On the Recent Growth of the Tor Network

by karsten | June 23, 2009

In the past few days the Tor network is seeing a lot of new users coming from Iran. At the same time we have heard from many people who want to support the Tor network by setting up more relays and bridges. Now we wanted to know, are these just promises, or did the network really grow? Here are the results:

The number of relays has grown by 359 or 24% to now 1827 relays within only one week to the highest number of relays the network has ever seen. Likewise, the number of bridges has increased by an incredible 69 % from 255 to 432 within one week. Awesome!

So, does this mean everything is taken care of and no more relays or bridges are needed? Not at all! As you may know, Tor has some performance issues that are, among other things, the result of too few bandwidth capacity for too many clients. If you can, go setup more relays and/or bridges and keep them running even when the conflicts in the world do not hit the headlines. Be sure that your support is much appreciated!

Comments

Please note that the comment area below has been archived.

July 01, 2009

In reply to karsten

Permalink

Filtering bridge?
I have set up a tor bridge with the aim of helping people in iran. I have posted my bridge addr to anonygreen.wordpress.com. But now I am seeing clients from funny places (Europe, Africa) coming in, but not yet from Iran. Q: Is it possible to configure a tor bridge so that only request from a specific set of IP-ranges (country=Iran, in this case) are being processed? Please understand that this is what I would like to run only at this time. I am tempted to use iptables to achieve this goal.

Hi,
Problem with bridges is that it has to be obtained from https:\\bridges.torproject
This link has long been filtered in Iran. Another problem with asking for new bridges it that the nice people on Tor project only accept gmail addresses which is also filtered. In fact as I am typing this here, I can not access port 443 which makes the Tor not working at the moment.

a) I can not get Tor started because my ISP in Iran hase blocked all secured ports as from 12 hours ago.

b) I can not bypass ISP blockage using bridge IP because I can bot access gmail to get a working bridge!

Its like chicken & egg.

June 23, 2009

Permalink

Hello,

i am very glad to see so much peoples take care and try to help the Tor network...

When all will help like this i am sure the futur version will be think to can be more speed...

but for that it need for sure to have enough relay to can do that :)

i encourage to everyone to use a realy when are possible or a bridge...

my best and thanks to all devlopper for there great work

June 23, 2009

Permalink

would be nice to see long term graphs too,
to put this into perspective

There are long-term graphs in the linked PDFs. See Figure 1 in the PDF behind "number of relays" and Figure 1 in the "number of bridges" PDF.

I'm one of those new relays & exit nodes. I joined in order to try and help with communications in and out of Iran.

I'm having to reevaluate that choice because my router is starting to choke on the sheer number of connections being held open. I checked the faq and googled around to see if TOR let me set a limit and find the apparent position of the TORproject is that I should upgrade my firmware or get a different router if that doesn't work.

I understand this position, but I hope that it is understood that it is one that likely limits the total number of TOR nodes and their longevity. It is not the sort of thing that will keep most people from running a node in the first place, but it is exactly the sort of thing that will make them quit.

I am running a recent 3rd party firmware on my Linksys WRT54G router. I could set up a linux or freebsd box as a more robust router at some point, but I'm guessing that scraping together that hardware getting it running and reconfiguring my network is going to take 5-10x as much time as it took me to port forward through my router and install tor on an existing box. Other people aren't even going to consider doing that much work.

In closing, thanks so much for the good work so far. Please consider things, like an open connection limit, that will make it easier for less committed or less knowledgeable users to help grow the TOR network with their existing equipment.

We are already seeing the impact of the Iranian regime's curtailing of communications. Its making it harder to coordinate large protests and this movement is only really a couple weeks old, it could take a year, or more, for the old regime to fall. The 1979 revolution actually played out over 12 months, and by most comparisions, that was pretty quick as revolutions go. The charts above are great, but it seems that it'll be really important to see even more growth, and sustain the levels for the long haul.

