Jump to content

jleiss

Members
 View Profile  See their activity

  • Posts

    11

  • Joined

  • Last visited

 Content Type 

Posts posted by jleiss

    [Support] binhex - qBittorrentVPN

    in Docker Containers

    Posted

    8 hours ago, binhex said:

     

     

    these are your two issues, as shown in your log:- 

    
2020-10-13 14:36:29,702 DEBG 'start-script' stderr output:
Error: Unknown device type.

2020-10-13 14:36:29,704 DEBG 'start-script' stderr output:
Unable to access interface: Protocol not supported

    a quick google and i found the link below, i see you arent a unraid user, so your issue is no doubt with the kernel version you are running, it must be kernel 5.6.x or later for wireguard to work:-

    https://www.reddit.com/r/WireGuard/comments/b3jp39/cant_get_wireguard_to_load_the_interface_wg0_at/

     

    Thank you, it's a proxmox server and they are only at 5.4 for now, might be awhile before they get there. Unless I find a workaround i'll stick with openvpn.

    • Like 1

    [Support] binhex - qBittorrentVPN

    in Docker Containers

    Posted

    8 minutes ago, jleiss said:

    using the default wireguard config that comes from deployment, no modifications to it. Is this similar to openvpn and I need to get a wireguard config from PIA?

    not sure the security of the public and private key so I have XXXX those out, here is what the config file looks like

     

    [Interface]
    Address = 10.27.139.48
    PrivateKey = XXXXXXXXXXXXXX
    PostUp = '/root/wireguardup.sh'
    PostDown = '/root/wireguarddown.sh'

     

    [Peer]
    PublicKey = XXXXXXXXXXXXXXXXXXX
    AllowedIPs = 0.0.0.0/0
    Endpoint = nl-amsterdam.privacy.network:1337

     

    [Support] binhex - qBittorrentVPN

    in Docker Containers

    Posted · Edited by jleiss

    4 hours ago, musicking said:

    Looks like wireguard support is coming :)
    I tried setting the flag and importing the config, but I keep getting errors. I will wait a big longer and if you want more troubleshooting from me, let me know.

    I tried also.. getting warnings about the wireguard config being world accessible and errors bringing up the wireguard interface

     

    2020-10-12 20:24:13,996 DEBG 'start-script' stdout output:
    [info] Attempting to bring WireGuard interface 'up'...

    2020-10-12 20:24:14,002 DEBG 'start-script' stderr output:
    Warning: `/config/wireguard/wg0.conf' is world accessible

    2020-10-12 20:24:14,006 DEBG 'start-script' stderr output:
    [#] ip link add wg0 type wireguard

    2020-10-12 20:24:14,008 DEBG 'start-script' stderr output:
    Error: Unknown device type.

    2020-10-12 20:24:14,010 DEBG 'start-script' stderr output:
    Unable to access interface: Protocol not supported

    2020-10-12 20:24:14,010 DEBG 'start-script' stderr output:
    [#] ip link delete dev wg0

    2020-10-12 20:24:14,013 DEBG 'start-script' stderr output:
    Cannot find device "wg0"

    2020-10-12 20:24:14,013 DEBG 'start-script' stdout output:
    [warn] WireGuard interface failed to come 'up', exit code is '1'

    [Support] binhex - qBittorrentVPN

    in Docker Containers

    Posted

    On 11/13/2018 at 7:10 PM, DarkKnight said:

    Thanks for developing this container. I'm trying to use Privoxy, but constantly getting "Proxy is not responding" messages when testing it with Chrome. 

