1. Install i2p on Raspberry Pi

See also

• https://geti2p.net
• https://geti2p.net/en/download/debian
• I2P Anonymous Network

Assumptions

• In this manual, the IP address of the Raspberry PI machine within the local network is assumed to be '192.168.1.2'.
• The installation was done as user 'pi'
• After configuring to start automatically, I2P will run as user 'i2psvc'
• The assumed port for I2P is 25001. Don't use this value.

Install

Pre-install packages:

sudo apt-get update
sudo apt-get install apt-transport-https lsb-release curl

Add repository, add the key and install. This will ensure you will also receive updates:

#Add repository
echo "deb https://deb.i2p2.de/ $(lsb_release -sc) main" | sudo tee /etc/apt/sources.list.d/i2p.list

#Download key
curl -o i2p-archive-keyring.gpg https://geti2p.net/_static/i2p-archive-keyring.gpg

#Display the key
gpg --keyid-format long --import --import-options show-only --with-fingerprint i2p-archive-keyring.gpg

#Verify the  key:
#7840 E761 0F28 B904 7535  49D7 67EC E560 5BCF 1346

#Copy the keyring to the keyrings directory: 
sudo cp i2p-archive-keyring.gpg /usr/share/keyrings

#Create symlink to the key (buster and before)
sudo ln -sf /usr/share/keyrings/i2p-archive-keyring.gpg /etc/apt/trusted.gpg.d/i2p-archive-keyring.gpg

#Update
sudo apt-get update

#Install
sudo apt-get install i2p i2p-keyring

Start:

i2prouter start
i2prouter status

Note:

• The I2P router will start and run as current user 'pi'
• Settings and files are stored here /home/pi/.i2p/clients.config
• i2prouter should be started as a regular user. Do NOT start the router with sudo

Test

Install terminal based browser and check if the config page is working:

sudo apt install w3m
w3m http://127.0.0.1:7657/confignet

Start I2P automatically

Note: i2prouter should be started as a regular pi user. Do NOT start the router with sudo. If you use below configuration script the default user is 'i2psvc'.

sudo dpkg-reconfigure i2p

Default answers will be fine.

sudo service i2p start

Config folder:

sudo nano /var/lib/i2p/i2p-config/clients.config

Access config from another machine

Add the system's IP (192.168.1.2) to allow access from other machines:

sudo nano /home/pi/.i2p/clients.config
#or
sudo nano /var/lib/i2p/i2p-config/clients.config

Edit line:

clientApp.0.args=7657 ::1,127.0.0.1,192.168.1.2 ./webapps/

Optionally add and require a username and password:

• http://192.168.1.2:7657/configui

Firewall/router settings

Note: this port is a random number, keep it private, it could be used to find your real IP adres.

• http://192.168.1.2:7657/confignet

Network > Port 25001

Use the documentation for your router, login to your router's Administrator page

WAN Port Forwarding From port 25001 To port 25001 To IP 192.168.1.2 Protocol: TCP & UDP

My I2P settings

• http://192.168.1.2:7657/confignet

Disable [-] Enable [+]

Clients:

• [+] Application tunnels
• [-] BOB application bridge
• [+] I2P Router Console
• [-] I2P webserver (eepsite)
• [-] Open Router Console in web browser at startup
• [-] SAM application bridge

Hidden Services Manager - go into the service and configure it to start automatically or not.

I2P Hidden Services:

• [-] I2P webserver

I2P Client Tunnels:

• [+] I2P HTTP Proxy
• [-] I2P HTTPS Proxy
• [-] Irc2P
• [-] mtn.i2p-projekt.i2p
• [-] pop3.postman.i2p
• [-] smtp.postman.i2p

Web Apps:

• [+] Torrents
• [+] Hidden Services Manager
• [-] Identification Image Generator
• [+] I2P Router Console
• [+] Addressbook
• [-] Email

Bandwidth (example):

• 800 In
• 300 Out
• 10% share

Other settings:

• Changed the I2P HTTP Proxy interface from '127.0.0.1' to '192.168.1.2'. Combined with the 'http://192.168.1.2/proxy.pac' and settings in Firefox we can now access '.i2p' websites with this browser from an other machine.

I2P router Snark settings

• http://192.168.1.2:7657/i2psnark/

Configuration Data directory (example): /media/data/i2psnark

Firefox browsing I2P websites

Note: I2P HTTP Proxy interface needs to changed from '127.0.0.1' to '192.168.1.2'.

A PAC file is used to redirect websites with a '.I2P' extension. You may make this file available via a webserver, for example http://192.168.1.2/proxy.pac.

sudo nano /var/www/html/proxy.pac

	function FindProxyForURL(url, host) {
	 // i2p via proxy or DIRECT if unavailable
	 if (shExpMatch(host, "*.i2p")) {
	  return "PROXY 192.168.1.2:4444; DIRECT";
	 }
	 // All other requests DIRECT:
	 return "DIRECT";
	}

To configure your Firefox webbrowser:

• go to > Preferences > Advanced > Network > Connection Settings
• Check the 'Automatic proxy configuration URL':
• Enter: http://192.168.1.2/proxy.pac

Format a DATA partition as exFAT, allowing larger than 4Gb files

Install packages:

sudo apt install exfat-utils

List devices:

sudo lsblk

In my case:

• device /dev/mmcblk0
  • Partition 1 is the RPi boot partition
  • Partition 2 is the RPi root partition
  • Partition 3 will be the DATA partition - ALL DATA WILL BE ERASED

Remove mount:

sudo umount /media/data

Edit the partition tables, accept defaults mostly - ALL DATA WILL BE ERASED:

sudo fdisk /dev/mmcblk0

'p' - print partitions
'd' - delete partition - 3
'n' - new partition - 3
't' - change partition type - 3
	7 (HPFS/NTFS/exFAT)
'w' - write and quit

Format - ALL DATA WILL BE ERASED, mount:

#Format
sudo mkfs.exfat  -n Data /dev/mmcblk0p3

#Mount
sudo mount /dev/mmcblk0p3 /media/data

#i2psnark data directory
mkdir /media/data/i2psnark

To mount automatically at boot it needs to be added to fstab:

sudo nano /etc/fstab

#Device	 Mountpoint  FilesystemType  MountOptions  BackupDump(0)  FsckOrder(2)
/dev/mmcblk0p3  /media/data exfat-fuse defaults,noatime 0 2