Limiting the number of connections isn't really possible because of Tor's design. Clients can freely select their routes through the network, so that your node might end up with as many connections as there are other relays in the network. Plus, as an exit node you obviously have connections to as many servers as clients are using you as their exit.

You might consider limiting the contributed bandwidth rate by setting the BandwidthRate option in your torrc file. As a result, your node will also have fewer open connections.

Thanks for running an exit node!

After I started pimping Tor bridges for Iran on my blog on the 15th I have had over 154 people send me bridges for people to use. If bridges jumped from 255 to 432 that means I helped get all but 23 of the bridges setup. :) Glad I could help.

Ian: great news. :)

Karsten: at some point we should look through the bridge relay stats and see how much churn there is. I'm guessing that the 400-some bridges we have running right now do not indicate that only 400-some people set up bridges. Rather they indicate that only 400-some of them have their bridge still up and reachable right now. How many tried total?

At the Center for American Progress we have wanted to do something to support the Iranian cause since the protests started. An hour ago, we brought up a relay on our secondary DS3 offering 45Mbit of bandwidth solely dedicated to relaying traffic from the Tor Network.

I'm guessing it takes awhile for the Tor network to pick up on the fact a huge idle pipe is sitting there. I look forward to seeing what the usage is like tomorrow.

At some point we'll need to pull back some of that bandwidth for ourselves, but not in the near future.

June 23, 2009

Permalink

I just thought it would be nice if you ran a relay/exit only download.

Currently when you download a bundle you have to go through some set up and the lay might be turned off by what each option does. Then after that you have do go into setup to start the relay.

I was wondering if you could make a download that was simple.
You click it and it starts right up as a relay/exit.

This would enable people to easily start up a relay and not install unnecessary software like torbutton or provixy which the vast majority of people will never use.. and might not want installed on their computer.

Its hard to describe how to do all the steps and reasons in 140 characters.

June 23, 2009

Permalink

I recently started a TOR relay with Vidalia. Under sharing I have "Help censored..." checked, with relay port 443 and directory port 9030. My bandwidth limits are set to 20KBp/s. Yet over the past few days, I've never seen a connection from Iran in my Tor network map. Am I supposed to submit my bridge address and if so, where? Am I configured correctly and if not, what do I fix?

Sounds like you did everything right. (Also check your message log for warnings, but from what you write it sounds that everything is fine.) Your bridge descriptor is uploaded by default to one of the directory authorities that distributes your address to clients as needed. No further action required on your side. It may be that your bridge needs to be around some time to attract more clients. In general, bridges do not see as many users as relays do. But for those users it's even more important that people are running bridges!

June 24, 2009

Permalink

Anyone making bridges should email them to baklava at piratbyran.org

He's from the Pirate Bay and is the primary person to contact regarding bridges. I set up Tor last night and saw my first connection today uploading about 30 MB.

No offense meant JackNapier, but can someone verify that this is a genuine address of somebody sending bridge info to Iranians, and not somebody in Iranian Gov phishing for bridge addresses to block?
If bridges addresses get into the wrong hands they are blocked and useless.
You can always send bridge info to Ian - details here:
http://iansbrain.com/2009/06/15/tor-and-the-iranian-election/

June 25, 2009

Permalink

The original topic premise of a need to keep the added bandwidth on-line is certainly plausible and conventional reasoning. However, given the history of the internet (and computing, generally), I am not certain that it is 100% valid. That history is of demand inexorably expanded to fill whatever bandwidth is available. The hypothetical scenario goes like this: Suppose that all of the additional resources that came on-line specifically in the cause of free communications for the Iranian dissidents stay on-line after that crisis subsides. Over the next several months, client-only users who had minimized their use of TOR in the past because of throughput and latency issues, gradually ramp up their use as they find it faster. The added bandwidth is now entirely consumed by "ordinary", "background" networking. Later, another political crisis triggers government censorship of the net, and that much more additional bandwidth will need to be found. Is the potential supply available to TOR so inexhaustible as to be certain if its availability at need? If there was a clear choice to be made between keeping the extra capacity on-line in the above scenario, and having it taken back off-line to be held in reliable reserve against another crisis, I am not sure that the second alternative might not be preferable. Admittedly, the dichotomy I presented between "ordinary" and "crisis" use is somewhat artificial, and it is also unlikely that the actual alternatives and consequences are so clear cut.

