API to allow peers to ask for a port check #6593
Comments
|
You'll be happy to hear that this feature already exists. It's called "autonat" (https://github.com/libp2p/go-libp2p-autonat/) and all of our bootstrappers support this. We currently use it to determine if we should switch to using a relay (the "autorelay" feature). But you're right, we should better expose this to the user. |
|
Fantastic! :) Is this autonat library exposed on the go-ipfs daemon in any way, so could IPFS Desktop somehow query the daemon's port state? |
|
Not at the moment. At the moment, we only use it when autorelay is enabled. When we do, we simply remove the unreachable addresses and start advertising relays. You can tell if relays are being used with |
|
I see. So then this feature request would essentially be to expose autonat on the daemon's API. Would it be possible? Also, I tried the My config:
|
That's because you've set |
|
Thanks, I didn't know that. So I modified my settings:
I'm behind a VPN at the moment and I got the same results. At this point I don't know how to tell if So the feature request would be to have |
Note: AutoNATService enables the server-side AutoNAT feature (i.e., it allows you to help others figure out if they're behind NATs). Enabling AutoRelay automatically enables the autonat client. 193.37.253.118 is a public address. It looks like NAT port mapping may have worked. It also looks like you may have some valid IPv6 public addresses. How long was the node online? AutoRelay can take a few minutes to kick in. If/when it does, you'd see a bunch of |
|
I see, alright, thank you @Stebalien for the explanation! So, if we wanted to show a warning message to ipfs-desktop users when they are in passive mode (their port looks closed from the outside), we should: Is my understanding correct? |
|
At the moment, yes. We should use autonat regardless of autorelay (and get better at detecting NAT status in general) but we don't really have anyone to work on that at the moment. |
|
@hacdias, Would you consider implementing the logic mentioned above in ipfs-desktop as a realization of the "Show a warning if IPFS port is closed" feature request? |
|
@andrasfuchs @Stebalien thanks for digging into this. @andrasfuchs sure we can. I will update the issue with the new info |
The idea came from a feature request for IPFS Desktop: ipfs/ipfs-desktop#1042.
Currently the nodes can't tell if their ports are open to other peers or not. As a non-technical user it would be good to see that I need to configure my firewall and/or router to benefit the IPFS network more by allow incoming connections to my running node.
In order for the client to show any warning messages or tutorials how to do it, the node itself would need to know if its own port looks open from the outside.
To achieve this we could use an external service (as some torrent and ftp clients do), but depending on a 3rd party service is probably not good idea. It would be much better, if a node could ask another node to check its own port status.
Ideally anyone could ask its peers periodically to check the reachability of a ipv4 or ipv6 address from the asked peer's point of view.
So, my recommendation would be to add a new API command to accomplish the port check for multiple addresses/ports (if the node has more than one) and protocols (ipv4/tcp, ipv6/tcp, tor, etc.) and return the results to the requesting node.
The text was updated successfully, but these errors were encountered: