I2P_Developers/i2p.android.base
3
0
Fork 2
Code Issues 39 Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
0e4c84694274902e4400f23d7cdb030a0775d820
i2p.android.base/apps/routerconsole/jsp/config.jsp

248 lines
15 KiB
Plaintext
Raw Normal View History

added actual form handling to the main config.jsp page dropped the old notice.jsp style result notification display destination info on the left nav
2004-07-31 02:34:24 +00:00
<%@page contentType="text/html" %>
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html><head>
2005-09-07 BarkerJr * HTML cleanup for the router console (thanks!) 2005-09-07 jrandom * Lay the foundation for 'client routers' - the ability for peers to opt out of participating in tunnels entirely due to firewall/NAT issues. Individual routers have control over where those peers are used in tunnels - in outbound or inbound, exploratory or client tunnels, or none at all. The defaults with this build are to simply act as before - placing everyone as potential participants in any tunnel. * Another part of the foundation includes the option for netDb participants to refuse to answer queries regarding peers who are marked as unreachable, though this too is disabled by default (meaning the routerInfo is retrievable from the netDb).
2005-09-07 22:31:11 +00:00
<title>I2P Router Console - config networking</title>
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
<link rel="stylesheet" href="default.css" type="text/css" />
</head><body>
<%@include file="nav.jsp" %>
<%@include file="summary.jsp" %>
<jsp:useBean class="net.i2p.router.web.ConfigNetHelper" id="nethelper" scope="request" />
<jsp:setProperty name="nethelper" property="contextId" value="<%=(String)session.getAttribute("i2p.contextId")%>" />
<div class="main" id="main">
<%@include file="confignav.jsp" %>
added actual form handling to the main config.jsp page dropped the old notice.jsp style result notification display destination info on the left nav
2004-07-31 02:34:24 +00:00
<jsp:useBean class="net.i2p.router.web.ConfigNetHandler" id="formhandler" scope="request" />
<jsp:setProperty name="formhandler" property="*" />
<jsp:setProperty name="formhandler" property="contextId" value="<%=(String)session.getAttribute("i2p.contextId")%>" />
<font color="red"><jsp:getProperty name="formhandler" property="errors" /></font>
<i><jsp:getProperty name="formhandler" property="notices" /></i>
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
<form action="config.jsp" method="POST">
standardized the spoof prevention: - set the nonce and noncePrev for the handler when rendering the form - include the current nonce in the hidden parameter "nonce" - include an "action" parameter (so we know we want to execute something and hence, validate the nonce, rather than just display the page) - if the nonce submitted doesnt match what is set in the nonce or noncePrev when validating, its invalid. refuse to process
2004-08-23 17:11:38 +00:00
<% String prev = System.getProperty("net.i2p.router.web.ConfigNetHandler.nonce");
if (prev != null) System.setProperty("net.i2p.router.web.ConfigNetHandler.noncePrev", prev);
System.setProperty("net.i2p.router.web.ConfigNetHandler.nonce", new java.util.Random().nextLong()+""); %>
<input type="hidden" name="nonce" value="<%=System.getProperty("net.i2p.router.web.ConfigNetHandler.nonce")%>" />
<input type="hidden" name="action" value="blah" />
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
<b>Bandwidth limiter</b><br />
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
<p>
<table>
<tr><td><input style="text-align: right; width: 5em;" name="inboundrate" type="text" size="5" maxlength="5" value="<jsp:getProperty name="nethelper" property="inboundRate" />" /> KBps
In <td>(<jsp:getProperty name="nethelper" property="inboundRateBits" />)<br />
<!-- let's keep this simple...
