Hi All!
I've been experiencing issues getting an access to the WebUI for few days now. Before that, everything was working just fine.
What have I done:
* I've gone through the Q&A
* Checked the kernel modules
* Checked the VPN config files, VPN works.
* Checked the LAN config
* Deleted data files and did fresh install of the docker
* Tried to downgrade to 2.1.1-1-02
To me, everything looks good and I don't see any errors in logs. Still I don't get any access to the WebUI if VPN is enabled. Anything I'm missing or any other suggestions?
Here is the full dump of last reboot log:
Created by...
___. .__ .__
\_ |__ |__| ____ | |__ ____ ___ ___
| __ \| |/ \| | \_/ __ \\ \/ /
| \_\ \ | | \ Y \ ___/ > <
|___ /__|___| /___| /\___ >__/\_ \
\/ \/ \/ \/ \/
https://hub.docker.com/u/binhex/
2023-01-31 05:52:12.876853 [info] Host is running unRAID
2023-01-31 05:52:12.912645 [info] System information Linux 04a824aa28e5 5.19.14-Unraid #1 SMP PREEMPT_DYNAMIC Thu Oct 6 09:15:00 P
DT 2022 x86_64 GNU/Linux
2023-01-31 05:52:12.962294 [info] OS_ARCH defined as 'x86-64'
2023-01-31 05:52:13.008358 [info] PUID defined as '99'
2023-01-31 05:52:13.093884 [info] PGID defined as '100'
2023-01-31 05:52:13.190516 [info] UMASK defined as '000'
2023-01-31 05:52:13.234279 [info] Permissions already set for '/config'
2023-01-31 05:52:13.288329 [info] Deleting files in /tmp (non recursive)...
2023-01-31 05:52:13.344229 [info] VPN_ENABLED defined as 'yes'
2023-01-31 05:52:13.389382 [info] VPN_CLIENT defined as 'openvpn'
2023-01-31 05:52:13.428501 [info] VPN_PROV defined as 'custom'
2023-01-31 05:52:13.495014 [info] OpenVPN config file (ovpn extension) is located at /config/openvpn/PrivateVPN-SE-Stockholm-TUN-4
43.ovpn
2023-01-31 05:52:13.598294 [info] VPN remote server(s) defined as 'se-sto.pvdata.host,'
2023-01-31 05:52:13.636816 [info] VPN remote port(s) defined as '443,'
2023-01-31 05:52:13.676009 [info] VPN remote protcol(s) defined as 'tcp-client,'
2023-01-31 05:52:13.722568 [info] VPN_DEVICE_TYPE defined as 'tun0'
2023-01-31 05:52:13.766732 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS)
2023-01-31 05:52:13.809064 [info] LAN_NETWORK defined as '192.168.1.0/24,192.168.50.0/24'
2023-01-31 05:52:13.849249 [info] NAME_SERVERS defined as '84.200.69.80,37.235.1.174,1.1.1.1,37.235.1.177,84.200.70.40,1.0.0.1'
2023-01-31 05:52:13.892369 [info] VPN_USER defined as <username>
2023-01-31 05:52:13.937794 [info] VPN_PASS defined as <password>
2023-01-31 05:52:13.982802 [info] ENABLE_PRIVOXY defined as 'no'
2023-01-31 05:52:14.032450 [info] VPN_INPUT_PORTS not defined (via -e VPN_INPUT_PORTS), skipping allow for custom incoming ports
2023-01-31 05:52:14.077110 [info] VPN_OUTPUT_PORTS not defined (via -e VPN_OUTPUT_PORTS), skipping allow for custom outgoing ports
2023-01-31 05:52:14.122897 [info] DELUGE_DAEMON_LOG_LEVEL defined as 'info'
2023-01-31 05:52:14.166538 [info] DELUGE_WEB_LOG_LEVEL defined as 'info'
2023-01-31 05:52:14.216605 [info] Starting Supervisor...