     

    Log Below:

      

    
Created by...
___. .__ .__
\_ |__ |__| ____ | |__ ____ ___ ___
| __ \| |/ \| | \_/ __ \\ \/ /
| \_\ \ | | \ Y \ ___/ > <
|___ /__|___| /___| /\___ >__/\_ \
\/ \/ \/ \/ \/
https://hub.docker.com/u/binhex/

2018-11-13 21:48:00.699660 [info] System information Linux 27cb18cb1c3d 4.18.17-unRAID #1 SMP Sun Nov 4 08:16:44 PST 2018 x86_64 GNU/Linux
2018-11-13 21:48:00.749849 [info] PUID defined as '99'
2018-11-13 21:48:00.929923 [info] PGID defined as '100'
2018-11-13 21:48:01.172380 [info] UMASK defined as '000'
2018-11-13 21:48:01.218015 [info] Permissions already set for volume mappings
2018-11-13 21:48:01.268454 [info] VPN_ENABLED defined as 'yes'
2018-11-13 21:48:01.326128 [info] OpenVPN config file (ovpn extension) is located at /config/openvpn/XXXXX-XXXXXXXXXXXXX.ovpn
dos2unix: converting file /config/openvpn/XXXXX-XXXXXXXXXXXXX.ovpn to Unix format...
2018-11-13 21:48:01.400947 [info] VPN remote line defined as 'remote xxxxxxxxxxx.com 443'
2018-11-13 21:48:01.444842 [info] VPN_REMOTE defined as 'xxxxxxxxxxx.com'
2018-11-13 21:48:01.489940 [info] VPN_PORT defined as '443'
2018-11-13 21:48:01.545786 [info] VPN_PROTOCOL defined as 'udp'
2018-11-13 21:48:01.592086 [info] VPN_DEVICE_TYPE defined as 'tun0'
2018-11-13 21:48:01.640001 [info] VPN_PROV defined as 'custom'
2018-11-13 21:48:01.687777 [info] LAN_NETWORK defined as '192.168.1.0/24'
2018-11-13 21:48:01.734800 [info] NAME_SERVERS defined as '8.8.4.4'
2018-11-13 21:48:01.782309 [info] VPN_USER defined as 'XXXXXXXXXXX'
2018-11-13 21:48:01.828605 [info] VPN_PASS defined as 'XXXXXXXXXXX'
2018-11-13 21:48:01.876373 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS)
2018-11-13 21:48:01.924109 [info] ENABLE_PRIVOXY defined as 'yes'
2018-11-13 21:48:01.972317 [info] WEBUI_PORT defined as '8089'
2018-11-13 21:48:02.024303 [info] Starting Supervisor...
2018-11-13 21:48:02,574 INFO Included extra file "/etc/supervisor/conf.d/qbittorrent.conf" during parsing
2018-11-13 21:48:02,574 INFO Set uid to user 0 succeeded
2018-11-13 21:48:02,579 INFO supervisord started with pid 8
2018-11-13 21:48:03,582 INFO spawned: 'start-script' with pid 143
2018-11-13 21:48:03,585 INFO spawned: 'watchdog-script' with pid 144
2018-11-13 21:48:03,587 INFO spawned: 'privoxy-script' with pid 145
2018-11-13 21:48:03,587 INFO reaped unknown pid 9
2018-11-13 21:48:03,596 DEBG 'start-script' stdout output:
[info] VPN is enabled, beginning configuration of VPN

2018-11-13 21:48:03,597 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2018-11-13 21:48:03,597 INFO success: watchdog-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2018-11-13 21:48:03,597 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2018-11-13 21:48:03,598 DEBG 'watchdog-script' stdout output:
[info] qBittorrent config file already exists, skipping copy
[info] Removing session lock file (if it exists)...

2018-11-13 21:48:03,602 DEBG 'watchdog-script' stderr output:
dos2unix:
2018-11-13 21:48:03,603 DEBG 'watchdog-script' stderr output:
converting file /config/qBittorrent/config/qBittorrent.conf to Unix format...

