Hi!
Got the same email.
The problem is that they only have Peering and Transit in USA not in Europe. The moment the problem occurred the only Upstream they had was B2 Net Solutions Inc.
Hetzner monitors for netscans and the rule triggers because there is no BGP route to those IPs on their routers since they are only reachable in the USA.
I just blocked the ranges to prevent the relay from being shut down.
ufw deny out to 64.65.0.0/22
ufw deny out to 64.65.62.0/23
ufw deny out to 96.9.98.0/24
ufw deny out to 216.181.20.0/24
I also reported it to bad-relays but since this is only a problem on Hetzner I doubt this is a problem for the network.
Cheers!
Tobias
···
On 25. Dec 2025, at 00:39, Diyar Ciftci via tor-relays tor-relays@lists.torproject.org wrote:
Good evening,
Apologies as this is likely the incorrect way to do things. I’m not fantastic with mailing lists. I saw on tor forum that some people were getting these netscan emails from hetzner.
https://forum.torproject.org/t/tor-relays-abuse-report-from-relays-in-family-7eaac49a7840d33b62fa276429f3b03c92aa9327/20693I got my first a few months ago and I just got my second one about an hour ago. Both times it was to the 1st amendment group IP addresses. Last time I just clicked their check button and it passed and then I gave reasoning in the next link. For some reason it doesn’t seem to be liking when I click the first link this time and keeps saying not solved. I don’t know what my best course of action is. I’ve gotten 2 reports for hetzner for a guard and 0 for netcup for an exit relay
I saw in the forum post (which is to a clone of the mailing list) about temporarily blocking tor but that feels a bit deceptive so I don’t really want to go down that route. The best thing though it may be a long process as there may be a potential harm to how circuits are built negatively affecting user anonymity is for the tor program to operate in a manner so that it doesn’t look like a netscan to some sensitive providers like hetzner even though we know it isn’t a netscan anyways.
If this issue keeps coming up with hetzner I may look at not hosting a tor relay with them because I have a lot of stuff on this server like my personal website and project mirrors and such and don’t want those to be negatively affected due to a unjust IP ban by hetzner for running a tor relay.
Any advice?
Kind regards,
Diyar Ciftci
tor-relays mailing list – tor-relays@lists.torproject.org
To unsubscribe send an email to tor-relays-leave@lists.torproject.org