Hello, I'm currently using your docker, it seems to work but I have three small points that I can't figure out.
1. The server is not the one specified in configuration
I'm using ProtonVPN with portforwarding but the server address used is not the one specified in the configuration. I can see it setting the one from the configuration but the public address is nether this one.
2. The port forward does'nt see to work, When I check on https://portchecker.co/check-it it shows as closed.
3. I'm using a unifi router, a wireguard vpn is configured on it so I can remote on the lan from anywhere. It works great for everything except for this docker. I searched and find the point two in https://github.com/binhex/documentation/blob/master/docker/faq/vpn.md But it didn't solve my issue.
Here is my logs, thanks for anyone that can help me
Created by...
___. .__ .__
\_ |__ |__| ____ | |__ ____ ___ ___
| __ \| |/ \| | \_/ __ \\ \/ /
| \_\ \ | | \ Y \ ___/ > <
|___ /__|___| /___| /\___ >__/\_ \
\/ \/ \/ \/ \/
https://hub.docker.com/u/binhex/
2024-08-26 20:31:15.848763 [info] Host is running unRAID
2024-08-26 20:31:15.860957 [info] System information: Linux 1928800438cf 6.1.106-Unraid #1 SMP PREEMPT_DYNAMIC Wed Aug 21 23:36:07 PDT 2024 x86_64 GNU/Linux
2024-08-26 20:31:15.872977 [info] Image tags: INT_RELEASE_TAG=2024073001,IMAGE_RELEASE_TAG=4.6.6-1-01
2024-08-26 20:31:15.892451 [info] PUID defined as '99'
2024-08-26 20:31:15.935093 [info] PGID defined as '100'
2024-08-26 20:31:16.211946 [info] UMASK defined as '000'
2024-08-26 20:31:16.224841 [info] Permissions already set for '/config'
2024-08-26 20:31:16.281403 [info] Deleting files in /tmp (non recursive)...
2024-08-26 20:31:16.299023 [info] VPN_ENABLED defined as 'yes'
2024-08-26 20:31:16.317607 [info] VPN_CLIENT defined as 'wireguard'
2024-08-26 20:31:16.330413 [info] VPN_PROV defined as 'protonvpn'
2024-08-26 20:31:16.382466 [info] WireGuard config file (conf extension) is located at /config/wireguard/wg0.conf
2024-08-26 20:31:16.401221 [info] VPN_REMOTE_SERVER defined as '185.246.211.193'
2024-08-26 20:31:16.414246 [info] VPN_REMOTE_PORT defined as '51820'
2024-08-26 20:31:16.426209 [info] VPN_DEVICE_TYPE defined as 'wg0'
2024-08-26 20:31:16.438164 [info] VPN_REMOTE_PROTOCOL defined as 'udp'
2024-08-26 20:31:16.451014 [info] USERSPACE_WIREGUARD defined as 'no'
2024-08-26 20:31:16.463913 [info] NAME_SERVERS defined as '84.200.69.80,37.235.1.174,1.1.1.1,37.235.1.177,84.200.70.40,1.0.0.1'
2024-08-26 20:31:16.684150 [info] LAN_NETWORK defined as '192.168.1.0/24'
2024-08-26 20:31:16.700068 [info] LAN_NETWORK exported as '192.168.1.0/24'
2024-08-26 20:31:16.712995 [info] VPN_USER defined as '
[email protected]+pmp'
2024-08-26 20:31:16.725831 [info] VPN_PASS defined as 'my_super_secret_password'
2024-08-26 20:31:16.739505 [info] VPN_INPUT_PORTS not defined (via -e VPN_INPUT_PORTS), skipping allow for custom incoming ports
2024-08-26 20:31:16.752338 [info] VPN_OUTPUT_PORTS not defined (via -e VPN_OUTPUT_PORTS), skipping allow for custom outgoing ports
2024-08-26 20:31:16.765317 [info] ENABLE_STARTUP_SCRIPTS defined as 'no'
2024-08-26 20:31:16.778320 [info] ENABLE_SOCKS defined as 'no'
2024-08-26 20:31:16.791425 [info] ENABLE_PRIVOXY defined as 'no'
2024-08-26 20:31:16.804424 [info] WEBUI_PORT defined as '8080'
2024-08-26 20:31:16.819141 [info] SHARED_NETWORK not defined (via -e SHARED_NETWORK), defaulting to 'no'
2024-08-26 20:31:16.831663 [info] Starting Supervisor...