2023-01-31 05:52:14,820 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing
2023-01-31 05:52:14,821 INFO Set uid to user 0 succeeded
2023-01-31 05:52:14,827 INFO supervisord started with pid 7
2023-01-31 05:52:15,830 INFO spawned: 'start-script' with pid 186
2023-01-31 05:52:15,833 INFO spawned: 'watchdog-script' with pid 187
2023-01-31 05:52:15,834 INFO reaped unknown pid 8 (exit status 0)
2023-01-31 05:52:15,842 DEBG 'start-script' stdout output:
[info] VPN is enabled, beginning configuration of VPN
2023-01-31 05:52:15,843 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2023-01-31 05:52:15,843 INFO success: watchdog-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs
)
2023-01-31 05:52:15,856 DEBG 'start-script' stdout output:
[warn] Username contains characters which could cause authentication issues, please consider changing this if possible
2023-01-31 05:52:15,958 DEBG 'start-script' stdout output:
[info] Adding 84.200.69.80 to /etc/resolv.conf
2023-01-31 05:52:15,964 DEBG 'start-script' stdout output:
[info] Adding 37.235.1.174 to /etc/resolv.conf
2023-01-31 05:52:15,970 DEBG 'start-script' stdout output:
[info] Adding 1.1.1.1 to /etc/resolv.conf
2023-01-31 05:52:15,977 DEBG 'start-script' stdout output:
[info] Adding 37.235.1.177 to /etc/resolv.conf
2023-01-31 05:52:15,984 DEBG 'start-script' stdout output:
[info] Adding 84.200.70.40 to /etc/resolv.conf
2023-01-31 05:52:15,990 DEBG 'start-script' stdout output:
[info] Adding 1.0.0.1 to /etc/resolv.conf
2023-01-31 05:52:26,201 DEBG 'start-script' stdout output:
[info] Default route for container is 192.168.50.1
2023-01-31 05:52:26,221 DEBG 'start-script' stdout output:
[info] Docker network defined as 192.168.50.0/24
2023-01-31 05:52:26,226 DEBG 'start-script' stdout output:
[info] Adding 192.168.1.0/24 as route via docker eth0
2023-01-31 05:52:26,236 DEBG 'start-script' stdout output:
[info] Adding 192.168.50.0/24 as route via docker eth0
2023-01-31 05:52:26,238 DEBG 'start-script' stderr output:
RTNETLINK answers: File exists
2023-01-31 05:52:26,238 DEBG 'start-script' stdout output:
[info] ip route defined as follows...
--------------------
2023-01-31 05:52:26,240 DEBG 'start-script' stdout output:
default via 192.168.50.1 dev eth0
192.168.1.0/24 via 192.168.50.1 dev eth0
192.168.50.0/24 dev eth0 proto kernel scope link src 192.168.50.203
2023-01-31 05:52:26,241 DEBG 'start-script' stdout output:
local 127.0.0.0/8 dev lo table local proto kernel scope host src 127.0.0.1
local 127.0.0.1 dev lo table local proto kernel scope host src 127.0.0.1
broadcast 127.255.255.255 dev lo table local proto kernel scope link src 127.0.0.1
local 192.168.50.203 dev eth0 table local proto kernel scope host src 192.168.50.203
broadcast 192.168.50.255 dev eth0 table local proto kernel scope link src 192.168.50.203
2023-01-31 05:52:26,241 DEBG 'start-script' stdout output:
--------------------
2023-01-31 05:52:26,247 DEBG 'start-script' stdout output:
iptable_mangle 16384 1
ip_tables 28672 5 iptable_filter,iptable_nat,iptable_mangle
x_tables 45056 12 ip6table_filter,xt_conntrack,iptable_filter,xt_tcpudp,xt_addrtype,xt_nat,ip6_tables,ip_tables,ipt
able_nat,xt_MASQUERADE,iptable_mangle,xt_mark
2023-01-31 05:52:26,248 DEBG 'start-script' stdout output:
[info] iptable_mangle support detected, adding fwmark for tables
2023-01-31 05:52:26,462 DEBG 'start-script' stdout output:
[info] iptables defined as follows...
