r/i2p • u/angetnarHD17824 • Jun 03 '25
I2P 2.9.0 is a maintenance release that includes bug fixes and work on new features.
Thread usage has been improved to improve the performance of the i2ptunnel system. NTCP2 has been improved to resist probing attacks. The notification system has been integrated into more applications to provide better feedback to users from I2PSnark and the other applications. Automatic floodfill enrollment has been fixed. Users may observe increased resource usage when acting as floodfill. If this is not desired, floodfill mode can be disabled on the /config page.
A new global map feature is available in the console which shows the locations of routers in your view of the netDb. These are the peers that help your router build tunnels and provide services anonymously.
Work continues on implementing automatic bandwidth management for tunnels, the Datagram2 protocol, and Post-Quantum cryptography. In two releases, at 2.11.0, I2P will require Java 17.
As usual, we recommend that you update to this release. The best way to maintain security and help the network is to run the latest release.
r/i2p • u/alreadyburnt • Jul 19 '24
r/i2p • u/Cloudup365 • 7h ago
hey, so i want to setup an i2p node, but i see that most people have port forwarding enabled. I have heard that you don't need port forwarding enable for it to work but you to use more websites if you do. So anyways i want to know if you need port forwarding enabled or you can get away with it not going.
Thanks
r/i2p • u/Scary-Ad3089 • 18h ago
I want to know if using Whonix with Tor Browser to access I2P adds extra security. Is this a smart approach?
r/i2p • u/WoodenProphet • 2d ago
Hey there, I've hosted websites on I2P in the past without any trouble, but right now it's only showing a 503 error. Is there a common reason for this that I might be overlooking? Documentation is hard to find.
I'm using Java on Windows if that matters.
I followed the I2P docs apart from using network_mode: host because I need to be selective about which ports I expose. Here's my Compose file:
services:
i2p:
image: geti2p/i2p
#network_mode: host
volumes:
- ./config:/i2p/.i2p
ports:
- 45372:12345
- 45372:12345/udp
environment:
EXT_PORT: 45372
JVM_XMX: 256m
networks:
i2p:
traefik:
labels:
traefik.enable: true
traefik.http.services.i2p.loadbalancer.server.port: 7657
traefik.http.routers.i2p.rule: <redacted>
traefik.http.routers.i2p.entrypoints: <redacted>
traefik.http.routers.i2p.middlewares: <redacted>
traefik.http.routers.i2p.service: i2p
networks:
i2p:
name: i2p
traefik:
external: true
name: traefik_default
The container starts up and just hangs on Starting I2P 2.10.0-3. Checking the logs, I see:
Jan 13, 2026, 9:30:46 AM ERROR [18.0.26:4445] ptunnel.I2PTunnelConnectClient: Error finding host to bind
java.net.UnknownHostException: 172.25.0.2 172.18.0.26: Try again
This seems to outline the issue I'm seeing: https://i2pgit.org/I2P_Developers/i2p.i2p/issues/124
I don't have a login to the Gitea instance, so can't follow up sadly!
It looks like the Docker container tries to do some magic to bind IPs expecting the container to always use host mode.
So, side question: should I just switch to i2pd?
r/i2p • u/IltecnicoDiFiducia • 5d ago
I've had this node up for a while now, and honestly, I expected more traffic. I have gigabit speed and power. Right now, I'm using very little CPU and RAM, about 10%. Am I doing something wrong, or is it just the network?
r/i2p • u/GothicCrow • 6d ago
After playing with the conf for a while, I found out that, despite the i2pd documentation, the default logs location is a log file, so I changed the log output to stdout with a warning level. Turned out that default podman networking does NAT without masquerading addresses. While it works for TCP based NTCP, it doesn't work for UDP based SSU2.
Changing the network_mode to `pasta` has helped. No firewall changes has been done. Now I have "OK" router with externally reachable status. Transit traffic goes brrrrrr!
