I follow this guideline below
https://commotionwireless.net/blog/2014/09/15/transparent-tor-gateway-on-openwrt
It's working on Chaos Calmer (tor ver.0.2.7.4), but lede 17.01.4 using
new tor ver.0.3.1.8
I don't understand what's going on
Can somebody help?
/var/log/tor/notices.log
Nov 30 17:59:04.000 [notice] Tor 0.3.1.8 (git-ad5027f7dc790624) opening new log file.
Nov 30 17:59:04.536 [notice] Tor 0.3.1.8 (git-ad5027f7dc790624) running on Linux with Libevent 2.0.22-stable, OpenSSL 1.0.2m, Zlib 1.2.11, Liblzma N/A, and Libzstd N/A.
Nov 30 17:59:04.536 [notice] Tor can't help you if you use it wrong! Learn how to be safe at https://www.torproject.org/download/download#warning
Nov 30 17:59:04.746 [notice] Read configuration file "/etc/tor/torrc".
Nov 30 17:59:04.970 [warn] You specified a public address '172.168.1.1:9050' for SocksPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.970 [warn] You specified a public address '172.168.1.1:9053' for DNSPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.970 [warn] You specified a public address '172.168.1.1:9040' for TransPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.983 [warn] You specified a public address '172.168.1.1:9050' for SocksPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.984 [warn] You specified a public address '172.168.1.1:9053' for DNSPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.984 [warn] You specified a public address '172.168.1.1:9040' for TransPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.985 [notice] Opening Socks listener on 172.168.1.1:9050
Nov 30 17:59:04.985 [notice] Opening DNS listener on 172.168.1.1:9053
Nov 30 17:59:04.986 [notice] Opening Transparent pf/netfilter listener on 172.168.1.1:9040
Nov 30 17:59:05.000 [warn] Your log may contain sensitive information - you're logging more than "notice". Don't log unless it serves an important reason. Overwrite the log afterwards.
Nov 30 17:59:05.000 [notice] Parsing GEOIP IPv4 file /usr/share/tor/geoip.
Nov 30 17:59:22.000 [notice] Parsing GEOIP IPv6 file /usr/share/tor/geoip6.
Nov 30 18:00:43.000 [notice] Bootstrapped 0%: Starting
Nov 30 18:00:43.000 [notice] Starting with guard context "default"
Nov 30 18:00:43.000 [notice] Bootstrapped 5%: Connecting to directory server
Nov 30 18:00:43.000 [notice] Bootstrapped 10%: Finishing handshake with directory server
Nov 30 18:10:20.000 [warn] Problem bootstrapping. Stuck at 10%: Finishing handshake with directory server. (DONE; DONE; count 10; recommendation warn; host 9FBEB75E8BC142565F12CBBE078D63310236A334 at 91.121.84.137:4052)
Nov 30 18:10:20.000 [warn] 10 connections have failed:
Nov 30 18:10:20.000 [warn] 10 connections died in state handshaking (Tor, v3 handshake) with SSL state SSL negotiation finished successfully in OPEN
Nov 30 18:11:44.000 [warn] Problem bootstrapping. Stuck at 10%: Finishing handshake with directory server. (DONE; DONE; count 11; recommendation warn; host 439D0447772CB107B886F7782DBC201FA26B92D1 at 178.62.86.96:9001)
Nov 30 18:11:44.000 [warn] 11 connections have failed:
Nov 30 18:11:44.000 [warn] 11 connections died in state handshaking (Tor, v3 handshake) with SSL state SSL negotiation finished successfully in OPEN
Nov 30 18:11:45.000 [warn] Problem bootstrapping. Stuck at 10%: Finishing handshake with directory server. (DONE; DONE; count 12; recommendation warn; host 7EA6EAD6FD83083C538F44038BBFA077587DD755 at 194.109.206.212:443)
Nov 30 18:11:45.000 [warn] 12 connections have failed:
Nov 30 18:11:45.000 [warn] 12 connections died in state handshaking (Tor, v3 handshake) with SSL state SSL negotiation finished successfully in OPEN
Nov 30 18:14:44.000 [warn] Problem bootstrapping. Stuck at 10%: Finishing handshake with directory server. (DONE; DONE; count 13; recommendation warn; host 3D7E274A87D9A89AF064C13D1EE4CA1F184F2600 at 176.10.107.180:9001)
Nov 30 18:14:44.000 [warn] 13 connections have failed:
Nov 30 18:14:44.000 [warn] 13 connections died in state handshaking (Tor, v3 handshake) with SSL state SSL negotiation finished successfully in OPEN
Nov 30 18:16:10.000 [warn] Problem bootstrapping. Stuck at 10%: Finishing handshake with directory server. (DONE; DONE; count 14; recommendation warn; host F2044413DAC2E02E3D6BCF4735A19BCA1DE97281 at 131.188.40.189:443)
Nov 30 18:16:10.000 [warn] 14 connections have failed:
Nov 30 18:16:10.000 [warn] 14 connections died in state handshaking (Tor, v3 handshake) with SSL state SSL negotiation finished successfully in OPEN
/var/log/tor/debug.log
Nov 30 17:59:04.000 [notice] Tor 0.3.1.8 (git-ad5027f7dc790624) opening new log file.
