.\" Man page generated from reStructuredText.
.
.TH "ONIONBALANCE" "1" "Jun 06, 2016" "0.1.4" "OnionBalance"
.SH NAME
onionbalance \- a Tor hidden service load balancer
.
.nr rst2man-indent-level 0
.
.de1 rstReportMargin
\\$1 \\n[an-margin]
level \\n[rst2man-indent-level]
level margin: \\n[rst2man-indent\\n[rst2man-indent-level]]
-
\\n[rst2man-indent0]
\\n[rst2man-indent1]
\\n[rst2man-indent2]
..
.de1 INDENT
.\" .rstReportMargin pre:
. RS \\$1
. nr rst2man-indent\\n[rst2man-indent-level] \\n[an-margin]
. nr rst2man-indent-level +1
.\" .rstReportMargin post:
..
.de UNINDENT
. RE
.\" indent \\n[an-margin]
.\" old: \\n[rst2man-indent\\n[rst2man-indent-level]]
.nr rst2man-indent-level -1
.\" new: \\n[rst2man-indent\\n[rst2man-indent-level]]
.in \\n[rst2man-indent\\n[rst2man-indent-level]]u
..
.SH DESCRIPTION
.sp
You can start the OnionBalance management server once all of your backend
onion service instances are running.
.sp
You will need to create a \fI\%configuration file\fP
which list the backend hidden services and the location of your hidden
service keys.
.INDENT 0.0
.INDENT 3.5
.sp
.nf
.ft C
$ onionbalance \-c config.yaml
.ft P
.fi
.UNINDENT
.UNINDENT
.sp
or
.INDENT 0.0
.INDENT 3.5
.sp
.nf
.ft C
$ sudo service onionbalance start
.ft P
.fi
.UNINDENT
.UNINDENT
.sp
The management server must be left running to publish new descriptors for
your onion service.
.sp
\fBNOTE:\fP
.INDENT 0.0
.INDENT 3.5
Multiple OnionBalance management servers can be run simultaneously with
the same master private key and configuration file to provide redundancy.
.UNINDENT
.UNINDENT
.SH COMMAND-LINE OPTIONS
.SS onionbalance
.sp
onionbalance distributes the requests for a Tor hidden services across multiple Tor instances.
.sp
usage: onionbalance [\-h] [\-i IP] [\-p PORT] [\-c CONFIG] [\-v VERBOSITY]
                    [\-\-version]
.INDENT 0.0
.TP
.B \-h, \-\-help
show this help message and exit
.UNINDENT
.INDENT 0.0
.TP
.B \-i <ip>, \-\-ip <ip>
Tor controller IP address
.UNINDENT
.INDENT 0.0
.TP
.B \-p <port>, \-\-port <port>
Tor controller port
.UNINDENT
.INDENT 0.0
.TP
.B \-c <config>, \-\-config <config>
Config file location
.UNINDENT
.INDENT 0.0
.TP
.B \-v <verbosity>, \-\-verbosity <verbosity>
Minimum verbosity level for logging.  Available in ascending order: debug, info, warning, error, critical).  The default is info.
.UNINDENT
.INDENT 0.0
.TP
.B \-\-version
show program\(aqs version number and exit
.UNINDENT
.SH CONFIGURATION FILE FORMAT
.sp
The OnionBalance management server is primarily configured using a YAML
configuration file.
.INDENT 0.0
.INDENT 3.5
.sp
.nf
.ft C
# Onion Load Balancer Config File
# \-\-\-
# Each hidden service key line should be followed be followed by a list of 0
# or more instances which contain the onion address of the load balancing
# hidden service

REFRESH_INTERVAL: 600 # How often to poll for updated descriptors
services:
    \- key: /path/to/private_key # 7s4hxwwifcslrus2.onion
      instances:
        \- address: o6ff73vmigi4oxka # web1
        \- address: nkz23ai6qesuwqhc # web2
    \- key: /path/to/private_key.enc # dpkdeys3apjtqydk.onion
      instances:
        \- address: htbzowpp5cn7wj2u # irc1
        \- address: huey7aiod8dja8a3 # irc2

.ft P
.fi
.UNINDENT
.UNINDENT
.sp
The \fBservices\fP section of the configuration file contains a list of
master onion services that OnionBalance is responsible for.