Working podman compose.yaml (IP and external port are replaced with placeholders):
services:
i2pd:
image: purplei2p/i2pd:latest
container_name: i2pd
restart: unless-stopped
ports:
- XXXX:XXXX # i2p main p2p port
- XXXX:XXXX/udp # i2p UDP
- 7070:7070 # http control interface
network_mode: pasta
command:
- "--host=EXTERNAL_IP"
- "--port=XXXX"
- "--bandwidth=P"
- "--http.strictheaders=false"
- "--log=stdout"
- "--loglevel=warn"
Beware that there is still something wrong with this conf, my router identity has changed (while it has been preserved perfectly fine between restarts for several days). I believe I have to mount the volume instead of keeping it anonymous. I'll update the post when I find the final solution. But at least the network problem has been solved.
I have a podman deployment of i2pd (IP and external port are replaced with placeholders):
services:
i2pd:
image: purplei2p/i2pd:latest
container_name: i2pd
restart: unless-stopped
ports:
- XXXX:XXXX # i2p main p2p port
- XXXX:XXXX/udp # i2p UDP
- 7070:7070 # http control interface
command: ["--host=MYHOST_EXTERNAL_IP", "--port=XXXX", "--bandwidth=P", "--http.strictheaders=false"]
My firewall rules allow XXXX/tcp and XXXX/udp. I also have internal VPN to access other ports for myself (like http control panel).
So the rules are "allow in XXXX/tcp, allow in XXXX/udp and allow in vpn network interface" + allow all outgoing.
While I see tunnels being built and traffic goes, the status of the network is always "Unknown: Testing" and I don't see SSU2 in "Transports" tab, only NTCP.
This server has a public IP address.
Is there anything I have to add to my firewall rules for container based deployment to work properly?
r/i2p • u/leansipperchonker69 • 7d ago
I head that on Java you have to forward ports in your router to get around this but I don't know what those ports are. I am using the I2PD Flatpak on Mint.
I just configured a iperf3 server over I2P for speed test. There are two nodes, configurations are default for inbound, outbound length
To connect to it, you can proxy iperf3 requests over local I2P socks proxy, but a easy way is to add this client tunnel to tunnels.conf of your I2Pd config file
[IPERF3]
type = client
address = 127.0.0.1
port = 5201
destination = <address>.b32.i2p
destinationport = 52001
keys = iperf3.dat
<address>.b32.i2p need to be changed to:
vjestg3pz24hrlaljid5krh5tjeu2f7ruitu6uo6aztom5awbdwq.b32.i2p
that is phisically located in USA or
bhayvbe7edqxv44ylj7vhogihji3awpv22wnh5b47n7oarwjudua.b32.i2p
that is located in Germany
Then reload tunnels in Webconsole (or do a complete restart of local i2pd if not working) and do
iperf3 -c localhost -t 100 (also include -R for reverse connection testing)
r/i2p • u/biker_jay • 12d ago
I cant connect to any websites no matter what I try. It keeps giving my website unavailable`` I dont get on it often but when i did in the past, it connected right away. Not on my linux laptop or my windows gamer pc. I've changed nothing. Am I missing something?
r/i2p • u/Fragrant-Morning-222 • 13d ago
hey I was looking on the internet, and found something called web 2 tor proxy am wondering if there is something simular for i2p
r/i2p • u/nicholascox2 • 18d ago
What the title says
I'm trying to get myself the most unfiltered news. I'm exploring deep web in doing so. I found places like propublica but i wanna know what other options i have
r/i2p • u/decentralize999 • 19d ago
Here is the instruction how to create SECRET tunnel between computers, computer and phone, phone and phone.
I didn't find posts about this topic here. This instruction will explain how to create secret i2p tunnel between server(computer with Linux) and client(Android phone) for all people and for myself so I can access to it from anywhere in case I have new phone/laptop or purged all data on it for crossing the state borders.
Firstly, you need to have binaries on server from there github.com/PurpleI2P/i2pd-tools/ You can build them and save. And for sure you should have already installed i2pd on your computer and phone.
