[User] Setting up port forwarding
Jacob S Hoffman-Andrews
jsha at eff.org
Wed Oct 8 07:45:39 PDT 2014
This is excellent. I'll add these instructions to the project wiki
on GitHub. BTW, sorry for mis-addressing my reply to Wes when it was
meant for you, Matt.
On 10/07/2014 11:28 PM, Matt Kraai wrote:
> Hi,
>
> On Tue, Oct 07, 2014 at 12:27:32PM -0400, Jacob S Hoffman-Andrews wrote:
>> Wes, to answer your question: You'll also want to edit
>> /etc/firewall.user and add a FORWARD rule that forwards traffic from
>> the ORPort and DirPort to the machine you are using as a relay. And
>> of course make sure your machine has a static IP.
>
> I've gotten it to work by making the following changes. Please let me
> know if you have any feedback.
>
> * To assign a static IP, I
> * edited /etc/config/dhcp on the router and, in the
> "config dhcp 'se00'" section, changed "option start '2'" to
> "option start '3'" and "option limit '26'" to
> "option limit '25'".
> * set the IPv4 settings on the server for the wired interface to
> address 172.30.42.2, netmask 255.255.255.224, gateway 172.30.42.1,
> and DNS server 172.30.42.1.
> * To forward Tor traffic, I
> * added the following lines to /etc/firewall.user:
>
> iptables -I PREROUTING -t nat -i ge00 -p tcp --dport 9001 -j DNAT --to 172.30.42.2:9001
> iptables -I FORWARD -p tcp -d 172.30.42.2 --dport 9001 -j ACCEPT
>
> iptables -I PREROUTING -t nat -i ge00 -p tcp --dport 9030 -j DNAT --to 172.30.42.2:9030
> iptables -I FORWARD -p tcp -d 172.30.42.2 --dport 9030 -j ACCEPT
>
More information about the User
mailing list