Taddeusz

If there's someone that does need to do pass-through another option to try might be "iommu=pt". This option basically only enables IOMMU for devices you want to pass-through and disables it for everything else.

I did, it passed.

Thank you.

I'm not too alarmed quite yet but I got a single read error yesterday on Disk 5 of my array. SMART doesn't seem to have recorded it. I ran both short and long SMART tests and both passed. Wanted to get an opinion b efore I really start worrying about dying drives or controllers. unraid-diagnostics-20190916-1419.zip

9th Gen QSV is not yet supported by Unraid. The next version will include the necessary kernel/drivers to support the newer CPU’s.

Open the web interface to the Main tab. Under Boot Device click on Flash. Scroll down to the Syslinux Configuration section. I would add that to both the "unRAID OS" and "unRAID OS GUI Mode" sections. Add it on the same line after "append initrd=/bzroot" separated with a space.

Do you have IOMMU enabled in your BIOS? I was getting similar issues with my NVME cache drive. I added "iommu=pt" to the append statement in my syslinux configuration and it fixed that. Basically what this statement does is enables IOMMU only for the devices you want to pass through to a VM.

@Djoss I use the RealVNC VNC Viewer on my Mac and iOS devices and it's always complaining about unencrypted connections so I was playing around with enabling the secure feature on your containers. It appears that RealVNC uses their own type of encryption and is not compatible with SSL/TLS type encryption?

@tamito You may also check in your container's appdata folder in guacamole/extensions to make sure there aren't any weird jar files in there. The only jar files that should be there are ones that you have configured such as for MySQL or possibly a rebranding file if you have done that. I can't think of any other way this container could be compromised.

@tamito There's nothing that I know of in this container that would cause the traffic you're seeing. I assume you're on Unraid. Have you tried deleting the container and then use your template to re-download it?

@tamito Granted, I'm just using the firewall in my router and I'm not monitoring or filtering stuff there. I'm not seeing any current active connections to those IP addresses on my network.

I’ve not seen that. The ports don’t even correspond with anything Guacamole does. Sure you haven’t been hacked or have some kind of malware?

Right now I have /tmp in the container pointing to /mnt/user/appdata/HandBrake/tmp.

This looks like it may be complicated unless you can specify a temp path. They are in /tmp/hb.<ghb process number>.

I've been doing a lot of ripping recently and started getting warnings about my Docker image getting too full. I noticed that this container is putting Handbrake's temp files (2-pass btree files) into the container. Might be prudent to have HB's temp folder be able to be located outside the container's file system.