2005-02-16 jrandom * (Merged the 0.5-pre branch back into CVS HEAD) * Replaced the old tunnel routing crypto with the one specified in router/doc/tunnel-alt.html, including updates to the web console to view and tweak it. * Provide the means for routers to reject tunnel requests with a wider range of responses: probabalistic rejection, due to approaching overload transient rejection, due to temporary overload bandwidth rejection, due to persistent bandwidth overload critical rejection, due to general router fault (or imminent shutdown) The different responses are factored into the profiles accordingly. * Replaced the old I2CP tunnel related options (tunnels.depthInbound, etc) with a series of new properties, relevent to the new tunnel routing code: inbound.nickname (used on the console) inbound.quantity (# of tunnels to use in any leaseSets) inbound.backupQuantity (# of tunnels to keep in the ready) inbound.length (# of remote peers in the tunnel) inbound.lengthVariance (if > 0, permute the length by adding a random # up to the variance. if < 0, permute the length by adding or subtracting a random # up to the variance) outbound.* (same as the inbound, except for the, uh, outbound tunnels in that client's pool) There are other options, and more will be added later, but the above are the most relevent ones. * Replaced Jetty 4.2.21 with Jetty 5.1.2 * Compress all profile data on disk. * Adjust the reseeding functionality to work even when the JVM's http proxy is set. * Enable a poor-man's interactive-flow in the streaming lib by choking the max window size. * Reduced the default streaming lib max message size to 16KB (though still configurable by the user), also doubling the default maximum window size. * Replaced the RouterIdentity in a Lease with its SHA256 hash. * Reduced the overall I2NP message checksum from a full 32 byte SHA256 to the first byte of the SHA256. * Added a new "netId" flag to let routers drop references to other routers who we won't be able to talk to. * Extended the timestamper to get a second (or third) opinion whenever it wants to actually adjust the clock offset. * Replaced that kludge of a timestamp I2NP message with a full blown DateMessage. * Substantial memory optimizations within the router and the SDK to reduce GC churn. Client apps and the streaming libs have not been tuned, however. * More bugfixes thank you can shake a stick at. 2005-02-13 jrandom * Updated jbigi source to handle 64bit CPUs. The bundled jbigi.jar still only contains 32bit versions, so build your own, placing libjbigi.so in your install dir if necessary. (thanks mule!) * Added support for libjbigi-$os-athlon64 to NativeBigInteger and CPUID (thanks spaetz!)
2005-02-16 22:23:47 +00:00
bursting up to
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
<input name="inboundburstrate" type="text" size="5" value="<jsp:getProperty name="nethelper" property="inboundBurstRate" />" /> KBps for
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
<jsp:getProperty name="nethelper" property="inboundBurstFactorBox" /><br />
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
-->
<tr><td><input style="text-align: right; width: 5em;" name="outboundrate" type="text" size="5" maxlength="5" value="<jsp:getProperty name="nethelper" property="outboundRate" />" /> KBps
Out <td>(<jsp:getProperty name="nethelper" property="outboundRateBits" />)<br />
<!-- let's keep this simple...
2005-02-16 jrandom * (Merged the 0.5-pre branch back into CVS HEAD) * Replaced the old tunnel routing crypto with the one specified in router/doc/tunnel-alt.html, including updates to the web console to view and tweak it. * Provide the means for routers to reject tunnel requests with a wider range of responses: probabalistic rejection, due to approaching overload transient rejection, due to temporary overload bandwidth rejection, due to persistent bandwidth overload critical rejection, due to general router fault (or imminent shutdown) The different responses are factored into the profiles accordingly. * Replaced the old I2CP tunnel related options (tunnels.depthInbound, etc) with a series of new properties, relevent to the new tunnel routing code: inbound.nickname (used on the console) inbound.quantity (# of tunnels to use in any leaseSets) inbound.backupQuantity (# of tunnels to keep in the ready) inbound.length (# of remote peers in the tunnel) inbound.lengthVariance (if > 0, permute the length by adding a random # up to the variance. if < 0, permute the length by adding or subtracting a random # up to the variance) outbound.* (same as the inbound, except for the, uh, outbound tunnels in that client's pool) There are other options, and more will be added later, but the above are the most relevent ones. * Replaced Jetty 4.2.21 with Jetty 5.1.2 * Compress all profile data on disk. * Adjust the reseeding functionality to work even when the JVM's http proxy is set. * Enable a poor-man's interactive-flow in the streaming lib by choking the max window size. * Reduced the default streaming lib max message size to 16KB (though still configurable by the user), also doubling the default maximum window size. * Replaced the RouterIdentity in a Lease with its SHA256 hash. * Reduced the overall I2NP message checksum from a full 32 byte SHA256 to the first byte of the SHA256. * Added a new "netId" flag to let routers drop references to other routers who we won't be able to talk to. * Extended the timestamper to get a second (or third) opinion whenever it wants to actually adjust the clock offset. * Replaced that kludge of a timestamp I2NP message with a full blown DateMessage. * Substantial memory optimizations within the router and the SDK to reduce GC churn. Client apps and the streaming libs have not been tuned, however. * More bugfixes thank you can shake a stick at. 2005-02-13 jrandom * Updated jbigi source to handle 64bit CPUs. The bundled jbigi.jar still only contains 32bit versions, so build your own, placing libjbigi.so in your install dir if necessary. (thanks mule!) * Added support for libjbigi-$os-athlon64 to NativeBigInteger and CPUID (thanks spaetz!)