June 26, 2009

Permalink

I was going to install a relay on Ubuntu Jaunty, but that is on hold now.

Installation on Linux is not the easiest thing. The instructions here: https://wiki.torproject.org/noreply/TheOnionRouter/TorOnDebian say not to use the Ubuntu repositories, but the prescribed procedure left me with an error message about missing packages/files.

I'm up to my ears with fixing things. Why not just make it easy and update the Ubuntu repository?

I've been having the same trouble. OTOH, I am a Linux newbie.
This is an example of what I've been seeing

x@tor:~$ apt-get update
E: Could not open lock file /var/lib/apt/lists/lock - open (13 Permission denied)
E: Unable to lock the list directory
x@tor:~$

x@tor:~$ apt-get install tor tor-geoipdb
E: Could not open lock file /var/lib/dpkg/lock - open (13 Permission denied)
E: Unable to lock the administration directory (/var/lib/dpkg/), are you root?
x@tor:~$

Maybe the issue is I'm not "root" when doing this. But, I have no idea how to set myself as "root" or even if that is the problem.

I have a good amount of experience with Windows. But, I've chosen to install TOR on a separate Ubuntu box for several reasons.

If anyone has a solution, I'd love to hear it.

Regards,
Mike

When you use Ubuntu, you need to use an Ubuntu guide, not Debian.
You needed to use sudo before each of your commands for them so succeed, so:
sudo apt-get update
sudo apt-get install tor tor-geoipdb

I strongly advise you to NOT use repositories not intended for the specific Ubuntu version you use. Do not blindly put Debian repositories or you could render your system unusable.

ATM if you use Ubuntu 9.04 the repo is:
deb http://mirror.noreply.org/pub/tor jaunty main

Here the word jaunty is critical. For more questions, ask in ubuntuforums, or at least search for Ubuntu specific guides next time.

June 29, 2009

Permalink

If you can, go setup more relays and/or bridges and keep them running even when the conflicts in the world do not hit the headlines.

This sounds to me like the official go ahead to start talking up Tor on all the Social nets, etc.

June 29, 2009

Permalink

I have setup my pc as relay using the vidalia gui. But it seems like i have not relayed any messages so far and i am not even listed in the relay list :(.

I feel useless now :(

July 04, 2009

Permalink

Vidalia 0.1.13 bundle with Tor 0.2.0.35 on MS Server 2003 as exit node on a 2Mbps/512Kbps ADSL:

Despite custom setting bandwidth limits to 25/30 KB/s, which I would be happy to donate for a couple of months, Tor still hogs all the 45-55KB/s maximum upload speed for long periods of time, rendering the Internet connection almost useless for other purposes.

If I am to recommend running a Tor relay to other average Joes, the default bandwidth limits must be set - and effectively capped - at realistic values. The most efficient solution would be adopting the Vuze (former Azureus) auto-speed mechanism, but a default 25 avg and 40 absolute max for a 512Kbps ADSL should work.

July 04, 2009

Permalink

I'm running Tor 0.2.1.16-rc under Windows XP Home SP3. It was running successfully as a relay for about 48 hours.

I just reconfigured it to run as a bridge using "Help censored users reach the Tor network." It has been running for about 30 minutes. It starts without error but there's very little traffic. I see two connections using "Netstat -an" and when inspecting the Tor process' TCP/IP connections using Process Explorer.

I have not shared my "network key" with anyone. Will the Tor network distribute this automatically or do I have to manually distribute it?

September 28, 2009

Permalink

hi, i'm just have an idea that might be help. i think if tor-net be a social-net and all relay be just bridge and can connect with people who is in social-net(of course it can be expand but in first step) then tor-net can be force all people to be relay because in social-net they should save their property in internet. in this way no one could filter this net.