ken-ji

Mine does not. I has the time stamp of the last time ssh service is restarted (or when my server booted up) Unraid (and Linux in general) do not even create /root/.ssh until you've tried to connect to a ssh host from the root account; at which point the ssh host keys need to be saved and the directory and file are created.

Finally took a look and i probably won't be using this thing as a docker - it requires way too many capabilities than what I'd like to limit it too. Its very nature is that the docker needs to be in host mode to create multiple bridges and connect the client to a bridge then mess with the firewall rules to allow whatever you have. I'm sure I was hitting conflicts with my setup but yeah I never go it to work with my LAN at all. This might one of those applications I'd rather it run as a VM. But I might have a better look with this when I have time, hoping somebody else works out the issue. In hindsight just realized the reason I couldn't even get it to work is that I set the thing to routed mode for everything, but OpenVPN-AS does not readily show you all the subnets they generated, which needed to be programmed into my router. Talk about complicated if you are trying to do all of this remotely.

I'm going to have to give this a try. I'm not using the openvpn-as container myself (though I used to) as I've left VPN capabilities to a VPS that my router has an IPSEC connection with - since my provider is slowly rolling out CGNAT and I got selected as an early bird with no way out it seems. (Business grade plans need you to be a real business and no other non CGNAT ISP provider in the area)

This error is typically due to running out of resources, so I'd also try to check the logs first for Out Of Memory issues before rebooting.

Yes, its best to have a range of IPs for dockers that is outside of the Unifi's DHCP range. You can customize the docker network (by default named eth0/br0) and have it use IPs in the desired range (instead of the whole subnet as by default) FYI: Docker assigns containers IPs using a self-contained IPAM which does not coordinate with any external system like DHCP servers, etc. Docker does not attempt to check to see if the IP has been allocated and just picks the next available number.

in syslinux.cfg the i915.alpha_support option is not needed for your case so you can drop that. Try setting Emby Transcoding to Advanced. You should see a list of video codecs and any available HW decoders for them. ie.

Yes, have Emby Premiere and turn on Hardware Transcoding in Emby. Set it to Advanced to see if the iGPU is correctly setup

The only thing I see that could be wrong is that your openvpn-as copintainer is in host mode right? if so, make sure its bound to br0 not eth0 (I think that's how bridges should be used.) Does the openvpn-as container work in custom network mode work? (set to br1 with own IP address)

@Jenardo can you show the actual network settings? ip addresses and routes? and the same info from within the openvpn-as container?

I am currently doing the same, (except I'm using GRE over IPSEC as my routers don't have OpenVPN UDP support) and have linked 3 sites together. Do note that the overall speed for file transfer (and the latency!) will be determined by the Unraid servers' upload speed, your download speed and the VPS upload + download. If you are not on CGNAT (as I am) it might be possible to have your routers connect to each other directly (as i did before CGNAT was implemented) Haven't tried getting a seedbox so not sure what you can cannot run on it.

Exposing Unraid's defaut SSH config to the internet for tunnelling is one of the worst ideas, because when compromised, gives the attackers "trusted" status on the LAN, dockers, VMs, and data.

Did this ever work before? Does this work if you are on the LAN VLAN with Unraid? Is your client running some form of AV web proxy that might be mucking up the websocket connections?

I bought this for my NVME: https://www.amazon.com/gp/product/B07LC9TGC7 or maybe this for 2.5inch drives: https://www.amazon.com/ORICO-Adapter-Mounting-Bracket-Interface/dp/B01LZWX6PD

Double check your pfsense settings I can access the web terminals without issue across a site to site VPN

Also, if you have VLAN support, your docker network on the vlan is able to talk to unraid. AFAIK, openVPN works very well with its own dedicated IP ( as long as the docker network is either on a different VLAN, or interface from the Unraid )