2005-02-16 22:23:47 +00:00
bursting up to
2005-09-17 jrandom * Updated the bandwidth limiter to use two tiers of bandwidth - our normal steady state rate, plus a new limit on how fast we transfer when bursting. This is different from the old "burst as fast as possible until we're out of tokens" policy, and should help those with congested networks. See /config.jsp to manage this rate. * Bugfixes in Syndie to handle missing cache files (no data was lost, the old posts just didn't show up). * Log properly in EepPost
2005-09-17 23:01:44 +00:00
<input name="outboundburstrate" type="text" size="2" value="<jsp:getProperty name="nethelper" property="outboundBurstRate" />" /> KBps for
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
<jsp:getProperty name="nethelper" property="outboundBurstFactorBox" /><br />
make a nicer initialNews.xml, add clarification to config.jsp
2008-05-30 00:08:29 +00:00
<i>KBps = kilobytes per second = 1024 bytes per second = 8192 bits per second.<br />
* Transport: - Fixes and cleanups when NTCP and/or UDP transports disabled - More TCP removal cleanup - Clean up bandwidth limiting, centralize defaults - Force burst to be >= limit - Increase default bw to 48/24, burst 64/32
2008-12-03 18:53:57 +00:00
A negative rate sets the default.</i><br />
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
-->
<tr><td><jsp:getProperty name="nethelper" property="sharePercentageBox" />
Share <td>(<jsp:getProperty name="nethelper" property="shareRateBits" />)<br />
</table>
</p><p>
2007-07-04 zzz * Display calculated share bandwidth and remove load testing on config.jsp
2007-07-04 22:58:48 +00:00
<% int share = nethelper.getShareBandwidth();
2007-08-05 Complication * Update the sharing calculator on config.jsp and explain the trade-off even more thoroughly.
2007-08-06 03:35:42 +00:00
if (share < 12) {
2007-07-04 zzz * Display calculated share bandwidth and remove load testing on config.jsp
2007-07-04 22:58:48 +00:00
out.print("<b>NOTE</b>: You have configured I2P to share only " + share + "KBps. ");
2007-08-05 Complication * Update the sharing calculator on config.jsp and explain the trade-off even more thoroughly.
2007-08-06 03:35:42 +00:00
out.print("I2P requires at least 12KBps to enable sharing. ");
out.print("Please enable sharing (participating in tunnels) by configuring more bandwidth. ");
out.print("It improves your anonymity by creating cover traffic, and helps the network.<br />");
2007-07-04 zzz * Display calculated share bandwidth and remove load testing on config.jsp
2007-07-04 22:58:48 +00:00
} else {
out.print("You have configured I2P to share " + share + "KBps. ");
out.print("The higher the share bandwidth the more you improve your anonymity and help the network.<br />");
}
%>
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
</p><p>
2006-03-16 jrandom * Integrate basic hooks for jrobin (http://jrobin.org) into the router console. Selected stats can be harvested automatically and fed into in-memory RRD databases, and those databases can be served up either as PNG images or as RRDtool compatible XML dumps (see oldstats.jsp for details). A base set of stats are harvested by default, but an alternate list can be specified by setting the 'stat.summaries' list on the advanced config. For instance: stat.summaries=bw.recvRate.60000,bw.sendRate.60000 * HTML tweaking for the general config page (thanks void!) * Odd NPE fix (thanks Complication!)
2006-03-16 21:45:17 +00:00
<input type="submit" name="save" value="Save changes" /> <input type="reset" value="Cancel" /><br />
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
<hr />
2007-07-04 zzz * Display calculated share bandwidth and remove load testing on config.jsp
2007-07-04 22:58:48 +00:00
<!--
2006-02-16 jrandom * Add a new toggle to the web config to enable/disable the load testing
2006-02-16 10:33:29 +00:00
<b>Enable load testing: </b>
<input type="checkbox" name="enableloadtesting" value="true" <jsp:getProperty name="nethelper" property="enableLoadTesting" /> />
<p>If enabled, your router will periodically anonymously probe some of your peers
to see what sort of throughput they can handle. This improves your router's ability
2006-02-25 zzz spelling fix
2006-02-25 21:51:46 +00:00
to pick faster peers, but can cost substantial bandwidth. Relevant data from the
2006-02-16 jrandom * Add a new toggle to the web config to enable/disable the load testing
2006-02-16 10:33:29 +00:00
load testing is fed into the profiles as well as the
<a href="oldstats.jsp#test.rtt">test.rtt</a> and related stats.</p>
2006-02-19 jrandom * Moved the current net's reseed URL to a different location than where the old net looks (dev.i2p.net/i2pdb2/ vs .../i2pdb/) * More aggressively expire inbound messages (on receive, not just on send) * Add in a hook for breaking backwards compatibility in the SSU wire protocol directly by including a version as part of the handshake. The version is currently set to 0, however, so the wire protocol from this build is compatible with all earlier SSU implementations. * Increased the number of complete message readers, cutting down substantially on the delay processing inbound messages. * Delete the message history file on startup * Reworked the restart/shutdown display on the console (thanks bd_!)
