll confirm with the provider. I'm also wondering what to set for RelayBandwidthRate for an exit. I see some old threads on this list, and a question at Tor.SE, but find nothing that's clear and persuasive. Assuming that the 1000 GB/mo limit applies to just outgoing traffic, throughput would need to average ca. 0.4 MB/sec. However, median advertised exit bandwidth from Tor Metrics is ca. 1 MB/sec, so it seems unlikely that an exit advertising 0.4 MB/sec would be used very heavily. And so actual usage would be far less than 0.4 MB/sec. Conversely, setting RelayBandwidthRate to 3 MB/sec would ultimately lead to heavy use. But with full utilization at 250 GB per day, the relay would hibernate after just four days. There must be some intermediate value that would bring average usage to 0.4 MB/sec. What is the optimal RelayBandwidthRate for a 1000 GB/mo VPS? I'm guessing that it's about 1 MB/sec. On 11/23/2014 7:58 PM, Seth wrote: On Sat, 22 Nov 2014 22:42:15 -0800, Mirimir miri...@riseup.net wrote: How much throughput do you get with your VPS, 1000 GB/mo or 2000 GB/mo? The 1000 GB/mo applies to whichever value is greater, input or output. So far the Tor node is pushing less than 1.5GB per day. Takes a while for traffic to ramp up apparently. As I read comments in torrc, AccountingMax applies separately to sent and received bytes, not to their sum, and so setting '4 GB' may allow up to 8 GB total before hibernating. Yes, others have raised this issue as well and I will look into it. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On Sat, 22 Nov 2014 22:42:15 -0800, Mirimir miri...@riseup.net wrote: How much throughput do you get with your VPS, 1000 GB/mo or 2000 GB/mo? The 1000 GB/mo applies to whichever value is greater, input or output. So far the Tor node is pushing less than 1.5GB per day. Takes a while for traffic to ramp up apparently. As I read comments in torrc, AccountingMax applies separately to sent and received bytes, not to their sum, and so setting '4 GB' may allow up to 8 GB total before hibernating. Yes, others have raised this issue as well and I will look into it. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On Sat, 22 Nov 2014 19:13:17 -0800, ZEROF secur...@netmajstor.com wrote: I saw some info just yesterday, but it's not in actual server configuration. Can you provide some good resource for setting dnscrypt-proxy? And no logging DNS's is good to protect end users A caveat: You should probably avoid using the default OpenDNS servers with dnscrypt-proxy. From the 'Bad Relays' wiki page https://trac.torproject.org/projects/tor/wiki/doc/badRelays The most common misconfiguration I have seen is using OpenDNS as a host's nameserver with what I think is the OpenDNS default config. Services such as OpenDNS lie to you, under the name of protecting you. The result is for instance getting redirected to their webpage when you want to visit evil sites such as https://www.torproject.org/.;___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I'm not using opendns. OpenNic and OpenDNS are not same thing. On 23 November 2014 at 23:59, Seth wrote: On Sat, 22 Nov 2014 19:13:17 -0800, ZEROF wrote: I saw some info just yesterday, but it's not in actual server configuration. Can you provide some good resource for setting dnscrypt-proxy? And no logging DNS's is good to protect end users A caveat: You should probably avoid using the default OpenDNS servers with dnscrypt-proxy. From the 'Bad Relays' wiki page https://trac.torproject.org/projects/tor/wiki/doc/badRelays The most common misconfiguration I have seen is using OpenDNS as a host's nameserver with what I think is the OpenDNS default config. Services such as OpenDNS lie to you, under the name of protecting you. The result is for instance getting redirected to their webpage when you want to visit evil sites such as https://www.torproject.org/.; ___ tor-relays mailing listtor-relays@lists.torproject.orghttps://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays - --http://www.backbox.orghttp://www.pentester.iz.rs -BEGIN PGP SIGNATURE- Version: OpenPGP.js v0.7.2 Comment: http://openpgpjs.org wsFcBAEBCAAQBQJUcoEyCRDHWR777fxuEQAAT7EP/A+lRfEQ/p2id19oJDhM 3JZZQZaTdUPv0elzrllzhse/pErPTcTzu6uoghyVE7sLbdalcFZ5HATg2RR0 +DpI3czxd9TuOCj3k+kz8vfSxj3J0IDBvIQM+z3d4B7xfbp5DmMrJVxm+OOF J8TsN+yfspw6g3GJaBMzC7ZlrVGlAsgo47nYSjgMZy8082te6XFVNclAZ76Q PRT3IQyovTGHVKtx4WTnO5w2oxdPefEzjn4z5LvqR6eQGOw4vpJZUX99zDKL XQnBWhmhhprLW7wyVo7qLRFUpT6A/HY9GJBPz+j9LNDKCi1962Ajgo5Fl2iP a76iv/v+jAgEiRJY+XrmVI1vgWYDYaegiMHdH82JExgbA0O717s1/2IPix3k OEd3wS7iA9veXcrq7EMquyPDuKxAdsOhJTaAE50w74jfYx3a637p59VI9yzB HdERrwdcfiTRnQVcf+KmKjmYXU+7WjxVE0ebjvJIPFTNC7VMlKrn/Vfmhhl9 Pn4Lm57FNgy2z9ah6VTGEVHLmgxtprGIxt14r10m2GyZFbKR8twO5DU5FXgE XN1a956m+mh35dUQwlE6QIt7IefgrEvH/h6Pau9NTv2PMxxRlCj1ooR6w+Kn Cvu9QYxeuXfDpgxZdGBmUOhWl5DG4xsiRVNM3JFWMPuLVGTtWTpSF/1uQjiZ Brvw =hwKy -END PGP SIGNATURE- ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On Sun, 23 Nov 2014 16:53:03 -0800, ZEROF secur...@netmajstor.com wrote: I'm not using opendns. OpenNic and OpenDNS are not same thing. I'm aware of the distinction. What I was trying to point out for the benefit of people just getting started with dnscrypt-proxy, is that by default it uses OpenDNS servers. At least it has in every environment that I've set it up in so far. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
http://blog.censurfridns.dk/en Pretty sure this is no fon. On 24 November 2014 at 02:18, Seth l...@sysfu.com wrote: On Sun, 23 Nov 2014 16:53:03 -0800, ZEROF secur...@netmajstor.com wrote: I'm not using opendns. OpenNic and OpenDNS are not same thing. I'm aware of the distinction. What I was trying to point out for the benefit of people just getting started with dnscrypt-proxy, is that by default it uses OpenDNS servers. At least it has in every environment that I've set it up in so far. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On 11/23/2014 11:05 AM, s7r wrote: That is, because in almost all cases, providers allow unmetered incoming traffic to your server but keep count and accounting on outgoing traffic from your server, which is why the torrc setting acts the way it does. That would be great! I'll confirm with the provider. I'm also wondering what to set for RelayBandwidthRate for an exit. I see some old threads on this list, and a question at Tor.SE, but find nothing that's clear and persuasive. Assuming that the 1000 GB/mo limit applies to just outgoing traffic, throughput would need to average ca. 0.4 MB/sec. However, median advertised exit bandwidth from Tor Metrics is ca. 1 MB/sec, so it seems unlikely that an exit advertising 0.4 MB/sec would be used very heavily. And so actual usage would be far less than 0.4 MB/sec. Conversely, setting RelayBandwidthRate to 3 MB/sec would ultimately lead to heavy use. But with full utilization at 250 GB per day, the relay would hibernate after just four days. There must be some intermediate value that would bring average usage to 0.4 MB/sec. What is the optimal RelayBandwidthRate for a 1000 GB/mo VPS? I'm guessing that it's about 1 MB/sec. On 11/23/2014 7:58 PM, Seth wrote: On Sat, 22 Nov 2014 22:42:15 -0800, Mirimir miri...@riseup.net wrote: How much throughput do you get with your VPS, 1000 GB/mo or 2000 GB/mo? The 1000 GB/mo applies to whichever value is greater, input or output. So far the Tor node is pushing less than 1.5GB per day. Takes a while for traffic to ramp up apparently. As I read comments in torrc, AccountingMax applies separately to sent and received bytes, not to their sum, and so setting '4 GB' may allow up to 8 GB total before hibernating. Yes, others have raised this issue as well and I will look into it. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