2018-11-13 21:48:03,613 DEBG 'start-script' stdout output:
[warn] Password contains characters which could cause authentication issues, please consider changing this if possible

2018-11-13 21:48:03,713 DEBG 'start-script' stdout output:
[info] Default route for container is 172.17.0.1

2018-11-13 21:48:03,720 DEBG 'start-script' stdout output:
[info] Adding XXXXXXXXXX to /etc/resolv.conf

2018-11-13 21:48:03,725 DEBG 'start-script' stdout output:
[info] Adding XXXXXXXXXXXXX to /etc/resolv.conf

2018-11-13 21:48:03,730 DEBG 'start-script' stdout output:
[info] Adding 1.1.1.1 to /etc/resolv.conf

2018-11-13 21:48:03,735 DEBG 'start-script' stdout output:
[info] Adding 8.8.8.8 to /etc/resolv.conf

2018-11-13 21:48:03,740 DEBG 'start-script' stdout output:
[info] Adding XXXXXXXXXXXXX to /etc/resolv.conf

2018-11-13 21:48:03,745 DEBG 'start-script' stdout output:
[info] Adding XXXXXXXXXXXX to /etc/resolv.conf

2018-11-13 21:48:03,750 DEBG 'start-script' stdout output:
[info] Adding 1.0.0.1 to /etc/resolv.conf

2018-11-13 21:48:03,756 DEBG 'start-script' stdout output:
[info] Adding 8.8.4.4 to /etc/resolv.conf

2018-11-13 21:48:04,067 DEBG 'start-script' stdout output:
[info] Adding 192.168.1.0/24 as route via docker eth0

2018-11-13 21:48:04,068 DEBG 'start-script' stdout output:
[info] ip route defined as follows...
--------------------

2018-11-13 21:48:04,070 DEBG 'start-script' stdout output:
default via 172.17.0.1 dev eth0
172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.9
192.168.1.0/24 via 172.17.0.1 dev eth0

2018-11-13 21:48:04,070 DEBG 'start-script' stdout output:
--------------------

2018-11-13 21:48:04,076 DEBG 'start-script' stdout output:
iptable_mangle 16384 1
ip_tables 24576 3 iptable_filter,iptable_nat,iptable_mangle

2018-11-13 21:48:04,077 DEBG 'start-script' stdout output:
[info] iptable_mangle support detected, adding fwmark for tables

2018-11-13 21:48:04,108 DEBG 'start-script' stdout output:
[info] Docker network defined as 172.17.0.0/16

2018-11-13 21:48:04,215 DEBG 'start-script' stdout output:
[info] iptables defined as follows...
--------------------

2018-11-13 21:48:04,219 DEBG 'start-script' stdout output:
-P INPUT DROP
-P FORWARD ACCEPT
-P OUTPUT DROP
-A INPUT -i tun0 -j ACCEPT
-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --sport 443 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8089 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --sport 8089 -j ACCEPT
-A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 8089 -j ACCEPT
-A INPUT -s 192.168.1.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A OUTPUT -o tun0 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --dport 443 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --dport 8089 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8089 -j ACCEPT
-A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 8089 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.1.0/24 -o eth0 -p tcp -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT

2018-11-13 21:48:04,219 DEBG 'start-script' stdout output:
--------------------

2018-11-13 21:48:04,220 DEBG 'start-script' stdout output:
[info] Starting OpenVPN...

2018-11-13 21:48:04,253 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 WARNING: --keysize is DEPRECATED and will be removed in OpenVPN 2.6

Tue Nov 13 21:48:04 2018 WARNING: --keysize is DEPRECATED and will be removed in OpenVPN 2.6


2018-11-13 21:48:04,254 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 WARNING: file 'credentials.conf' is group or others accessible

Tue Nov 13 21:48:04 2018 OpenVPN 2.4.6 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Apr 24 2018
Tue Nov 13 21:48:04 2018 library versions: OpenSSL 1.1.1 11 Sep 2018, LZO 2.10

2018-11-13 21:48:04,255 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
[info] OpenVPN started