2006-02-19 12:29:57 +00:00
<hr />
2007-07-04 zzz * Display calculated share bandwidth and remove load testing on config.jsp
2007-07-04 22:58:48 +00:00
-->
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
<p>
<b>UPnP Configuration:</b><br />
<input type="checkbox" name="upnp" value="true" <jsp:getProperty name="nethelper" property="upnpChecked" /> />
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
Enable UPnP to open firewall ports <a href="peers.jsp#upnp">UPnP status</a>
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
</p><p>
<b>IP Configuration:</b><br />
start of new address configuration
2009-04-29 03:12:19 +00:00
Externally reachable hostname or IP address:<br />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
<input type="radio" name="udpAutoIP" value="local,upnp,ssu" <%=nethelper.getUdpAutoIPChecked(3) %> />
start of new address configuration
2009-04-29 03:12:19 +00:00
Use local public address if available, then UPnP detection, then SSU detection<br />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
<input type="radio" name="udpAutoIP" value="local,ssu" <%=nethelper.getUdpAutoIPChecked(4) %> />
start of new address configuration
2009-04-29 03:12:19 +00:00
Use local public address if available, then SSU detection<br />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
<input type="radio" name="udpAutoIP" value="upnp,ssu" <%=nethelper.getUdpAutoIPChecked(5) %> />
start of new address configuration
2009-04-29 03:12:19 +00:00
Use UPnP detection if available, then SSU detection<br />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
<input type="radio" name="udpAutoIP" value="ssu" <%=nethelper.getUdpAutoIPChecked(0) %> />
Use SSU detection only<br />
<input type="radio" name="udpAutoIP" value="fixed" <%=nethelper.getUdpAutoIPChecked(1) %> />
start of new address configuration
2009-04-29 03:12:19 +00:00
Specify hostname or IP:
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
<input name ="udpHost1" type="text" size="16" value="<jsp:getProperty name="nethelper" property="udphostname" />" />
start of new address configuration
2009-04-29 03:12:19 +00:00
<% String[] ips = nethelper.getAddresses();
if (ips.length > 0) {
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
out.print(" or <select name=\"udpHost2\"><option value=\"\" selected=\"true\">Select Interface</option>\n");
start of new address configuration
2009-04-29 03:12:19 +00:00
for (int i = 0; i < ips.length; i++) {
out.print("<option value=\"");
out.print(ips[i]);
out.print("\">");
out.print(ips[i]);
out.print("</option>\n");
}
out.print("</select>\n");
}
%>
<br />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
<input type="radio" name="udpAutoIP" value="hidden" <%=nethelper.getUdpAutoIPChecked(2) %> />
Hidden mode - do not publish IP<i>(not recommended; change restarts router)</i><br />
</p><p>
<b>UDP Configuration:</b><br />
- Add UDP Port configuration to config.jsp - Don't restart router when configs change on config.jsp; simply rebuild router info. - Clean up some port config code in UDP
2009-04-28 19:01:52 +00:00
Internal UDP port:
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
<input name ="udpPort" type="text" size="5" maxlength="5" vvalue="<jsp:getProperty name="nethelper" property="configuredUdpPort" />" /><br />
start of new address configuration
2009-04-29 03:12:19 +00:00
<input type="checkbox" name="requireIntroductions" value="true" <jsp:getProperty name="nethelper" property="requireIntroductionsChecked" /> />
Require SSU introductions
- Tweak UPnP warning messages - Remove unused verifyupdate.jsp - Start of callbacks from UPnP to transports - Tell UDP local addresses at startup
2009-04-29 18:23:15 +00:00
<i>(Enable if you cannot open your firewall)</i>
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
</p><p>
start of new address configuration
2009-04-29 03:12:19 +00:00
Current External UDP address: <i><jsp:getProperty name="nethelper" property="udpAddress" /></i><br />
- Tweak UPnP warning messages - Remove unused verifyupdate.jsp - Start of callbacks from UPnP to transports - Tell UDP local addresses at startup
2009-04-29 18:23:15 +00:00
</p><p>If you can, please poke a hole in your NAT or firewall to allow unsolicited UDP packets to reach
2006-02-19 jrandom * Moved the current net's reseed URL to a different location than where the old net looks (dev.i2p.net/i2pdb2/ vs .../i2pdb/) * More aggressively expire inbound messages (on receive, not just on send) * Add in a hook for breaking backwards compatibility in the SSU wire protocol directly by including a version as part of the handshake. The version is currently set to 0, however, so the wire protocol from this build is compatible with all earlier SSU implementations. * Increased the number of complete message readers, cutting down substantially on the delay processing inbound messages. * Delete the message history file on startup * Reworked the restart/shutdown display on the console (thanks bd_!)