I would happily chip in to a node like that. One thing, though, about USA is their fickleness when shown a legal letter. I increased VPSs to more than ten paid a year in advance with GreenValueHost because they were so helpful they even reinstalled Tor and sorted some Linux problems for me. Then they banned Tor. I can only imagine that their spines collapsed at a threat. So USA can be fast and cheap but beware when they agree Tor is acceptable because there are poor trade practices laws to get refunds and rights. Robert I also share the thought that more US exit power is welcomed in the Tor network. . Depending on your budget, Voxility has a datacenter in the US. Unfortunately they provide only enterprise class servers with prices directly proportional to the class. Maybe we can manage to pool $ in order to create a bigger node with this provider if we find enough people. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On Sat, 22 Nov 2014 16:35:18 -0800, I beatthebasta...@inbox.com wrote: So USA can be fast and cheap but beware when they agree Tor is acceptable because there are poor trade practices laws to get refunds and rights. FWIW I spun up a Tor exit node on VULTR. I pro-actively informed them I was doing so by creating a support ticket with this text: Just giving you guys a heads up that I've setup a new Tor exit node. It's using the ReducedExitPolicy detailed here: https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy The reduced exit policy has been successful in eliminating the vast majority of DMCA complains according to this Tor blog post: https://blog.torproject.org/running-exit-node If there are any complaints about traffic from this node, please alert me immediately so I can deal with them. I have a dedicated email setup for this purpose at t...@sysfu.com. Regards, Seth The response was a simple Thank you for the updateso they seem pretty cool about it. If you look at https://torstatus.rueckgr.at/ you'll see a half dozen other nodes running on VULTR. The starter $5/mo size gets you 1000GB of bandwidth per month, can't beat that with a stick. Another thing I like about VULTR is that you can install your own custom OS via an ISO or iPXE script. Also none of that fixed kernel nonsense I dealt with at Digital Ocean. And they accept Bitcoin. That fact that thousands of average joe sysadmins can now spin up a powerful Tor relay or exit node, on the operating system of their choice, for $5/mo payable in Bitcoin...I think that's a big deal. -- Seth I 3 nicely trimmed email replies ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Just checked them now, that is great if they will allow you to run Tor exit nodes on such cheap virtual machines. 5$ for 1000GB is a good deal for US traffic, and bitcoin accepted is an important pro. But I am concerned if they will sustain Tor exits on the long term. If the Tor relay will consume more bandwidth they might start shouting about it since more virtual machines share a network port, and they will want to maximize how many VMs they can assign to a port in order to maximize profit. Not to mention if the relay will be under DDoS attack. I saw many cheap cloud providers which claimed to support Tor, yet after little time just when the relay was becoming popular and known in the consensus, service terminated. Hope VULTR will not follow this way. On 11/23/2014 2:56 AM, Seth wrote: On Sat, 22 Nov 2014 16:35:18 -0800, I beatthebasta...@inbox.com wrote: So USA can be fast and cheap but beware when they agree Tor is acceptable because there are poor trade practices laws to get refunds and rights. FWIW I spun up a Tor exit node on VULTR. I pro-actively informed them I was doing so by creating a support ticket with this text: Just giving you guys a heads up that I've setup a new Tor exit node. It's using the ReducedExitPolicy detailed here: https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy The reduced exit policy has been successful in eliminating the vast majority of DMCA complains according to this Tor blog post: https://blog.torproject.org/running-exit-node If there are any complaints about traffic from this node, please alert me immediately so I can deal with them. I have a dedicated email setup for this purpose at t...