Tor TransparentProxy documentation: add IPv6 support / port to nftables

changed milestone to %Tor: unspecified

added component::core tor/tor ipv6 milestone::Tor: unspecified nftables priority::medium severity::normal status::new tor-client tor-doc transproxy type::enhancement wiki labels

Please say more about nftables and the lack of ipv6 support?

Trac:
Milestone: N/A to Tor: unspecified

The wiki page https://trac.torproject.org/projects/tor/wiki/doc/TransparentProxy as of version https://trac.torproject.org/projects/tor/wiki/doc/TransparentProxy?version=111 is only using iptables. It does not cover IPv6 yet (then it would have to also use at minimum ip6tables). Therefore transparent proxying IPv6 traffic won't work. Also it's only using IPv4 torrc options, nothing about IPv6. Due to that wiki page being outdated, in best case, it just won't work, in worst case, IPv6 leaks.

nftables replaces iptables, ip6tables etc. While modernizing that page, it might be a great idea to port it to nftables.

Trac:
Keywords: N/A deleted, doc wiki added

I'd take a patch for this if there are issues in the code or shipped documentation; but in the meantime, somebody who uses transproxy and ipv6 a lot should revise that wiki page.

Trac:
Keywords: doc wiki deleted, tor-doc wiki nftables ipv6 transproxy tor-client added

Trac:
Cc: whonix-devel@whonix.org to whonix-devel@whonix.org, iry

Added nftables ruleset to the wiki from duclicsic on #netfilter freenode.

Trac:
Username: NonaSuomy

moved to tpo/core/tor#21397 (closed)

Tor TransparentProxy documentation: add IPv6 support / port to nftables

Child items 0

Activity