2018-11-13 21:48:04,256 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 TCP/UDP: Preserving recently used remote address: [AF_INET]xx.xx.xx.50:443
Tue Nov 13 21:48:04 2018 Socket Buffers: R=[212992->212992] S=[212992->212992]
Tue Nov 13 21:48:04 2018 UDP link local: (not bound)
Tue Nov 13 21:48:04 2018 UDP link remote: [AF_INET]xx.xx.xx.50:443

2018-11-13 21:48:04,263 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 TLS: Initial packet from [AF_INET]xx.xx.xx.50:443, sid=a6d0612f f3f8f70c

2018-11-13 21:48:04,282 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 VERIFY OK: depth=1, C=US, ST=FL, L=Location, O=XXXXX, OU=XXXXX VPN, CN=XXXXX CA, [email protected]

2018-11-13 21:48:04,283 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 VERIFY X509NAME OK: C=US, ST=FL, L=Location, O=XXXXX, OU=XXXXX VPN, CN=xxxxxxxxxxx.com, [email protected]
Tue Nov 13 21:48:04 2018 VERIFY OK: depth=0, C=US, ST=FL, L=Location, O=XXXXX, OU=XXXXX VPN, CN=xxxxxxxxxxx.com, [email protected]

2018-11-13 21:48:04,335 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:04 2018 Control Channel: TLSv1.2, cipher SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Tue Nov 13 21:48:04 2018 [xxxxxxxxxxx.com] Peer Connection Initiated with [AF_INET]xx.xx.xx.50:443

2018-11-13 21:48:05,360 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 SENT CONTROL [xxxxxxxxxxx.com]: 'PUSH_REQUEST' (status=1)

2018-11-13 21:48:05,368 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS XXXXXXX,dhcp-option DNS XXXXXXXXXXX,rcvbuf 493216,sndbuf 493216,explicit-exit-notify 5,comp-lzo no,route-gateway xx.xx.xx.1,topology subnet,ping 20,ping-restart 40,ifconfig xx.xx.xx.55 255.255.254.0,peer-id 9,cipher AES-256-GCM'

2018-11-13 21:48:05,369 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: timers and/or timeouts modified
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: explicit notify parm(s) modified
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: compression parms modified
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
Tue Nov 13 21:48:05 2018 Socket Buffers: R=[212992->986432] S=[212992->986432]
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: --ifconfig/up options modified
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: route options modified
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: route-related options modified
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: peer-id set
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: adjusting link_mtu to 1625
Tue Nov 13 21:48:05 2018 OPTIONS IMPORT: data channel crypto options modified
Tue Nov 13 21:48:05 2018 Data Channel: using negotiated cipher 'AES-256-GCM'
Tue Nov 13 21:48:05 2018 NCP: overriding user-set keysize with default
Tue Nov 13 21:48:05 2018 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Tue Nov 13 21:48:05 2018 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Tue Nov 13 21:48:05 2018 ROUTE_GATEWAY 172.17.0.1/255.255.0.0 IFACE=eth0 HWADDR=XXXXXXXXXXXXXXX
Tue Nov 13 21:48:05 2018 TUN/TAP device tun0 opened
Tue Nov 13 21:48:05 2018 TUN/TAP TX queue length set to 100
Tue Nov 13 21:48:05 2018 do_ifconfig, tt->did_ifconfig_ipv6_setup=0

2018-11-13 21:48:05,370 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 /usr/bin/ip link set dev tun0 up mtu 1500

2018-11-13 21:48:05,371 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 /usr/bin/ip addr add dev tun0 xx.xx.xx.55/23 broadcast XXXXXXXXXX

2018-11-13 21:48:05,373 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 /root/openvpnup.sh tun0 1500 1553 xx.xx.xx.55 255.255.254.0 init

2018-11-13 21:48:05,377 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 /usr/bin/ip route add xx.xx.xx.50/32 via 172.17.0.1

2018-11-13 21:48:05,379 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 /usr/bin/ip route add 0.0.0.0/1 via xx.xx.xx.1

2018-11-13 21:48:05,381 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 /usr/bin/ip route add 128.0.0.0/1 via xx.xx.xx.1

2018-11-13 21:48:05,382 DEBG 'start-script' stdout output:
Tue Nov 13 21:48:05 2018 Initialization Sequence Completed

2018-11-13 21:48:05,471 DEBG 'privoxy-script' stdout output:
[info] Configuring Privoxy...

2018-11-13 21:48:05,475 DEBG 'watchdog-script' stdout output:
[info] qBittorrent listening interface IP 0.0.0.0 and VPN provider IP xx.xx.xx.55 different, marking for reconfigure

2018-11-13 21:48:05,481 DEBG 'watchdog-script' stdout output:
[info] qBittorrent not running

2018-11-13 21:48:05,548 DEBG 'start-script' stdout output:
[info] Successfully retrieved external IP address xx.xx.xx.50

2018-11-13 21:48:05,584 DEBG 'watchdog-script' stdout output:
[info] Removing session lock file (if it exists)...

2018-11-13 21:48:05,586 DEBG 'watchdog-script' stdout output:
[info] Attempting to start qBittorrent...

2018-11-13 21:48:05,655 DEBG 'watchdog-script' stdout output:
[info] qBittorrent process started
[info] Waiting for qBittorrent process to start listening on port 8089...

2018-11-13 21:48:07,183 DEBG 'privoxy-script' stdout output:
[info] All checks complete, starting Privoxy...

2018-11-13 21:48:07,185 DEBG 'privoxy-script' stderr output:
2018-11-13 21:48:07.185 152fa106b100 Info: Privoxy version 3.0.26

2018-11-13 21:48:07.185 152fa106b100 Info: Program name: /usr/bin/privoxy

2018-11-13 21:48:35,938 DEBG 'watchdog-script' stdout output:
[info] qBittorrent running

     

     

    there is also a limit on number of remote lines in a config file, you will only be able to add like 50 or so. 

     

    BinHex- is there a set a bittorrent port range with your docker instead of it being randomly assigned? I tried setting it in the qb config file but it ignores that.

     

    [Support] binhex - qBittorrentVPN

    in Docker Containers

    Posted

    greatly appreciate you taking this on.. the current containers out there are lacking. I had some issues with getting this container up but I do see it's a new build so some adjustments are likely needed.

     

    Here's some of the things I encountered.

     

    1. vpn wouldn't connect intially because it couldn't load iptable_mangle

        was able to work around this by adding --cap-add=NET_ADMIN --device=/dev/net/tun (running proxvox which is Debian 9.6 underneath)

    2. couldn't get Privoxy to start, getting permission denied errors. default permissions on this folder is d----w--w- 2 nobody users     2 Nov 14 15:37 privoxy

    under default deployment nothing is getting copied to /config/privoxy/ because of permission issues.. if I modify the permissions manually I can see that files are copied to that folder. Still doesn't autostart but I am able to start it manually based on the command line from your script.

    3. getting errors reading files created by script, for example /home/nobody/getvpnextip.sh: line 9: /home/nobody/vpn_external_ip.txt: Permission denied. These files have the same permission as privoxy. qbittororrent doesn't auto start for me yet, but I am able to kick it off manually.

    4. Once into qbittorrent I can see that in the settings the download folder is not populated with /data which is the default location you provided for the download folder.

     

     

    Just a few things I have noticed so far.. more than willing to be a guinea pig to work things out.

     

     

    [Support] MarkusMcNugens Docker Repository

    in Docker Containers

    Posted

    Hello MarkusMcNugen,

     

    I current use delugevpn, but I've anxiously been waiting for a qbittorrent/openvpn combination that will work for me as that is my torrent client of choice. I saw that you recently updated your build and was going to try it, but I am getting the following error when trying to pull down the container:

     

    docker: Error response from daemon: pull access denied for v, repository does not exist or may require 'docker login'.

     

    I provided my docker creds and tried to pull it down but it didn't change anything.

     

×
×
  • Create New...