@sysfu.com. Regards, Seth The response was a simple Thank you for the updateso they seem pretty cool about it. If you look at https://torstatus.rueckgr.at/ you'll see a half dozen other nodes running on VULTR. The starter $5/mo size gets you 1000GB of bandwidth per month, can't beat that with a stick. Another thing I like about VULTR is that you can install your own custom OS via an ISO or iPXE script. Also none of that fixed kernel nonsense I dealt with at Digital Ocean. And they accept Bitcoin. That fact that thousands of average joe sysadmins can now spin up a powerful Tor relay or exit node, on the operating system of their choice, for $5/mo payable in Bitcoin...I think that's a big deal. -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.22 (MingW32) iQEcBAEBAgAGBQJUcTLxAAoJEIN/pSyBJlsRiZoH/3mCS4OPT/Si47+fmyI2IkdW ggEhv9S5csBCZRCl/374Gu5Kv4Ru/2W3mBAZvflxTAN9Mef0msiVHl8pC9NlW3Y6 E7f4DEvb8NTiuoCEpYPUe6GJfmTrP+dZDoWarUPGiBzYxCXw2mSwdmnC1r7ei3X5 X6bALW88w9O8eG3r29CuCqx7OAm4o4SfqI7ConkkLtzQ4XDQ+oOiWVld3M/RrKMm oJAu+ALecrUtopcIlyz5feql0467pddAIl579YYj62BRpUpAWM5CAyOvmXdNHNJD 2SaxzUS/F5BFPdmCOU5QzOIzRDFEnLud9LTFn8KeyR053ARDekHLoTC3nMSM4dA= =OYdd -END PGP SIGNATURE- ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On 11/22/2014 05:56 PM, Seth wrote: On Sat, 22 Nov 2014 16:35:18 -0800, I beatthebasta...@inbox.com wrote: So USA can be fast and cheap but beware when they agree Tor is acceptable because there are poor trade practices laws to get refunds and rights. FWIW I spun up a Tor exit node on VULTR. I pro-actively informed them I was doing so by creating a support ticket with this text: Just giving you guys a heads up that I've setup a new Tor exit node. SNIP Do you mind if I steal/paraphrase your letter? They might find it odd. Any thoughts on that? ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
If you are looking for good solution, I'm testing right now http://roundabove.com, running one exit node with exit rules provided from https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy. Tor's uptime is 11 days 12:00 hours, with 194 circuits open. I've sent 182.16 GB and received 178.18 GB. Only what you need to do on your system is to set new hostnames in /etc/rc.local. I use servernames without logging from this this list http://wiki.opennicproject.org/Tier2 (France). -BEGIN PGP SIGNATURE- Version: OpenPGP.js v0.7.2 Comment: http://openpgpjs.org wsFcBAEBCAAQBQJUcUZVCRDHWR777fxuEQAAA6QP/jvqWdTKTH0mOJ3Nc2Fz AwkT1lmRFf1/TOUl1DAK4JNIXloK33LAJ7sOnessSJ4g6tVqZL552nwMIAHK dJ3UQntKWR+fmPb8rpgvAwFcTY6Yk3oKqZv8xRZTveFgvhpUsbhialDwBdSq dB6/47IogkCekQVX8pbUus4uAUSsE83KFACTIWeStFWZ0ltpM5eQheW6kPjm kp3MuQwawHYj5XCwj/l/ZaceOyzEoSAbAI9v/IMw1cuZvCX1jzShU7K4Tlgs /I0Mk+vYNuI/eDvg/NFMJUza/YWRMDx5WxlNYJqZ6mNdYZXyZIakEpWAihoX 5GDl5UluFmBZwn5k+lI1lr9nl67hcR3YFfF1EXaZZq4WuOyrpy3vh0mzTpf/ 6FtFjqC9275NfR7OmaNyd5vFJh9aUsvlr+2oq8hDG+4raTX0OFFiYSuePPxW pEhb7UD6ngIJK2zK/m5mdiWWdU1pH3Kr4NdBTlDN6yvg7JT03dS1mIaYcioT btQNZCJ5sr1FAHQpOScx0tJtqIROA35bZINnqpLvc5eoSyBQGhTiggstgAcL qxmOBvvYTaWaWknpTRbekKlTaZzTH6pJRKoK2Lj2htbCusAM7NWnUi9TdtBh rDgBkEmfqV+zy9u7sa40CtGnNxZ0Q4i0y8vNtREK3xI+VTZY6zssq6fOZ2A8 9i0X =cD5N -END PGP SIGNATURE- On 23 November 2014 at 02:58, Seth l...@sysfu.com wrote: On Sat, 22 Nov 2014 17:05:53 -0800, s7r s...