--------------------
2023-01-31 05:52:26,464 DEBG 'start-script' stdout output:
-P INPUT DROP
-P FORWARD DROP
-P OUTPUT DROP
-A INPUT -s 192.168.50.0/24 -d 192.168.50.0/24 -j ACCEPT
-A INPUT -s 45.130.87.14/32 -i eth0 -j ACCEPT
-A INPUT -s 45.130.87.5/32 -i eth0 -j ACCEPT
-A INPUT -s 45.130.87.16/32 -i eth0 -j ACCEPT
-A INPUT -s 45.130.87.18/32 -i eth0 -j ACCEPT
-A INPUT -s 45.130.87.9/32 -i eth0 -j ACCEPT
-A INPUT -s 45.130.87.12/32 -i eth0 -j ACCEPT
-A INPUT -s 45.130.87.3/32 -i eth0 -j ACCEPT
-A INPUT -s 45.130.87.7/32 -i eth0 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 8112 -j ACCEPT
-A INPUT -s 192.168.1.0/24 -d 192.168.50.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT
-A INPUT -s 192.168.50.0/24 -d 192.168.50.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -i tun0 -j ACCEPT
-A OUTPUT -s 192.168.50.0/24 -d 192.168.50.0/24 -j ACCEPT
-A OUTPUT -d 45.130.87.14/32 -o eth0 -j ACCEPT
-A OUTPUT -d 45.130.87.5/32 -o eth0 -j ACCEPT
-A OUTPUT -d 45.130.87.16/32 -o eth0 -j ACCEPT
-A OUTPUT -d 45.130.87.18/32 -o eth0 -j ACCEPT
-A OUTPUT -d 45.130.87.9/32 -o eth0 -j ACCEPT
-A OUTPUT -d 45.130.87.12/32 -o eth0 -j ACCEPT
-A OUTPUT -d 45.130.87.3/32 -o eth0 -j ACCEPT
-A OUTPUT -d 45.130.87.7/32 -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 8112 -j ACCEPT
-A OUTPUT -s 192.168.50.0/24 -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT
-A OUTPUT -s 192.168.50.0/24 -d 192.168.50.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o tun0 -j ACCEPT
2023-01-31 05:52:26,466 DEBG 'start-script' stdout output:
--------------------
2023-01-31 05:52:26,467 DEBG 'start-script' stdout output:
[info] Starting OpenVPN (non daemonised)...
2023-01-31 05:52:26,563 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-01-31 05:52:26,563 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 WARNING: file 'credentials.conf' is group or others accessible
2023-01-31 05:52:26 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11]
[MH/PKTINFO] [AEAD] built on May 31 2022
2023-01-31 05:52:26,564 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 library versions: OpenSSL 1.1.1q 5 Jul 2022, LZO 2.10
2023-01-31 05:52:26,564 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2023-01-31 05:52:26,565 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
2023-01-31 05:52:26,565 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
2023-01-31 05:52:26 Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
2023-01-31 05:52:26 Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
2023-01-31 05:52:26,570 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 TCP/UDP: Preserving recently used remote address: [AF_INET]45.130.87.14:443
2023-01-31 05:52:26 Socket Buffers: R=[87380->87380] S=[65536->65536]
2023-01-31 05:52:26 Attempting to establish TCP connection with [AF_INET]45.130.87.14:443 [nonblock]
2023-01-31 05:52:26,620 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 TCP connection established with [AF_INET]45.130.87.14:443
2023-01-31 05:52:26 TCP_CLIENT link local: (not bound)
2023-01-31 05:52:26 TCP_CLIENT link remote: [AF_INET]45.130.87.14:443
2023-01-31 05:52:26,653 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 TLS: Initial packet from [AF_INET]45.130.87.14:443, sid=f24f2d23 6a3e1ca1
2023-01-31 05:52:26,767 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 VERIFY OK: depth=1, C=SE, ST=CA, L=Stockholm, O=PrivateVPN, CN=PrivateVPN CA, name=PrivateVPN,
[email protected]
2023-01-31 05:52:26,768 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 VERIFY KU OK