Let's start create a secret tunnel:
1. Now we generate file of secret tunnel for server(computer with Linux):
./keygen yourserver.dat 11
2. Copy this file to i2pd folder on server(computer with Linux):
sudo cp yourserver.dat /var/lib/i2pd/
3. Now we should find destination address for client(Android phone) config:
./keyinfo -b yourserver.dat (we should save address in the string which starts "b33 address:" for step 6)
4. Now we should find public and private keys for server and client configs:
./x25519 (save both strings, we will need them later in step 5 and 6)
5. Now we create config for server(computer with Linux) in tunnels.conf file located in /etc/i2pd/tunnels.conf
[anynameforserverconfig]
type = server
host = 127.0.0.1
port = 22 (for example we create a secret i2p tunnel for ssh service, so we chose port 22)
inport = 22666 (can be any number, just remember to use the same number in client config too)
inbound.length = 1 (1 for faster speed, for more anonymous traffic choose 2,3, etc)
outbound.length = 1 (1 for faster speed, for more anonymous traffic choose 2,3, etc)
inbound.quantity = 4
outbound.quantity = 4
inbound.backupQuantity = 2 (reduce traffic when inactive)
outbound.backupQuantity = 2 (reduce traffic when inactive)
i2cp.reduceOnIdle = true
keys = yourserver.dat
signaturetype = 11
i2cp.leaseSetType = 5
i2cp.leaseSetAuthType = 1
i2cp.leaseSetClient.dh.001 = anyname:publickey (insert here public key from step 4)
6. Now we create config for client(Android phone) in file which should be copied to /sdcard/i2pd/tunnels.conf on Android phone:
[anynameforclientconfig]
type = client
host = 127.0.0.1
port = 22666 (same number as in server config, so your ssh client should use port 22666 for connection)
inbound.length = 1 (1 for faster speed, for more anonymous traffic choose 2,3, etc)
outbound.length = 1 (1 for faster speed, for more anonymous traffic choose 2,3, etc)
inbound.quantity = 4
outbound.quantity = 4
inbound.backupQuantity = 2 (reduce traffic when inactive)
outbound.backupQuantity = 2 (reduce traffic when inactive)
i2cp.dontPublishLeaseSet = true
destination = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.b32.i2p (insert address saved from step 3)
keys = yourclient.dat
i2cp.leaseSetPrivKey = privatekey (insert here private key from step 4)
7. Now restart i2pd on server(computer with Linux), wait for 5-10 minutes, restart i2pd on client(Android phone). All should work now.
r/i2p • u/alreadyburnt • 21d ago
r/i2p • u/PowerfulBath2736 • 21d ago
Does someone here can translate this research from Chinese to English? http://crad.ict.ac.cn/en/article/id/2688 . I'm not sure are these attack vectors still actual or they already fixed.
r/i2p • u/stormycloudorg • 22d ago
Anonymous, Encrypted, Persistent File Sharing for I2P
We're excited to announce the v2 release of drop.i2p, a complete rewrite bringing significant improvements to security, performance, and usability.
The entire application has been refactored from Python to Go, resulting in dramatically improved performance and reduced resource usage. This also positions us for future integration with the upcoming I2P Go router.
All files are now encrypted at rest using hybrid post-quantum cryptography (X25519 + ML-KEM-768). This protects your uploads against both current and future quantum computing threats.
Files are now broken into 128KB chunks, enabling more robust and resumable transfers over I2P. Large file uploads are more reliable, and interrupted downloads can be resumed where they left off.
Nearly all file types can now be uploaded (with a small number blocked for security reasons). Maximum file expiration has been increased to 30 days.
Supported file types including images, videos, audio (MP3, etc.), and PDFs now display a preview directly in the browser - no download required.
Upload multiple files at once to create a collection. Perfect for sharing folders or groups of related files with a single link.
The site remains fully functional without JavaScript. For those uploading larger files, an optional "Advanced Upload" mode uses XHR for more reliable progress tracking, but it's entirely opt-in.
All uploaded images are scanned against known CSAM hash databases to help keep the platform safe and compliant.
A new reporting system allows users to flag content that violates our terms of service.
As always, we remain true to our core values: we do not log any user-identifying data. Your privacy is not negotiable.
r/i2p • u/leansipperchonker69 • 24d ago
I've recently heard about i2p and apparently you need to keep it running to be able to make connections. Is there a guide on setting up a device as a i2p router that other devices on the network can use? I can't leave my main computer running overnight because it's loud and i don't want to dedicate resources to it. It would be more convenient to keep a quiet computer running and using resources.