2024-08-26 20:31:17,731 INFO Included extra file "/etc/supervisor/conf.d/qbittorrent.conf" during parsing
2024-08-26 20:31:17,731 INFO Set uid to user 0 succeeded
2024-08-26 20:31:17,748 INFO supervisord started with pid 7
2024-08-26 20:31:18,749 INFO spawned: 'start-script' with pid 271
2024-08-26 20:31:18,750 INFO spawned: 'watchdog-script' with pid 272
2024-08-26 20:31:18,751 INFO reaped unknown pid 8 (exit status 0)
2024-08-26 20:31:18,774 DEBG 'start-script' stdout output:
[info] VPN is enabled, beginning configuration of VPN
2024-08-26 20:31:18,774 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2024-08-26 20:31:18,774 INFO success: watchdog-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2024-08-26 20:31:18,889 DEBG 'start-script' stdout output:
[info] Adding 192.168.1.0/24 as route via adapter eth0
2024-08-26 20:31:18,890 DEBG 'start-script' stdout output:
[info] ip route defined as follows...
--------------------
2024-08-26 20:31:18,891 DEBG 'start-script' stdout output:
default via 172.17.0.1 dev eth0
172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.2
192.168.1.0/24 via 172.17.0.1 dev eth0
2024-08-26 20:31:18,891 DEBG 'start-script' stdout output:
local 127.0.0.0/8 dev lo table local proto kernel scope host src 127.0.0.1
local 127.0.0.1 dev lo table local proto kernel scope host src 127.0.0.1
broadcast 127.255.255.255 dev lo table local proto kernel scope link src 127.0.0.1
local 172.17.0.2 dev eth0 table local proto kernel scope host src 172.17.0.2
broadcast 172.17.255.255 dev eth0 table local proto kernel scope link src 172.17.0.2
2024-08-26 20:31:18,891 DEBG 'start-script' stdout output:
--------------------
2024-08-26 20:31:18,893 DEBG 'start-script' stdout output:
iptable_mangle 16384 0
ip_tables 28672 4 iptable_filter,iptable_raw,iptable_nat,iptable_mangle
x_tables 45056 15 ip6table_filter,xt_conntrack,iptable_filter,xt_tcpudp,xt_addrtype,xt_nat,xt_comment,ip6_tables,xt_connmark,iptable_raw,ip_tables,iptable_nat,xt_MASQUERADE,iptable_mangle,xt_mark
2024-08-26 20:31:18,893 DEBG 'start-script' stdout output:
[info] iptable_mangle support detected, adding fwmark for tables
2024-08-26 20:31:18,918 DEBG 'start-script' stdout output:
[info] iptables defined as follows...
--------------------
2024-08-26 20:31:18,918 DEBG 'start-script' stdout output:
-P INPUT DROP
-P FORWARD DROP
-P OUTPUT DROP
-A INPUT -s 185.246.211.193/32 -i eth0 -j ACCEPT
-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A INPUT -s 185.246.211.193/32 -i eth0 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8080 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 8080 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -i wg0 -j ACCEPT
-A OUTPUT -d 185.246.211.193/32 -o eth0 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A OUTPUT -d 185.246.211.193/32 -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8080 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 8080 -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o wg0 -j ACCEPT
2024-08-26 20:31:18,919 DEBG 'start-script' stdout output:
--------------------
2024-08-26 20:31:18,920 DEBG 'start-script' stdout output:
[info] Configuring WireGuard...
2024-08-26 20:31:18,923 DEBG 'start-script' stdout output:
[info] Attempting to bring WireGuard interface 'up'...