2023-01-31 05:52:26 Validating certificate extended key usage
2023-01-31 05:52:26 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2023-01-31 05:52:26 VERIFY EKU OK
2023-01-31 05:52:26 VERIFY OK: depth=0, C=SE, ST=CA, L=Stockholm, O=PrivateVPN, CN=PrivateVPN, name=PrivateVPN,
[email protected]
2023-01-31 05:52:26,923 DEBG 'start-script' stdout output:
2023-01-31 05:52:26 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2023-01-31 05:52:26 [PrivateVPN] Peer Connection Initiated with [AF_INET]45.130.87.14:443
2023-01-31 05:52:28,024 DEBG 'start-script' stdout output:
2023-01-31 05:52:28 SENT CONTROL [PrivateVPN]: 'PUSH_REQUEST' (status=1)
2023-01-31 05:52:28,147 DEBG 'start-script' stdout output:
2023-01-31 05:52:28 PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,sndbuf 524288,rcvbuf 524288,redirect-gateway def1,dhcp
-option DISABLE-NBT,dhcp-option DNS 10.35.53.1,dhcp-option DNS 10.35.53.2,route-gateway 10.35.12.1,topology subnet,ping 20,ping-re
start 60,ifconfig 10.35.12.2 255.255.254.0,peer-id 0,cipher AES-256-GCM'
2023-01-31 05:52:28,147 DEBG 'start-script' stdout output:
2023-01-31 05:52:28 OPTIONS IMPORT: timers and/or timeouts modified
2023-01-31 05:52:28 OPTIONS IMPORT: compression parms modified
2023-01-31 05:52:28 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
2023-01-31 05:52:28 Socket Buffers: R=[87380->1048576] S=[69120->1048576]
2023-01-31 05:52:28 OPTIONS IMPORT: --ifconfig/up options modified
2023-01-31 05:52:28 OPTIONS IMPORT: route options modified
2023-01-31 05:52:28 OPTIONS IMPORT: route-related options modified
2023-01-31 05:52:28 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2023-01-31 05:52:28 OPTIONS IMPORT: peer-id set
2023-01-31 05:52:28 OPTIONS IMPORT: adjusting link_mtu to 1627
2023-01-31 05:52:28 OPTIONS IMPORT: data channel crypto options modified
2023-01-31 05:52:28 Data Channel: using negotiated cipher 'AES-256-GCM'
2023-01-31 05:52:28 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2023-01-31 05:52:28 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2023-01-31 05:52:28 net_route_v4_best_gw query: dst 0.0.0.0
2023-01-31 05:52:28 net_route_v4_best_gw result: via 192.168.50.1 dev eth0
2023-01-31 05:52:28 ROUTE_GATEWAY 192.168.50.1/255.255.255.0 IFACE=eth0 HWADDR=02:42:c0:a8:32:cb
2023-01-31 05:52:28,148 DEBG 'start-script' stdout output:
2023-01-31 05:52:28 TUN/TAP device tun0 opened
2023-01-31 05:52:28 net_iface_mtu_set: mtu 1500 for tun0
2023-01-31 05:52:28 net_iface_up: set tun0 up
2023-01-31 05:52:28 net_addr_v4_add: 10.35.12.2/23 dev tun0
2023-01-31 05:52:28,148 DEBG 'start-script' stdout output:
2023-01-31 05:52:28 /root/openvpnup.sh tun0 1500 1555 10.35.12.2 255.255.254.0 init
2023-01-31 05:52:28,151 DEBG 'start-script' stdout output:
2023-01-31 05:52:28 net_route_v4_add: 45.130.87.14/32 via 192.168.50.1 dev [NULL] table 0 metric -1
2023-01-31 05:52:28 net_route_v4_add: 0.0.0.0/1 via 10.35.12.1 dev [NULL] table 0 metric -1
2023-01-31 05:52:28,152 DEBG 'start-script' stdout output:
2023-01-31 05:52:28 net_route_v4_add: 128.0.0.0/1 via 10.35.12.1 dev [NULL] table 0 metric -1
2023-01-31 05:52:28 Initialization Sequence Completed
2023-01-31 05:52:28,159 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E
2023-01-31 05:52:29,170 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E
2023-01-31 05:52:29,182 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E
2023-01-31 05:53:14,268 DEBG 'start-script' stdout output:
[info] Attempting to get external IP using 'http://checkip.amazonaws.com'...