2006-02-19 12:29:57 +00:00
you on your external UDP address. If you can't, I2P now includes supports UDP hole punching
with "SSU introductions" - peers who will relay a request from someone you don't know to your
router for your router so that you can make an outbound connection to them. I2P will use these
introductions automatically if it detects that the port is not forwarded (as shown by
start of new address configuration
2009-04-29 03:12:19 +00:00
the <i>Reachability: Firewalled</i> line), or you can manually require them here.
2006-02-19 jrandom * Moved the current net's reseed URL to a different location than where the old net looks (dev.i2p.net/i2pdb2/ vs .../i2pdb/) * More aggressively expire inbound messages (on receive, not just on send) * Add in a hook for breaking backwards compatibility in the SSU wire protocol directly by including a version as part of the handshake. The version is currently set to 0, however, so the wire protocol from this build is compatible with all earlier SSU implementations. * Increased the number of complete message readers, cutting down substantially on the delay processing inbound messages. * Delete the message history file on startup * Reworked the restart/shutdown display on the console (thanks bd_!)
2006-02-19 12:29:57 +00:00
Users behind symmetric NATs, such as OpenBSD's pf, are not currently supported.</p>
<input type="submit" name="recheckReachability" value="Check network reachability..." />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
</p><p>
<b>Inbound TCP Configuration:</b><br />
- Start to rework inbound configuration
2009-04-28 22:45:26 +00:00
Externally reachable hostname or IP address:<br />
- i2np.ntcp.autoip=true redefined to enable inbound only if SSU reachability is OK. i2np.ntcp.autoip=always for the old behavior. autoip default is now "true". i2np.ntcp.hostname=xxx now trumps i2np.tcp.autoip. - SSU always tells NTCP when status changes.
2009-04-30 21:03:00 +00:00
<input type="radio" name="ntcpAutoIP" value="false" <%=nethelper.getTcpAutoIPChecked(0) %> />
Disable (Firewalled)<br />
<input type="radio" name="ntcpAutoIP" value="always" <%=nethelper.getTcpAutoIPChecked(3) %> />
Use IP address detected by SSU (Not firewalled)
start of new address configuration
2009-04-29 03:12:19 +00:00
<i>(currently <jsp:getProperty name="nethelper" property="udpIP" />)</i><br />
- i2np.ntcp.autoip=true redefined to enable inbound only if SSU reachability is OK. i2np.ntcp.autoip=always for the old behavior. autoip default is now "true". i2np.ntcp.hostname=xxx now trumps i2np.tcp.autoip. - SSU always tells NTCP when status changes.