2024-08-26 20:31:18,946 DEBG 'start-script' stderr output:
Warning: `/config/wireguard/wg0.conf' is world accessible
2024-08-26 20:31:18,949 DEBG 'start-script' stderr output:
[#] ip link add wg0 type wireguard
2024-08-26 20:31:18,950 DEBG 'start-script' stderr output:
[#] wg setconf wg0 /dev/fd/63
2024-08-26 20:31:18,951 DEBG 'start-script' stderr output:
[#] ip -4 address add 10.2.0.2/32 dev wg0
2024-08-26 20:31:18,954 DEBG 'start-script' stderr output:
[#] ip link set mtu 1420 up dev wg0
2024-08-26 20:31:18,956 DEBG 'start-script' stderr output:
[#] resolvconf -a wg0 -m 0 -x
2024-08-26 20:31:18,982 DEBG 'start-script' stderr output:
[#] wg set wg0 fwmark 51820
2024-08-26 20:31:18,983 DEBG 'start-script' stderr output:
[#] ip -4 route add 0.0.0.0/0 dev wg0 table 51820
2024-08-26 20:31:18,983 DEBG 'start-script' stderr output:
[#] ip -4 rule add not fwmark 51820 table 51820
2024-08-26 20:31:18,984 DEBG 'start-script' stderr output:
[#] ip -4 rule add table main suppress_prefixlength 0
2024-08-26 20:31:18,986 DEBG 'start-script' stderr output:
[#] sysctl -q net.ipv4.conf.all.src_valid_mark=1
2024-08-26 20:31:18,987 DEBG 'start-script' stderr output:
[#] iptables-restore -n
2024-08-26 20:31:18,989 DEBG 'start-script' stderr output:
[#] '/root/wireguardup.sh'
2024-08-26 20:31:26,023 DEBG 'start-script' stdout output:
[info] Attempting to get external IP using 'http://checkip.amazonaws.com'...
2024-08-26 20:31:26,354 DEBG 'start-script' stdout output:
[info] Successfully retrieved external IP address 185.246.211.202
2024-08-26 20:31:26,355 DEBG 'start-script' stdout output:
[info] Script started to assign incoming port for 'protonvpn'
2024-08-26 20:31:26,355 DEBG 'start-script' stdout output:
[info] WireGuard interface 'up'
2024-08-26 20:31:28,391 DEBG 'start-script' stdout output:
initnatpmp() returned 0 (SUCCESS)
using gateway : 10.2.0.1
sendpublicaddressrequest returned 2 (SUCCESS)
readnatpmpresponseorretry returned 0 (OK)
Public IP address : 185.246.211.202
epoch = 10233304
closenatpmp() returned 0 (SUCCESS)
2024-08-26 20:31:29,119 DEBG 'watchdog-script' stdout output:
[info] qBittorrent listening interface IP 0.0.0.0 and VPN provider IP 10.2.0.2 different, marking for reconfigure
2024-08-26 20:31:29,120 DEBG 'watchdog-script' stdout output:
[info] qBittorrent not running
2024-08-26 20:31:29,120 DEBG 'watchdog-script' stdout output:
[info] qBittorrent incoming port 6881 and VPN incoming port 53758 different, marking for reconfigure
2024-08-26 20:31:29,145 DEBG 'watchdog-script' stdout output:
[info] qBittorrent config file already exists, skipping copy
[info] Removing session lock file (if it exists)...
2024-08-26 20:31:29,155 DEBG 'watchdog-script' stdout output:
[info] Attempting to start qBittorrent...
2024-08-26 20:31:29,157 DEBG 'watchdog-script' stdout output:
[info] qBittorrent process started
[info] Waiting for qBittorrent process to start listening on port 8080...
2024-08-26 20:31:29,991 DEBG 'watchdog-script' stdout output:
[info] qBittorrent process listening on port 8080
EDIT :
Point 3 solved by using the Q32 of https://github.com/binhex/documentation/blob/master/docker/faq/vpn.md
Point 2 didn't exist, I appear connectable on torrent sites, I was testing the wrong port