I had an IPFS node running locally, without any problems. This morning I decided to move it to my hosting provider, Hetzner. Shortly after that I received an email from their abuse dept. about my server running network scans.
Now I’ve read that
ipfs config server should fix update the node of my configuration to prevent this. However, when I try that, all I get is:
Error: failed to get config value: " key has no attributes"
How do I make my node so that Hetzner approves of it? Would a manual update of my config do the trick? If so, what do I change?
Where did you read
ipfs config server ?
It is rather
ipfs config profile apply server.
This happens with Hetzner all the time because they have no VLANs and all customers are on a single LAN and IPFS tries to discover other nodes in the same LAN by default.
Looks like I misread there. I thought it was ipfs config ‘profile’, with ‘server’ being a possible profile.
How can I double-check my config is Hetzner-proof now? Anything I can look for in the new config?
Some CIDRs should have beeen added to the
Swarm/AddrFilters part and one of those should match Hetzner LAN.
AddrFilters was null
Now it contains:
Looks like that covers it, right?
seems a bit redundant? The /24 covers the same (and more) as the /29, or am I mistaken here? )
For more information, you might want to check out issue https://github.com/ipfs/go-ipfs/issues/1226 and linked related issues.