Nov 30 17:59:04.536 [notice] Tor 0.3.1.8 (git-ad5027f7dc790624) running on Linux with Libevent 2.0.22-stable, OpenSSL 1.0.2m, Zlib 1.2.11, Liblzma N/A, and Libzstd N/A.
Nov 30 17:59:04.536 [notice] Tor can't help you if you use it wrong! Learn how to be safe at https://www.torproject.org/download/download#warning
Nov 30 17:59:04.746 [notice] Read configuration file "/etc/tor/torrc".
Nov 30 17:59:04.970 [warn] You specified a public address '172.168.1.1:9050' for SocksPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.970 [warn] You specified a public address '172.168.1.1:9053' for DNSPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.970 [warn] You specified a public address '172.168.1.1:9040' for TransPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.983 [warn] You specified a public address '172.168.1.1:9050' for SocksPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.984 [warn] You specified a public address '172.168.1.1:9053' for DNSPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.984 [warn] You specified a public address '172.168.1.1:9040' for TransPort. Other people on the Internet might find your computer and use it as an open proxy. Please don't allow this unless you have a good reason.
Nov 30 17:59:04.985 [notice] Opening Socks listener on 172.168.1.1:9050
Nov 30 17:59:04.985 [notice] Opening DNS listener on 172.168.1.1:9053
Nov 30 17:59:04.986 [notice] Opening Transparent pf/netfilter listener on 172.168.1.1:9040
Nov 30 17:59:05.000 [warn] Your log may contain sensitive information - you're logging more than "notice". Don't log unless it serves an important reason. Overwrite the log afterwards.
Nov 30 17:59:05.000 [info] options_act_reversible(): Recomputed OOS thresholds: ConnLimit 1000, ConnLimit_ 4064, ConnLimit_high_thresh 4000, ConnLimit_low_thresh 3048
Nov 30 17:59:05.000 [debug] tor_disable_debugger_attach(): Attemping to disable debugger attachment to Tor for unprivileged users.
Nov 30 17:59:05.000 [debug] tor_disable_debugger_attach(): Debugger attachment disabled for unprivileged users.
Nov 30 17:59:05.000 [info] tor_lockfile_lock(): Locking "/var/lib/tor/lock"
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 128.31.0.39:9131 (9695)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 86.59.21.38:80 (847B)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 194.109.206.212:80 (7EA6)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 16 dirserver at 37.218.247.217:80 (1D8F)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 131.188.40.189:80 (F204)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 193.23.244.244:80 (7BE6)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 171.25.193.9:443 (BD6A)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 154.35.175.225:80 (CF6D)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 199.58.81.140:80 (74A9)
Nov 30 17:59:05.000 [debug] parse_dir_authority_line(): Trusted 100 dirserver at 204.13.164.118:80 (24E2)
Nov 30 17:59:05.000 [debug] file_status(): stat()ing /var/lib/tor/state
Nov 30 17:59:05.000 [info] or_state_load(): Initialized state
Nov 30 17:59:05.000 [info] circuit_build_times_parse_state(): Adding 0 timeouts.
Nov 30 17:59:05.000 [info] circuit_build_times_parse_state(): Loaded 0/0 values from 0 lines in circuit time histogram
Nov 30 17:59:05.000 [debug] tor_rename(): Renaming /var/lib/tor/state.tmp to /var/lib/tor/state
Nov 30 17:59:05.000 [info] or_state_save(): Saved state to "/var/lib/tor/state"
Nov 30 17:59:05.000 [info] read_file_to_str(): Could not open "/var/lib/tor/router-stability": No such file or directory
Nov 30 17:59:05.000 [info] cell_ewma_set_scale_factor(): Disabled cell_ewma algorithm because of value in Default value
Nov 30 17:59:05.000 [notice] Parsing GEOIP IPv4 file /usr/share/tor/geoip.
Nov 30 17:59:22.000 [notice] Parsing GEOIP IPv6 file /usr/share/tor/geoip6.
Nov 30 17:59:28.000 [info] add_predicted_port(): New port prediction added. Will continue predictive circ building for 3097 more seconds.
Nov 30 17:59:28.000 [info] crypto_global_init(): NOT using OpenSSL engine support.
