Stream Isolation/Easy

From Whonix

< Stream Isolation

Applications such as ssh, gpg, wget, curl, git, apt-get are configured for stream isolation by default. The full list can be found here. The advantage of this is that those will take different paths through the Tor network and will therefore be more anonymous.

This comes with a small usability issue in corner cases.

  • For some tunnels you may need to disable stream isolation. (This is covered Whonix ™ tunnel documentation.)
  • Applications that require local connections will have to undo this setting. That would be for example the case if you wanted to open a local ssh listener.

When you run for example ssh, uwt will result in actually executing torsocks /usr/bin/ssh.anondist-orig Therefore traffic will flow though torsocks and go a Tor SocksPort. This will fail for local connections. It will result in the following error message:

libtorsocks(12021): connect: Connection is to a local address (, may be a TCP DNS request to a local DNS server so have to reject to be safe. Please report a bug to if this is preventing a program from working properly with torsocks

More information:

Learn more about stream isolation disable stream isolation - easy disable stream isolation - more options

No user support in comments. See Support. Comments will be deleted after some time. Specifically after comments have been addressed in form of wiki enhancements. See Wiki Comments Policy.

Add your comment
Whonix welcomes all comments. If you do not want to be anonymous, register or log in. It is free.

Random News:

Love Whonix and want to help spread the word? You can start by telling your friends or posting news about Whonix on your website, blog or social media.

https | (forcing) onion

Follow: Twitter | Facebook | | Stay Tuned | Whonix News

Share: Twitter | Facebook

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix ™, then Edit! Edits are held for moderation.

Copyright (C) 2012 - 2019 ENCRYPTED SUPPORT LP. Whonix ™ is a trademark. Whonix ™ is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix ™ itself. (Why?)

Whonix ™ is a derivative of and not affiliated with Debian. Debian is a registered trademark owned by Software in the Public Interest, Inc.

Whonix ™ is produced independently from the Tor® anonymity software and carries no guarantee from The Tor Project about quality, suitability or anything else.

By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent. Whonix ™ is provided by ENCRYPTED SUPPORT LP. See Imprint.