How to disallow vanilla connections on bridge

Hi everyone.

I have recently set up a Obfs4 bridge. While Obfs4 works, I have found that it is still possible to connect to the bridge without a pluggable transport (vanilla method).

Would it be possible for me to set up a bridge that only allows Obfs4 connections and not vanilla connections?
Thanks!

1 Like

Hi

For public use the Orport needs to be open.

If you think about a private obfs4 bridge you can close the Orport with the firewall and may add AssumeReachable to 1 (see the manual). For private use set PublishServerDescriptor to 0 and BridgeDistribution to none.

Cheers

1 Like

Hi

I believe you may have misunderstood my question.

At the current moment, my bridge accepts both Vanilla connections and Obfs4 connections. Would it be possible to DISALLOW Vanilla connections and only allow Obfs4?

Thanks

1 Like

Yes but it’s not yet recommended:

1 Like

Yes, by following @felix’s instructions.

If you would like to share your bridge with other users, then do not set a BridgeDistribution in your torrc and rdsys/bridgedb will assign a bridge distributor for your bridge.

1 Like