Nov 30 17:59:28.000 [info] evaluate_evp_for_aes(): No AES engine found; using AES_* functions.
Nov 30 17:59:32.000 [debug] file_status(): stat()ing /var/lib/tor/unparseable-descs
Nov 30 18:00:43.000 [notice] Bootstrapped 0%: Starting
Nov 30 18:00:43.000 [info] read_file_to_str(): Could not open "/var/lib/tor/cached-certs": No such file or directory
Nov 30 18:00:43.000 [info] read_file_to_str(): Could not open "/var/lib/tor/cached-consensus": No such file or directory
Nov 30 18:00:43.000 [info] read_file_to_str(): Could not open "/var/lib/tor/unverified-consensus": No such file or directory
Nov 30 18:00:43.000 [info] read_file_to_str(): Could not open "/var/lib/tor/cached-microdesc-consensus": No such file or directory
Nov 30 18:00:43.000 [info] read_file_to_str(): Could not open "/var/lib/tor/unverified-microdesc-consensus": No such file or directory
Nov 30 18:00:43.000 [info] tor_mmap_file(): Could not open "/var/lib/tor/cached-microdescs" for mmap(): No such file or directory
Nov 30 18:00:43.000 [info] read_file_to_str(): Could not open "/var/lib/tor/cached-microdescs.new": No such file or directory
Nov 30 18:00:43.000 [info] microdesc_cache_reload(): Reloaded microdescriptor cache. Found 0 descriptors.
Nov 30 18:00:43.000 [info] tor_mmap_file(): Could not open "/var/lib/tor/cached-descriptors" for mmap(): No such file or directory
Nov 30 18:00:43.000 [debug] file_status(): stat()ing /var/lib/tor/cached-descriptors.new
Nov 30 18:00:43.000 [info] tor_mmap_file(): Could not open "/var/lib/tor/cached-extrainfo" for mmap(): No such file or directory
Nov 30 18:00:43.000 [debug] file_status(): stat()ing /var/lib/tor/cached-extrainfo.new
Nov 30 18:00:43.000 [info] I learned some more directory information, but not enough to build a circuit: We have no usable consensus.
Nov 30 18:00:43.000 [info] update_consensus_bootstrap_attempt_downloads(): Launching microdesc bootstrap mirror networkstatus consensus download.
Nov 30 18:00:43.000 [notice] Starting with guard context "default"
Nov 30 18:00:43.000 [debug] get_guard_selection_by_name(): Creating a guard selection called default
Nov 30 18:00:43.000 [info] sample_reachable_filtered_entry_guards(): Trying to sample a reachable guard: We know of 0 in the USABLE_FILTERED set.
Nov 30 18:00:43.000 [info] sample_reachable_filtered_entry_guards(): (That isn't enough. Trying to expand the sample.)
Nov 30 18:00:43.000 [info] entry_guards_expand_sample(): Not expanding the sample guard set; we have no live consensus.
Nov 30 18:00:43.000 [info] sample_reachable_filtered_entry_guards(): (After filters [b], we have 0 guards to consider.)
Nov 30 18:00:43.000 [info] sample_reachable_filtered_entry_guards(): Trying to sample a reachable guard: We know of 0 in the USABLE_FILTERED set.
Nov 30 18:00:43.000 [info] sample_reachable_filtered_entry_guards(): (That isn't enough. Trying to expand the sample.)
Nov 30 18:00:43.000 [info] entry_guards_expand_sample(): Not expanding the sample guard set; we have no live consensus.
Nov 30 18:00:43.000 [info] sample_reachable_filtered_entry_guards(): (After filters [7], we have 0 guards to consider.)
Nov 30 18:00:43.000 [info] select_entry_guard_for_circuit(): Absolutely no sampled guards were available. Marking all guards for retry and starting from top again.
Nov 30 18:00:43.000 [info] directory_pick_generic_dirserver(): No router found for consensus network-status fetch; falling back to dirserver list.
Nov 30 18:00:43.000 [debug] directory_initiate_request(): anonymized 0, use_begindir 1.
Nov 30 18:00:43.000 [debug] directory_initiate_request(): Initiating consensus network-status fetch
Nov 30 18:00:43.000 [info] connection_ap_make_link(): Making internal direct tunnel to [scrubbed]:443 ...
Nov 30 18:00:43.000 [debug] connection_add_impl(): new conn type Socks, socket -1, address (Tor_internal), n_conns 4.
Nov 30 18:00:43.000 [info] connection_ap_make_link(): ... application connection created and linked.
Nov 30 18:00:43.000 [debug] connection_add_impl(): new conn type Directory, socket -1, address 92.222.38.67, n_conns 5.