@sky-ip.org wrote: I am concerned if they will sustain Tor exits on the long term. If the Tor relay will consume more bandwidth they might start shouting about it since more virtual machines share a network port, and they will want to maximize how many VMs they can assign to a port in order to maximize profit. Not to mention if the relay will be under DDoS attack. I share all these concerns and s'pose we'll find out eventually. The Choopa (VULTR parent company) network infrastructure is fairly robust from what I gathered reading many many posts about the service on lowendtalk.com. I saw many cheap cloud providers which claimed to support Tor, yet after little time just when the relay was becoming popular and known in the consensus, service terminated. Hope VULTR will not follow this way. I think the VPS providers are more likely to fold in the face of pressure. Too big and they're likely gutless and/or compromised. There's probably a sweet spot that's willing to Throw down for freedom somewhere in the middle. (Sonic.net for example) I should have also mentioned in my previous post I put the following in /etc/tor/torrc # Bandwidth and data caps AccountingStart day 19:45 # calculate once a day at 7:45pm AccountingMax 33 GBytes # 33GB X 30 days = 10GB shy of 1000GB/mo. RelayBandwidthRate 3000 KBytes RelayBandwidthBurst 3750 KBytes # allow higher bursts but maintain average ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays -- http://www.backbox.org http://www.pentester.iz.rs ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On Sat, 22 Nov 2014 18:46:18 -0800, ZEROF secur...@netmajstor.com wrote: I use servernames without logging from this this list http://wiki.opennicproject.org/Tier2 (France). Great resource of logless DNS servers, I'm a big fan of OpenNIC. Have you bothered to encrypt DNS traffic by setting up dnscrypt-proxy or the like? These days it's something I include as standard.___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
Date: Sat, 22 Nov 2014 17:58:37 -0800 From: Seth l...@sysfu.com ... I should have also mentioned in my previous post I put the following in /etc/tor/torrc # Bandwidth and data caps AccountingStart day 19:45 # calculate once a day at 7:45pm AccountingMax 33 GBytes # 33GB X 30 days = 10GB shy of 1000GB/mo. RelayBandwidthRate 3000 KBytes RelayBandwidthBurst 3750 KBytes # allow higher bursts but maintain average There are 7/12 months that have 31 days, where your 33GB per day will result in a (potential) 23GB overuse. (And that's not including non-tor traffic like OS updates.) Why not use 32GB x 31 days = 992GB, or 31GB x 31 days = 961GB ? teor pgp 0xABFED1AC hkp://pgp.mit.edu/ https://gist.github.com/teor2345/d033b8ce0a99adbc89c5 http://0bin.net/paste/Mu92kPyphK0bqmbA#Zvt3gzMrSCAwDN6GKsUk7Q8G-eG+Y+BLpe7wtmU66Mx signature.asc Description: Message signed with OpenPGP using GPGMail ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
On 11/22/2014 06:58 PM, Seth wrote: SNIP I should have also mentioned in my previous post I put the following in /etc/tor/torrc # Bandwidth and data caps AccountingStart day 19:45 # calculate once a day at 7:45pm AccountingMax 33 GBytes # 33GB X 30 days = 10GB shy of 1000GB/mo. RelayBandwidthRate 3000 KBytes RelayBandwidthBurst 3750 KBytes # allow higher bursts but maintain average How much throughput do you get with your VPS, 1000 GB/mo or 2000 GB/mo? As I read comments in torrc, AccountingMax applies separately to sent and received bytes, not to their sum, and so setting '4 GB' may allow up to 8 GB total before hibernating. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Fast Exit Node Operators - ISP in US
Dear Relay Operators, I noticed there are very few US based exit nodes in the network. And more and more people are jumping on the same set of AS numbers in Europe. I am not if the reason is lack of Tor friendly ISPs or people are just too freaked out about the summer of Snowden. I think it's very wrong to assume that EU countries are not part of the world-wide-wiretap, packets are going through a few internet exchanges anyways. I have been hosting/operating Faravahar (one of the authority directory servers) at Rethem Hosting (rethemhosting.net) for a couple of years now, and never had any issues. I also just brought up 2 exit nodes there: https://atlas.torproject.org/#details/A5B1C342B316C2AE5695B903CED18F619A8361CC https://atlas.torproject.org/#details/6FFCDF910C32D620FCC6EEF7A8A57F3E9A234649 If anyone is interested in running fast Tor Exit nodes at Rethem Hosting. Feel free to contact me directly, so I can make proper referral/introductions. Rethem Hosting is also able to provide hosting In IceLand, but you get the most bang for your buck in the US datacenter. Thank you for contributing to Tor. All the best, SiNA # Consensus Weights Advertised BandwidthGuard Probability Middle Probability Exit ProbabilityNicknameFingerprint ExitGuard Country Autonomous System 1.5958% 0.