<br><br><div class="gmail_quote">On Sat, Jan 19, 2013 at 8:39 AM, <span dir="ltr"><<a href="mailto:dpreed@reed.com" target="_blank">dpreed@reed.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<font face="times new roman"><p style="margin:0;padding:0">Tor should be following the same rules as routers - buffer minimally, signal congestion quickly (by packet drop, ECN, etc. on an end-to-end basis). I bet it does *not* do the latter at its layer, and I bet the underlying (non Tor) layer does not.</p>
<p style="margin:0;padding:0"> </p>
<p style="margin:0;padding:0">Remember - using fq_codel in a "home router" does not fix the real problem in the DOCSIS deployment, nor does it fix the real problem in the LTE deployment. By fixing the "outgoing rate" less than the "service rate", you just never use (hopefully) the buffers in your cable modem uplink, which are not shared with other users.</p>
<p style="margin:0;padding:0"> </p>
<p style="margin:0;padding:0">But Tor is a system of "routers" (onion-y ones), and its own "software" needs to be fixed.</p>
<p style="margin:0;padding:0"> </p>
<p style="margin:0;padding:0">Is anyone actually fixing the Tor router layer?</p>
<p style="margin:0;padding:0"> </p>
<p style="margin:0;padding:0">That's not sufficient, because the layer 2 below the IP layer *under* Tor will still be bad.</p>
<p style="margin:0;padding:0"> </p>
<p style="margin:0;padding:0">But it may not be worth fixing one layer without fixing the other.</p>
<p style="margin:0;padding:0"> </p>
<p style="margin:0;padding:0">Tor's buffering should be studied.</p></font></blockquote><div><br></div><div>Agreed. Tor qualifies as pretty interesting traffic. It would be my hope, however, that with a rate shaper on and fq_codel on top of that, that you'd hardly notice it was there, if you were acting as a relay, and if you used it yourself, except for laggy things like dns.</div>
<div><br></div><div>In looking through their full transparent proxy stuff, </div><div><br></div><div><a href="https://trac.torproject.org/projects/tor/wiki/doc/TransparentProxy">https://trac.torproject.org/projects/tor/wiki/doc/TransparentProxy</a></div>
<div><br></div><div>It looks like that, and polipo and the tor build I already have in cero is enough to do some serious fiddling with tor</div><div><br></div><div><a href="https://trac.torproject.org/projects/tor/wiki/doc/CentralizedTorServer">https://trac.torproject.org/projects/tor/wiki/doc/CentralizedTorServer</a></div>
<div><br></div><div>Hmm. I wonder what TFO does to tor's notions...</div><div><br></div><div>Anyway:</div><div><br></div><div>I'm not terribly interested in routing all traffic through it personally, but I wouldn't mind setting up a redirect for .onion domains,</div>
<div> and routing .onion through tor to (for example) setup test web servers on various sides of the onion to observe what happens. </div><div><br></div><div>and...</div><div><br></div><div>Can something like netperf get run through it?</div>
<div><br></div><div><br></div><div><br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><font face="times new roman"><p style="margin:0;padding:0"> </p><div><div class="h5">
<p style="margin:0;padding:0">-----Original Message-----<br>From: "Maciej Soltysiak" <<a href="mailto:maciej@soltysiak.com" target="_blank">maciej@soltysiak.com</a>><br>Sent: Saturday, January 19, 2013 5:03am<br>
To: "Dave Taht" <<a href="mailto:dave.taht@gmail.com" target="_blank">dave.taht@gmail.com</a>><br>Cc: <a href="mailto:ju@klipix.org" target="_blank">ju@klipix.org</a>, <a href="mailto:cerowrt-devel@lists.bufferbloat.net" target="_blank">cerowrt-devel@lists.bufferbloat.net</a><br>
Subject: Re: [Cerowrt-devel] fq_codel through Tor<br><br></p>
<div>
<p dir="ltr" style="margin:0;padding:0">Funny you should ask. Being inspired by Tor's Jacob Applebaum's keynote at #29C3 ( <a href="http://isoc-ny.org/p2/4650" target="_blank">http://isoc-ny.org/p2/4650</a> ) I started a tor node. Without throttling the effect on my box was similar to bittorrent : instantly dozens of connections consuming in total 4-5 MB/s inwards and outwards. Observed in iptraf. ssh felt a bit laggy.</p>
<p dir="ltr" style="margin:0;padding:0">I think much depends on your exit a policy. If you allow all no port restrictions (default) you might be serving a lot, perhaps even bit torrent;</p>
<p dir="ltr" style="margin:0;padding:0">I saw a headline somewhere about ways to circumvent tor policy to run torrents.</p>
<p dir="ltr" style="margin:0;padding:0">SO unbloated devices may be keen on unbloating to still live with being generous to tor which is very important for the project as the main issue with it is it's slowness.</p>
<p dir="ltr" style="margin:0;padding:0">Maciej</p>
<div class="gmail_quote">On 19 Jan 2013 09:57, "Dave Taht" <<a href="mailto:dave.taht@gmail.com" target="_blank">dave.taht@gmail.com</a>> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><a href="https://srv1.openwireless.org/pipermail/tech/2012-December/000332.html" target="_blank">https://srv1.openwireless.org/pipermail/tech/2012-December/000332.html</a><br>
<div>I haven't the foggiest idea what this traffic would look like. Is it even possible to induce bufferbloat through tor?</div>
-- <br>Dave Täht<br><br>Fixing bufferbloat with cerowrt: <a href="http://www.teklibre.com/cerowrt/subscribe.html" target="_blank">http://www.teklibre.com/cerowrt/subscribe.html</a> <br>_______________________________________________<br>
Cerowrt-devel mailing list<br><a href="mailto:Cerowrt-devel@lists.bufferbloat.net" target="_blank">Cerowrt-devel@lists.bufferbloat.net</a><br><a href="https://lists.bufferbloat.net/listinfo/cerowrt-devel" target="_blank">https://lists.bufferbloat.net/listinfo/cerowrt-devel</a><br>
<br></blockquote>
</div>
</div></div></div></font></blockquote></div><br><br clear="all"><div><br></div>-- <br>Dave Täht<br><br>Fixing bufferbloat with cerowrt: <a href="http://www.teklibre.com/cerowrt/subscribe.html" target="_blank">http://www.teklibre.com/cerowrt/subscribe.html</a>