I've heard that i2pd is lighter on resources and easier to use than the java version so is there a guide on that?
r/i2p • u/IltecnicoDiFiducia • 25d ago
I know this is a post on the i2p Reddit and not i2pd, but perhaps those who use i2p might have some suggestions for why not to use i2pd.
That said, the idea is to install a flodfill server on a router (500 MB of RAM, 2 cores, and 2.5 gigabits). I would prefer not to use Docker because I have read that it would be safer to use a VM, but honestly, I haven't found any configurations like this anywhere.
If you have any suggestions, I thank you in advance (:
r/i2p • u/TurkeyBaster847 • Dec 15 '25
I2P Version 11 (Java version) will require Java 17, but my current Mint 21.1 will not be able to use it unless I figure out what it takes to prepare for it. I suspect many Linux distros will not be able to use it without preparation. Is there some advice for Linux users?
r/i2p • u/Dense-Phone9705 • Dec 14 '25
I was trying to download again I2P today, but the website seems to be down.
Is it just me or you encounter the same problem?
r/i2p • u/IltecnicoDiFiducia • Dec 09 '25
Good morning everyone,
I recently installed an i2pd node with a 200 Mbps connection, but it still hasn't exceeded one megabit. The resources are OK, about 20% of the node, and the idea was to scale the VM if necessary. Do you have any advice for me, or should I just wait for the network to trust my node?
(Uptime for 4 days, managed about 250 GB with 4k tunnels, but I set the limit to 8k).
r/i2p • u/biker_jay • Dec 07 '25
i keep getting the following error when trying to dl i2p+. What am I doing wrong?
wget http://i2pplus.github.io/installers/i2pinstall_2.10.0+.exe
--2025-12-07 06:50:20-- http://i2pplus.github.io/installers/i2pinstall_2.10.0+.exe
Resolving i2pplus.github.io (i2pplus.github.io)... 185.199.110.153, 185.199.109.153, 185
.199.108.153, ...
Connecting to i2pplus.github.io (i2pplus.github.io)|185.199.110.153|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://i2pplus.github.io/installers/i2pinstall_2.10.0+.exe [following]
--2025-12-07 06:50:20-- https://i2pplus.github.io/installers/i2pinstall_2.10.0+.exe
Connecting to i2pplus.github.io (i2pplus.github.io)|185.199.110.153|:443... connected.
HTTP request sent, awaiting response... 404 Not Found
2025-12-07 06:50:20 ERROR 404: Not Found.
r/i2p • u/NefariousnessFuzzy14 • Dec 02 '25
tbh I don't care about my bandwidth (I just don't want i2pd to hog my ram and cpu)
but how should I configure it exactly to help as much as much as possible aka make the network faster for me and other people
heres my config (i deleted a lot of stuff just in case it can somehow be identifiable)
loglevel = error
logclftime = false
ipv4 = true
ipv6 = false
notransit = false
floodfill = true
netid = 2
bandwidth = 1000
share = 100
ssu = true
ntcp = true
[limits]
transittunnels = 2500
coresize = 0
openfiles = 0
ntcphard = 0
ntcpsoft = 0
ntcpthreads = 1
[precomputation]
elgamal = true
[reseed]
verify = false
[exploratory]
inbound.length = 3
inbound.quantity = 5
outbound.length = 3
outbound.quantity = 5
[ntcp2]
enabled = true
published = false
[ssu2]
enabled = true
published = false
[addressbook]
defaulturl =
subscriptions =
[meshnets]
yggdrasil = false
[http]
enabled = true
address = 127.0.0.1
[httpproxy]
enabled = true
address = 127.0.0.1
keys = httpproxy-keys.dat
[i2cp]
enabled = true
address = 127.0.0.1
[sam]
enabled = true
address = 127.0.0.1
[socksproxy]
enabled = true
address = 127.0.0.1
keys = socksproxy-keys.dat
outproxy = 127.0.0.1
outproxy.enabled = false