Nov 30 18:00:43.000 [info] directory_send_command(): Downloading consensus from 92.222.38.67:443 using /tor/status-vote/current/consensus-microdesc/0232AF+14C131+23D15D+27102B+49015F+D586D1+E8A9C4+ED03BB+EFCBE7.z
Nov 30 18:00:43.000 [debug] directory_send_command(): Sent request to directory server '92.222.38.67:443': (purpose: 14, request size: 192, payload size: 0)
Nov 30 18:00:43.000 [debug] download_status_log_helper(): microdesc attempted 1 time(s); I'll try again in 1 seconds.
Nov 30 18:00:43.000 [info] update_consensus_bootstrap_attempt_downloads(): Launching microdesc bootstrap authority networkstatus consensus download.
Nov 30 18:00:43.000 [debug] directory_initiate_request(): anonymized 0, use_begindir 1.
Nov 30 18:00:43.000 [debug] directory_initiate_request(): Initiating consensus network-status fetch
Nov 30 18:00:43.000 [info] connection_ap_make_link(): Making internal direct tunnel to [scrubbed]:443 ...
Nov 30 18:00:43.000 [debug] connection_add_impl(): new conn type Socks, socket -1, address (Tor_internal), n_conns 6.
Nov 30 18:00:43.000 [info] connection_ap_make_link(): ... application connection created and linked.
Nov 30 18:00:43.000 [debug] connection_add_impl(): new conn type Directory, socket -1, address 154.35.175.225, n_conns 7.
Nov 30 18:00:43.000 [info] directory_send_command(): Downloading consensus from 154.35.175.225:443 using /tor/status-vote/current/consensus-microdesc/0232AF+14C131+23D15D+27102B+49015F+D586D1+E8A9C4+ED03BB+EFCBE7.z
Nov 30 18:00:43.000 [debug] directory_send_command(): Sent request to directory server '154.35.175.225:443': (purpose: 14, request size: 194, payload size: 0)
Nov 30 18:00:43.000 [debug] download_status_log_helper(): microdesc attempted 1 time(s); I'll try again in 6 seconds.
Nov 30 18:00:43.000 [debug] circuit_get_open_circ_or_launch(): considering 1, $DED6892FF89DBD737BA689698A171B2392EB3E82
Nov 30 18:00:43.000 [debug] onion_pick_cpath_exit(): Launching a one-hop circuit for dir tunnel.
Nov 30 18:00:43.000 [info] onion_pick_cpath_exit(): Using requested exit node '$DED6892FF89DBD737BA689698A171B2392EB3E82~DED6892FF89DBD737BA at 92.222.38.67'
Nov 30 18:00:43.000 [debug] onion_extend_cpath(): Path is 0 long; we want 1
Nov 30 18:00:43.000 [debug] onion_extend_cpath(): Chose router $DED6892FF89DBD737BA689698A171B2392EB3E82~DED6892FF89DBD737BA at 92.222.38.67 for hop 1 (exit is DED6892FF89DBD737BA689698A171B2392EB3E82)
Nov 30 18:00:43.000 [debug] onion_extend_cpath(): Path is complete: 1 steps long
Nov 30 18:00:43.000 [debug] circuit_handle_first_hop(): Looking for firsthop '92.222.38.67:443'
Nov 30 18:00:43.000 [info] circuit_handle_first_hop(): Next router is [scrubbed]: Not connected. Connecting.
Nov 30 18:00:43.000 [notice] Bootstrapped 5%: Connecting to directory server
Nov 30 18:00:43.000 [debug] channel_tls_connect(): In channel_tls_connect() for channel 0xda7440 (global id 1)
Nov 30 18:00:43.000 [debug] channel_tls_connect(): Marking new outgoing channel 1 at 0xda7440 as remote
Nov 30 18:00:43.000 [info] connection_or_set_canonical(): Channel 0 chose an idle timeout of 254.
Nov 30 18:00:43.000 [debug] connection_or_init_conn_from_address(): init conn from address 92.222.38.67: DED6892FF89DBD737BA689698A171B2392EB3E82, <unset> (1)
Nov 30 18:00:43.000 [info] connection_or_set_identity_digest(): Set identity digest for 0xda7610 ([scrubbed]): DED6892FF89DBD737BA689698A171B2392EB3E82 <unset>.
Nov 30 18:00:43.000 [info] connection_or_set_identity_digest(): (Previously: 0000000000000000000000000000000000000000 <unset>)
Nov 30 18:00:43.000 [debug] channel_set_identity_digest(): Setting remote endpoint digest on channel 0xda7440 with global ID 1 to digest DED6892FF89DBD737BA689698A171B2392EB3E82
Nov 30 18:00:43.000 [debug] connection_connect(): Connecting to [scrubbed]:443.