2023-01-31 05:53:27,402 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E
2023-01-31 05:53:27,404 DEBG 'start-script' stdout output:
[info] Failed on last attempt, attempting to get external IP using 'http://whatismyip.akamai.com'...
2023-01-31 05:53:35,813 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E
2023-01-31 05:53:35,821 DEBG 'start-script' stdout output:
[info] Successfully retrieved external IP address 45.130.87.13
2023-01-31 05:53:35,826 DEBG 'start-script' stdout output:
[info] Application does not require port forwarding or VPN provider is != pia, skipping incoming port assignment
2023-01-31 05:53:35,849 DEBG 'watchdog-script' stdout output:
[info] Deluge listening interface IP 0.0.0.0 and VPN provider IP 10.35.12.2 different, marking for reconfigure
2023-01-31 05:53:35,857 DEBG 'watchdog-script' stdout output:
[info] Deluge not running
2023-01-31 05:53:35,866 DEBG 'watchdog-script' stdout output:
[info] Deluge Web UI not running
2023-01-31 05:53:35,866 DEBG 'watchdog-script' stdout output:
[info] Attempting to start Deluge...
[info] Removing deluge pid file (if it exists)...
2023-01-31 05:53:36,348 DEBG 'watchdog-script' stdout output:
[info] Deluge key 'listen_interface' currently has a value of '10.35.12.2'
[info] Deluge key 'listen_interface' will have a new value '10.35.12.2'
[info] Writing changes to Deluge config file '/config/core.conf'...
2023-01-31 05:53:36,699 DEBG 'watchdog-script' stdout output:
[info] Deluge key 'outgoing_interface' currently has a value of 'tun0'
[info] Deluge key 'outgoing_interface' will have a new value 'tun0'
[info] Writing changes to Deluge config file '/config/core.conf'...
2023-01-31 05:53:37,339 DEBG 'watchdog-script' stdout output:
[info] Deluge key 'default_daemon' currently has an undefined value
[info] Deluge key 'default_daemon' will have a new value 'e70cd18037d941598f42937bded346f4'
[info] Writing changes to Deluge config file '/config/web.conf'...
2023-01-31 05:53:38,009 DEBG 'watchdog-script' stdout output:
[info] Deluge process started
[info] Waiting for Deluge process to start listening on port 58846...
2023-01-31 05:53:38,357 DEBG 'watchdog-script' stdout output:
[info] Deluge process listening on port 58846
2023-01-31 05:53:42,197 DEBG 'watchdog-script' stderr output:
<Deferred at 0x149932da2680 current result: None>
2023-01-31 05:53:42,301 DEBG 'watchdog-script' stdout output:
[info] No torrents with state 'Error' found
2023-01-31 05:53:42,302 DEBG 'watchdog-script' stdout output:
[info] Starting Deluge Web UI...
2023-01-31 05:53:42,302 DEBG 'watchdog-script' stdout output:
[info] Deluge Web UI started