% 0.% 0.% 4.8946% (11 other relay groups) 17.6751%0.% 0.% 0.% 54.2124%(total in selection) 1 4.1722% 0.% 0.% 0.% 12.7968%* (26 relays) (26)(22)FR (4) 2 3.8256% 0.% 0.% 0.% 11.7338%* (19 relays) (19)(16)DE (6) 3 2.1098% 0.% 0.% 0.% 6.4712% * (10 relays) (10) (8) NL (6) 4 1.4620% 0.% 0.% 0.% 4.4843% * (5 relays) (5) (5) RO (1) 5 0.9090% 0.% 0.% 0.% 2.7881% * (6 relays) (6) (5) SE (4) 6 0.8788% 0.% 0.% 0.% 2.6955% * (4 relays) (4) (4) CH (2) 7 0.8560% 0.% 0.% 0.% 2.6255% * (3 relays) (3) (3) LU (1) 8 0.6510% 0.% 0.% 0.% 1.9967% * (1 relays) (1) (1) LR (1) 9 0.6433% 0.% 0.% 0.% 1.9731% * (10 relays) (10) (8) US (10) 10 0.5715% 0.% 0.% 0.% 1.7528% * (2 relays) (2) (2) GB (1) ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Fast Exit Node Operators - ISP in US
Hi SiNA, On 11/22/2014 01:08 AM, SiNA Rabbani wrote: Dear Relay Operators, I noticed there are very few US based exit nodes in the network. And more and more people are jumping on the same set of AS numbers in Europe. [...] Thank you, SiNA. A reminder to relay operators: Diversity is important. A very good paper everyone should read is Traffic Correlation on Tor by Realistic Adversaries [1]. Compass [2] is very useful in at least determining country- and AS-level diversity. It would be nice to have more than just a feeling of when to rule out a potential ISP and/or country, but I would at least try to avoid any of the popular AS. lowendbox.com is not a bad source for virtual machine hosting. If you plan to run an exit relay, it is imperative that you ask the ISP beforehand, and you should read the Exit Guidelines [3]. Add the answer of the ISP to the GoodBadRelays wiki page [4]. For non-exit relays, I wouldn't ask or tell the ISP, they don't have to know. When you pick a cheap provider with unlimited (fair use) bandwidth, make sure you contact the ISP beforehand to find out how much constant traffic they are actually ok with, and configure your relay accordingly. The hibernation options are quite useful in that regard. For larger exits (dedicated, higher bandwidth), webhostingtalk.com can be a good source. It is generally cheaper to pool money and rent a bigger server. Ideally, you find some people around you. For example, if you have a local hackerspace or makerspace nearby, you should leave contact info and ask if there's interest to collectively run a larger relay. I always wanted to get Tor User Relay Operator Groups going. A quite outdated and lame attempt is a wiki page on the torservers wiki [5]. The next step may be to set up an organization around your exit(s). Many groups chose the non-profit model [6]. This type of organization is surprisingly easy to create and manage, but it does produce overhead. Think a bit about who wants to play accountant and all that. After a while, you might consider joining the Torservers.net reimbursement partnership. While the program does not formally require you to have an organization, we do prefer them, simply because they are a sign of a more stable environment. For more information, see [7]. [1] http://freehaven.net/anonbib/#ccs2013-usersrouted [2] https://compass.torproject.org/ [3] https://trac.torproject.org/projects/tor/wiki/doc/TorExitGuidelines [4] https://trac.torproject.org/projects/tor/wiki/doc/GoodBadISPs [5] https://www.torservers.net/wiki/usergroups [6] https://www.torservers.net/partners.html [7] https://blog.torservers.net/20130917/reimbursement-for-exit-operators.html -- Moritz Bartl https://www.torservers.net/ ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays