On 7/26/19, Mitar <mitar(a)tnode.com> wrote:
Hi!
(If some other mailing list is more suitable, please redirect me to it.)
So I got Sonic gigabit connection at home. And I am thinking that all
this symmetric gigabit connectivity should be used well. So I am
thinking that I could deploy a People's open node + Tor relay node on
the link.
I think I have Tor part figured out: I could use Intel NUC like:
https://ark.intel.com/content/www/us/en/ark/products/130392/intel-nuc-kit-n…
Why the Intel NUC? Do you just happen to have one?
If you'd be ok with a bit less power you could go for something like this:
https://www.pcengines.ch/apu4c4.htm
Which is around $130 including case.
and then you could drop in a couple of AR9xxx mPCI wifi cards for 2.4
and 5 GHz support. The same company sells one for 2.4 GHz:
https://www.pcengines.ch/wle200nx.htm
This place also has some nice multi-ethernet options with higher
performance and specs:
https://mitxpc.com/
And then I could directly connect it to the uplink and run Tor relay
node on it. I would configure NUC to serve as my home AP as well,
although I am not yet sure if this can really be done:
https://askubuntu.com/questions/1161398/configuring-a-dual-band-wifi-ap-on-…
But the issue is that I do not know how to add People's open node to
this mix. If I put it before the NUC, I think that a simple WiFi router
acting as People's open node will not be able to process gigabit and
tens of thousands of NAT connections Tor relay will try to send through
the router, if the node is put as the main router.
It shouldn't have to know about NAT since all People's Open Network
publicly shared traffic is VPN'ed. However it still probably won't be
able to handle a full gigabit. You could just put it after your
primary gateway and let it handle however much it can handle. You
don't really need your Tor traffic to go through the People's Open
Network VPN?
Or you can manually set up a separate public WiFi network on your fast
gateway, set up an L2TP tunnel to one of the People's Open Network
exit nodes and run Babel. Of course isolating your private network and
the public network will take a bit of configuration.
--
marc/juul