.sp
Each \fBkey\fP option specifies the location of the 1024 bit private RSA key
for the hidden service. This master private key determines the address
that users will use to access your onion service. This private key \fBmust\fP
be kept secure.
.sp
The location of the private key is evaluated as an absolute path, or
relative to the configuration file location.
.sp
You can use existing Tor hidden service private key with OnionBalance
to keep your onion address.
.sp
Each backend Tor onion service instance is listed by it\(aqs unique onion
address in the \fBinstances\fP list.
.sp
\fBNOTE:\fP
.INDENT 0.0
.INDENT 3.5
You can replace backend instance keys if they get lost or compromised.
Simply start a new backend hidden service under a new key and replace
the \fBaddress\fP in the config file.
.UNINDENT
.UNINDENT
.sp
If you have used the onionbalance\-config tool
you can simply use the generated config file from \fBmaster/config.yaml\fP\&.
.sp
\fBNOTE:\fP
.INDENT 0.0
.INDENT 3.5
By default onionbalance will search for a \fBconfig.yaml\fP file in
the current working directory.
.UNINDENT
.UNINDENT
.SS Configuration Options
.INDENT 0.0
.TP
.B LOG_LOCATION
The path where OnionBalance should write its log file.
.TP
.B LOG_LEVEL
Specify the minimum verbosity of log messages to output. All log messages
equal or higher the the specified log level are output. The available
log levels are the same as the \-\-verbosity command line option.
.TP
.B REFRESH_INTERVAL
How often to check for updated backend hidden service descriptors. This
value can be increased if your backend instance are under heavy loaded
causing them to rotate introduction points quickly.
(default: 600 seconds).
.TP
.B PUBLISH_CHECK_INTERVAL
How often should to check if new descriptors need to be published for
the master hidden service (default: 360 seconds).
.TP
.B INITIAL_DELAY
How long to wait between starting OnionBalance and publishing the master
descriptor. If you have more than 20 backend instances you may need to wait
longer for all instance descriptors to download before starting
(default: 45 seconds).
.TP
.B DISTINCT_DESCRIPTORS
Distinct descriptors are used if you have more than 10 backend instances.
At the cost of scalability, this can be disabled to appear more like a
standard onion service. (default: True)
.TP
.B STATUS_SOCKET_LOCATION
The OnionBalance service creates a Unix domain socket which provides
real\-time information about the currently loaded service and descriptors.
This option can be used to change the location of this domain socket.
(default: /var/run/onionbalance/control)
.UNINDENT
.sp
The following options typically do not need to be modified by the end user:
.INDENT 0.0
.TP
.B REPLICAS
How many set of HSDirs to upload too (default: 2).
.TP
.B MAX_INTRO_POINTS
How many introduction points to include in a descriptor (default: 10)
.TP
.B DESCRIPTOR_VALIDITY_PERIOD
How long a hidden service descriptor remains valid (default:
86400 seconds)
.TP
.B DESCRIPTOR_OVERLAP_PERIOD
How long to overlap hidden service descriptors when changing
descriptor IDs (default: 3600 seconds)
.TP
.B DESCRIPTOR_UPLOAD_PERIOD
How often to publish a descriptor, even when the introduction points
don\(aqt change (default: 3600 seconds)
.UNINDENT
.SS Environment Variables
.INDENT 0.0
.TP
.B ONIONBALANCE_CONFIG
Override the location for the OnionBalance configuration file.
.UNINDENT
.sp
The loaded configuration file takes precedence over environment variables.
Configuration file options will override environment variable which have the
same name.
.INDENT 0.0
.TP
.B ONIONBALANCE_LOG_LOCATION
See the config file option.
.TP
.B ONIONBALANCE_LOG_LEVEL
See the config file option
.TP
.B ONIONBALANCE_STATUS_SOCKET_LOCATION
See the config file option
.UNINDENT
.SH FILES
.INDENT 0.0
.TP
.B /etc/onionbalance/config.yaml
The configuration file, which contains \fBservices\fP entries.
.TP
.B config.yaml
Fallback location for torrc, if /etc/onionbalance/config.yaml is
not found.
.UNINDENT
.SH SEE ALSO
.sp
Full documentation for the \fBOnionBalance\fP software is available at
\fI\%https://onionbalance.readthedocs.org/\fP
.SH AUTHOR
Donncha O'Cearbhaill <donncha@donncha.is>
.\" Generated by docutils manpage writer.
.