2009-04-30 21:03:00 +00:00
<input type="radio" name="ntcpAutoIP" value="true" <%=nethelper.getTcpAutoIPChecked(2) %> />
Use IP address detected by SSU, only if we do not appear to be firewalled<br />
<input type="radio" name="ntcpAutoIP" value="false" <%=nethelper.getTcpAutoIPChecked(1) %> />
- Start to rework inbound configuration
2009-04-28 22:45:26 +00:00
Specify hostname or IP:
2006-07-04 jrandom * New NIO-based tcp transport (NTCP), enabled by default for outbound connections only. Those who configure their NAT/firewall to allow inbound connections and specify the external host and port (dyndns/etc is ok) on /config.jsp can receive inbound connections. SSU is still enabled for use by default for all users as a fallback. * Substantial bugfix to the tunnel gateway processing to transfer messages sequentially instead of interleaved * Renamed GNU/crypto classes to avoid name clashes with kaffe and other GNU/Classpath based JVMs * Adjust the Fortuna PRNG's pooling system to reduce contention on refill with a background thread to refill the output buffer * Add per-transport support for the shitlist * Add a new async pumped tunnel gateway to reduce tunnel dispatcher contention
2006-07-04 21:17:44 +00:00
<input name ="ntcphost" type="text" size="16" value="<jsp:getProperty name="nethelper" property="ntcphostname" />" />
start of new address configuration
2009-04-29 03:12:19 +00:00
<i>(dyndns and the like are fine)</i><br />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
</p><p>
- Start to rework inbound configuration
2009-04-28 22:45:26 +00:00
Externally reachable TCP port:<br />
<input type="radio" name="ntcpAutoPort" value="2" <%=nethelper.getTcpAutoPortChecked(2) %> />
Use the same port configured for SSU
start of new address configuration
2009-04-29 03:12:19 +00:00
<i>(currently <jsp:getProperty name="nethelper" property="udpPort" />)</i><br />
- Start to rework inbound configuration
2009-04-28 22:45:26 +00:00
<input type="radio" name="ntcpAutoPort" value="1" <%=nethelper.getTcpAutoPortChecked(1) %> />
Specify Port:
- Simplify bw form - Add config link to UPnP status
2009-05-01 15:26:49 +00:00
<input name ="ntcpport" type="text" size="5" maxlength="5" value="<jsp:getProperty name="nethelper" property="ntcpport" />" /><br />
- Implement config save of new IP address options - Implement local address and UPnP configuration of UDP address - Limit received port to 1024 minimum
2009-05-01 00:42:31 +00:00
</p><p>Hostnames entered here will be published in the network database.
They are <b>not private</b>.
2008-06-09 zzz * Reachability: Restrict peers with no SSU address at all from inbound tunnels * News: - Add display of last updated and last checked time on index.jsp and configupdate.jsp - Add a function to get update version (unused for now) * config.jsp: Add another warning
2008-06-09 13:14:52 +00:00
Also, <b>do not enter a private IP address</b> like 127.0.0.1 or 192.168.1.1.
</p>
2006-07-04 jrandom * New NIO-based tcp transport (NTCP), enabled by default for outbound connections only. Those who configure their NAT/firewall to allow inbound connections and specify the external host and port (dyndns/etc is ok) on /config.jsp can receive inbound connections. SSU is still enabled for use by default for all users as a fallback. * Substantial bugfix to the tunnel gateway processing to transfer messages sequentially instead of interleaved * Renamed GNU/crypto classes to avoid name clashes with kaffe and other GNU/Classpath based JVMs * Adjust the Fortuna PRNG's pooling system to reduce contention on refill with a background thread to refill the output buffer * Add per-transport support for the shitlist * Add a new async pumped tunnel gateway to reduce tunnel dispatcher contention
2006-07-04 21:17:44 +00:00
<p>You do <i>not</i> need to allow inbound TCP connections - outbound connections work with no
configuration. However, if you want to receive inbound TCP connections, you <b>must</b> poke a hole
in your NAT or firewall for unsolicited TCP connections. If you specify the wrong IP address or
hostname, or do not properly configure your NAT or firewall, your network performance will degrade
substantially. When in doubt, leave the hostname and port number blank.</p>
2007-07-07 zzz * Add auto-detect IP/Port to NTCP. When enabled on config.jsp, SSU will notify/restart NTCP when the external address changes. Now you can enable inbound TCP without a static IP or dyndns service.
2007-07-07 20:03:50 +00:00
<p><b>Note: changing any of these settings will terminate all of your connections and effectively
2006-07-04 jrandom * New NIO-based tcp transport (NTCP), enabled by default for outbound connections only. Those who configure their NAT/firewall to allow inbound connections and specify the external host and port (dyndns/etc is ok) on /config.jsp can receive inbound connections. SSU is still enabled for use by default for all users as a fallback. * Substantial bugfix to the tunnel gateway processing to transfer messages sequentially instead of interleaved * Renamed GNU/crypto classes to avoid name clashes with kaffe and other GNU/Classpath based JVMs * Adjust the Fortuna PRNG's pooling system to reduce contention on refill with a background thread to refill the output buffer * Add per-transport support for the shitlist * Add a new async pumped tunnel gateway to reduce tunnel dispatcher contention
2006-07-04 21:17:44 +00:00
restart your router.</b>
move buttons
2009-01-02 18:07:16 +00:00
</p>
<input type="submit" name="save" value="Save changes" /> <input type="reset" value="Cancel" /><br />
2006-07-04 jrandom * New NIO-based tcp transport (NTCP), enabled by default for outbound connections only. Those who configure their NAT/firewall to allow inbound connections and specify the external host and port (dyndns/etc is ok) on /config.jsp can receive inbound connections. SSU is still enabled for use by default for all users as a fallback. * Substantial bugfix to the tunnel gateway processing to transfer messages sequentially instead of interleaved * Renamed GNU/crypto classes to avoid name clashes with kaffe and other GNU/Classpath based JVMs * Adjust the Fortuna PRNG's pooling system to reduce contention on refill with a background thread to refill the output buffer * Add per-transport support for the shitlist * Add a new async pumped tunnel gateway to reduce tunnel dispatcher contention
2006-07-04 21:17:44 +00:00
<hr />
* config.jsp: Add more help * summary.jsp: Indicate if hidden
2008-10-26 17:24:11 +00:00
<b><a name="help">Reachability Help:</a></b>
* config.jsp: Add some reachability help * configpeer.jsp: Add blocklist info * help.jsp: Add link to German FAQ * tunnels.jsp: Fix inactive participating count
2008-09-23 18:48:59 +00:00
<p>
While I2P will work adequately behind a firewall, your speeds and network integration will generally improve
if you open up your port (generally 8887) to both UDP and TCP, and enable inbound TCP above.
