Frënn vun der Ënn A.S.B.L.

Luxembourg based non-profit organization defending civil rights on the internet.

User Tools

Site Tools

Trace: server-setup

Sidebar

General

Organization

Documentation

General

Technical

Projects

server-setup

Table of Contents

Server Setup

Requirements

Here are some minimum requirements you absolutely need to run a node.

Exits

  1024 mb RAM
  5 GB Diskspace
  Dualcore

With this setup you can run a 50 mbit/s relay without running out of space or memory. To run anything faster you need at least twice as much power.

Gigabit servers should at least have the following settings 

  8 GB RAM
  30 GB Diskspace
  Octocore (with AES-NI enabled)

Relays

  2048 mb RAM
  5 GB Diskspace
  Dualcore

Relay setups need nearly the same requirements as Exit Nodes.

Bridges

  128 mb RAM
  2 GB Diskspace
  Singlecore

A Bridge doesn't need much of anything. Some more RAM could be useful if you decide to run more than one Bridge on the server. Nodes

If you get an SSL/TLS error while using wget to download our scripts from bitbucket, then you have to use the –no-check-certificate option!

Exit Nodes

First Step: 

apt-get install build-essential
echo "deb http://deb.torproject.org/torproject.org <DISTRIBUTION> main" >> /etc/apt/sources.list
gpg --keyserver keyserver.c3l.lu --recv 886DDD89
gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -
apt-get update
apt-get install deb.torproject.org-keyring
apt-get install tor
Second Step: 
apt-get install openssl libssl-dev
cpan
cpan> install Net::Address::IP::Local Net::SSLeay IO::Socket::SSL LWP::Protocol::https WWW::Mechanize
wget https://bitbucket.org/fvde/tor-autoconfig/raw/tip/autoconf.pl
perl autoconf.pl exit [YOUR-NODE-NICKNAME] [NETWORK SPEED] [METERED|UNMETERED] ([TRAFFIC LIMIT])
wget -O /root/family_updater.pl https://bitbucket.org/fvde/tor-autoconfig/raw/tip/family_updater.pl
crontab -e
*/10 * * * * perl /root/family_updater.pl 
service tor restart
wget -O /root/update_server.pl https://bitbucket.org/virii/update-ennstatus/raw/tip/update_server.pl
perl /root/update_server.pl [torrc] ([torrc2]) ([torrc3])
crontab -e
*/10 * * * * perl /root/update_server.pl torrc

Third Step: 

apt-get install iftop htop python-pip
pip install nyx
wget https://download.adamas.ai/dlbase/Stuff/sthttpd/sthttpd-2.27.0.tar.gz
tar -zxvf sthttpd-2.27.0.tar.gz
cd sthttpd-2.27.0
adduser thttpd
./configure
make
make install
wget -O /etc/thttpd.conf https://exit-install.enn.lu/thttpd.conf
mkdir /var/www
wget -O /etc/init.d/thttpd https://exit-install.enn.lu/thttpd.init
chmod 0755 /etc/init.d/thttpd
service thttpd start
Forth Step: 
apt-get install vnstati
cd /var/www
touch vnstat.png vnstat_d.png vnstat_m.png vnstat.xml
crontab -u thttpd -e
*/10 * * * * /usr/bin/vnstati -vs -o /var/www/vnstat.png -i eth0 >/dev/null 2>&1 ;
*/10 * * * * /usr/bin/vnstati -d -o /var/www/vnstat_d.png -i eth0 >/dev/null 2>&1 ;
1 3 * * * /usr/bin/vnstati -m -o /var/www/vnstat_m.png -i eth0 >/dev/null 2>&1 ;
1 3 * * * /usr/bin/vnstat –xml > /var/www/vnstat.xml 2>/dev/null ; 

vnstat -u -i eth0
wget -O /var/www/index.html https://exit-install.enn.lu/exit-node.html
chown -R thttpd:thttpd /var/www
Fifth Step:

Control your torrc. A functional Exit torrc has to look like this! 

service tor restart

Bridges

First Step: 

apt-get install build-essential python-dev python-pip libgmp-dev
apt-get install golang
echo "deb https://deb.torproject.org/torproject.org <DISTRIBUTION> main" >> /etc/apt/sources.list
echo "deb https://deb.torproject.org/torproject.org tor <DISTRIBUTION> main" >> /etc/apt/sources.list
echo "deb https://deb.torproject.org/torproject.org obfs4proxy main" >> /etc/apt/sources.list
curl https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc | gpg --import
gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -
apt-get update
apt-get install deb.torproject.org-keyring
apt-get install tor nyx obfsproxy obfs4proxy fteproxy
Second Step: 
apt-get install openssl libssl-dev
cpan
cpan> install Net::Address::IP::Local Net::SSLeay IO::Socket::SSL LWP::Protocol::https WWW::Mechanize
wget https://bitbucket.org/fvde/tor-autoconfig/raw/tip/autoconf.pl
perl autoconf.pl bridge [YOUR-NODE-NICKNAME] [NETWORK SPEED] [METERED|UNMETERED] ([TRAFFIC LIMIT])
wget -O /root/update_server.pl https://bitbucket.org/virii/update-ennstatus/raw/tip/update_server.pl
crontab -e
*/10 * * * * perl /root/update_server.pl torrc

Third Step:

Control your torrc. A functional Bridge torrc has to look like this! 

service tor restart

Multiple Tor Processes

wget https://bitbucket.org/fvde/tor-autoconfig/raw/tip/autoconf.pl
perl autoconf.pl bridge [TEXTFILE-CONTAINING-NAMES] [NETWORK SPEED] [METERED|UNMETERED] ([TRAFFIC LIMIT])

There is a modified initscript that makes it easy to manage multiple Tor configurations on one machine. 

cd /etc/init.d
wget -O tor https://exit-install.enn.lu/tor.initd
chmod +x tor

Starts/Stops multiple tor configs. Like torrc0 torrc1 torrc2

server-setup.txt · Last modified: 2019/03/06 16:40 by virii

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki