Hi,
to saturate most of this bandwidth, you perhaps like to run multiple tor
instances. Because mostly single core tor is cpu bottleneck.
2x tor per single IPv4 allowed for now.
in current c tor we only got minimal TLS options:
# HardwareAccel HardwareAccel 0|1
# If non-zero, try to use
Am 12.04.2022 um 16:23 schrieb Bauruine:
The tor-spec [1] shows that Tor only uses RSA with 1024 Bit Keys and the
ciphersuits only contain AES CBC and no AES GCM ones. I'm not an expert
but it looks like it's not that useful for Tor.
Yes and no? The limitation only apply tor protocol crypto
Hello Stefan
Wow, that's very good researched. I still didn't get that deep into this.
So it really seems, there is no special hardware which helps with Tor beside
AES-NI, high CPU clock and a good NIC with good drivers.
Yes, I have two instances running. Would be great, to have IPv6 only Tor
Hello Alex
On Tuesday, April 12, 2022 16:19 CEST, "Alex Xu (Hello71)"
wrote:
If you don't already have a QAT device, I would not suggest getting one
specifically for Tor. In particular, Tor doesn't spend very much time
actually doing AES. It's mostly overhead from cell processing, TCP,
small
Hi Andreas
According to [0] QAT supports:
* RSA with 2048, 3072, and 4096 bit keys
* ECDH for the Montgomery Curve X25519 and NIST Prime Curves P-256 and
P-384
* ECDSA for the NIST Prime Curves P-256 and P-384
* AES-GCM with 128, 192, and 256 bit keys
The tor-spec [1] shows that Tor
Excerpts from Andreas Bollhalder's message of April 12, 2022 2:12 am:
>
> Hello Alex
>
> Thank you for your nice hint ot QAT_Engine.
>
> Yes, in theory it really seems to be possible. Looking at the Github repo of
> the QAT_Engine, it looks like there are still some issues with OpenSSL 3.0:
>
Hello Alex
Thank you for your nice hint ot QAT_Engine.
Yes, in theory it really seems to be possible. Looking at the Github repo of
the QAT_Engine, it looks like there are still some issues with OpenSSL 3.0:
Support for QAT HW ECX, QAT SW ECX, QAT HW PRF and QAT HW HKDF is disabled when
built
Hello Kevin
Thanks a lot for your response.
1) Regarding the speedtest, my firewall is limiting the speed to around
6.5Gbit/s. It's a fanless device and not capable to let me use the full
10Gbit/s. I host my hardware in my living room and can't install more
powerfull, beacuse it would be too
Two suggestions:
1) Run speedtest (https://www.speedtest.net) from behind your firewall
and verify your actual bandwidth (or at least get a good approximation
).
2) Check the brand of NIC in your current machine. Intel NICs are
reportedly much more efficient than RealTek for handling
Hi all
I have my first Tor relay up und running. It's currently installed on a little
desktop computer with an Intel i5 9500T CPU. My Internet connection is 10Gb/s
symetric. From this bandwidth, I would be able to spend a good part for
supporting the Tor network.
With that little machine, it
10 matches
Mail list logo