If you think you have opened up your firewall and I2P still thinks you are firewalled, remember
that you may have multiple firewalls, for example both software packages and external hardware routers.
* Client: - Clean up retry code - Bring I2CP listen error to the summary bar http://forum.i2p/viewtopic.php?t=3133
2009-03-02 16:07:48 +00:00
If there is an error, the <a href="logs.jsp">logs</a> may also help diagnose the problem.
* config.jsp: Add some reachability help * configpeer.jsp: Add blocklist info * help.jsp: Add link to German FAQ * tunnels.jsp: Fix inactive participating count
2008-09-23 18:48:59 +00:00
<ul>
<li><b>OK</b> - Your UDP port does not appear to be firewalled.
<li><b>Firewalled</b> - Your UDP port appears to be firewalled.
As the firewall detection methods are not 100% reliable, this may occasionally be displayed in error.
However, if it appears consistently, you should check whether both your external and internal
more reachability help
2009-04-25 02:47:28 +00:00
firewalls are open on port 8887. I2P will work fine when firewalled, there is no reason for concern.
When firewalled, the router uses "introducers" to relay inbound connections.
However, you will get more participating traffic and help the network more if you can open your
firewall(s). If you think you have already done so, remember that you may have both a hardware
and a software firewall, or be behind an additional, institutional firewall you cannot control.
Also, some routers cannot correctly forward both TCP and UDP on a single port, or may have other
limitations or bugs that prevent them from passing traffic through to I2P.
* config.jsp: Add some reachability help * configpeer.jsp: Add blocklist info * help.jsp: Add link to German FAQ * tunnels.jsp: Fix inactive participating count
2008-09-23 18:48:59 +00:00
<li><b>Testing</b> - The router is currently testing whether your UDP port is firewalled.
* config.jsp: Add more help * summary.jsp: Indicate if hidden
2008-10-26 17:24:11 +00:00
<li><b>Hidden</b> - The router is not configured to publish its address,
therefore it does not expect incoming connections.
* config.jsp: Add some reachability help * configpeer.jsp: Add blocklist info * help.jsp: Add link to German FAQ * tunnels.jsp: Fix inactive participating count
2008-09-23 18:48:59 +00:00
<li><b>WARN - Firewalled and Fast</b> - You have configured I2P to share more than 128KBps of bandwidth,
but you are firewalled. While I2P will work fine in this configuration, if you really have
over 128KBps of bandwidth to share, it will be much more helpful to the network if
you open your firewall.
<li><b>WARN - Firewalled and Floodfill</b> - You have configured I2P to be a floodfill router, but
you are firewalled. For best participation as a floodfill router, you should open your firewall.
<li><b>WARN - Firewalled with Inbound TCP Enabled</b> - You have configured inbound TCP, however
your UDP port is firewalled, and therefore it is likely that your TCP port is firewalled as well.
If your TCP port is firewalled with inbound TCP enabled, routers will not be able to contact
you via TCP, which will hurt the network. Please open your firewall or disable inbound TCP above.
* Transport: - Fixes and cleanups when NTCP and/or UDP transports disabled - More TCP removal cleanup - Clean up bandwidth limiting, centralize defaults - Force burst to be >= limit - Increase default bw to 48/24, burst 64/32
2008-12-03 18:53:57 +00:00
<li><b>WARN - Firewalled with UDP Disabled</b> -
You have configured inbound TCP, however
you have disabled UDP. You appear to be firewalled on TCP, therefore your router cannot
accept inbound connections.
Please open your firewall or enable UDP.
* config.jsp: Add more help * summary.jsp: Indicate if hidden
2008-10-26 17:24:11 +00:00
<li><b>ERR - Clock Skew</b> - Your system's clock is skewed, which will make it difficult
to participate in the network. Correct your clock setting if this error persists.
* config.jsp: Add some reachability help * configpeer.jsp: Add blocklist info * help.jsp: Add link to German FAQ * tunnels.jsp: Fix inactive participating count
2008-09-23 18:48:59 +00:00
<li><b>ERR - Private TCP Address</b> - You must never advertise an unroutable IP address such as
127.0.0.1 or 192.168.1.1 as your external address. Correct the address or disable inbound TCP above.
<li><b>ERR - SymmetricNAT</b> - I2P detected that you are firewalled by a Symmetric NAT.
more reachability help
2009-04-25 02:47:28 +00:00
I2P does not work well behind this type of firewall. You will probably not be able to
accept inbound connections, which will limit your participation in the network.
* config.jsp: Add some reachability help * configpeer.jsp: Add blocklist info * help.jsp: Add link to German FAQ * tunnels.jsp: Fix inactive participating count
2008-09-23 18:48:59 +00:00
<li><b>ERR - UDP Port In Use - Set i2np.udp.internalPort=xxxx in advanced config and restart</b> -
I2P was unable to bind to port 8887 or other configured port.
Check to see if another program is using port 8887. If so, stop that program or configure
I2P to use a different port. This may be a transient error, if the other program is no longer
using the port. However, a restart is always required after this error.
* Transport: - Fixes and cleanups when NTCP and/or UDP transports disabled - More TCP removal cleanup - Clean up bandwidth limiting, centralize defaults - Force burst to be >= limit - Increase default bw to 48/24, burst 64/32
2008-12-03 18:53:57 +00:00
<li><b>ERR - UDP Disabled and Inbound TCP host/port not set</b> -
You have not configured inbound TCP with a hostname and port above, however
you have disabled UDP. Therefore your router cannot accept inbound connections.
Please configure a TCP host and port above or enable UDP.
* Client: - Clean up retry code - Bring I2CP listen error to the summary bar http://forum.i2p/viewtopic.php?t=3133
2009-03-02 16:07:48 +00:00
<li><b>ERR - Client Manager I2CP Error - check logs</b> -
This is usually due to a port 7654 conflict. Check the logs to verify. Do you have another I2P instance running?
Stop the conflicting program and restart I2P.
* config.jsp: Add some reachability help * configpeer.jsp: Add blocklist info * help.jsp: Add link to German FAQ * tunnels.jsp: Fix inactive participating count
2008-09-23 18:48:59 +00:00
</ul>
</p>
<hr />
(zzz) take dynamic router keys off the config page
2007-03-07 21:05:21 +00:00
<!--
2005-11-26 Raccoon23 * Added support for 'dynamic keys' mode, where the router creates a new router identity whenever it detects a substantial change in its public address (read: SSU IP or port). This only offers minimal additional protection against trivial attackers, but should provide functional improvement for people who have periodic IP changes, since their new router address would not be shitlisted while their old one would be. * Added further infrastructure for restricted route operation, but its use is not recommended.
2005-11-26 09:16:11 +00:00
<b>Dynamic Router Keys: </b>
<input type="checkbox" name="dynamicKeys" value="true" <jsp:getProperty name="nethelper" property="dynamicKeysChecked" /> /><br />
<p>
This setting causes your router identity to be regenerated every time your IP address
changes. If you have a dynamic IP this option can speed up your reintegration into
the network (since people will have shitlisted your old router identity), and, for
very weak adversaries, help frustrate trivial
<a href="http://www.i2p.net/how_threatmodel#intersection">intersection
attacks</a> against the NetDB. Your different router identities would only be
'hidden' among other I2P users at your ISP, and further analysis would link
the router identities further.</p>
<p>Note that when I2P detects an IP address change, it will automatically
initiate a restart in order to rekey and to disconnect from peers before they
update their profiles - any long lasting client connections will be disconnected,
though such would likely already be the case anyway, since the IP address changed.
</p>
<hr />
(zzz) take dynamic router keys off the config page
2007-03-07 21:05:21 +00:00
-->
first pass at the 0.4 architecture. not ready for use or integration yet, but is functional with some manual build/config work
2004-07-24 02:06:07 +00:00
</form>
</div>
</body>
</html>
Reference in New Issue Copy Permalink