Jump to content

Darkguy

Members
  • Content Count

    24
  • Joined

  • Last visited

Community Reputation

2 Neutral

About Darkguy

  • Rank
    Member

Converted

  • Gender
    Undisclosed

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. The container should have a web port added (default: 5800), so you should be able to get into the GUI (via VNC) in your browser at http://[SERVER IP]:[WEB PORT] (e.g.: http://192.168.0.1:5800). If you switch to advanced view in the container configuration, you can also add the URL to the Web UI in the form of http://[IP]:[PORT:5800]/ to get into the UI via the context menu of the list of Docker containers in Unraid. If you want to add the WebUI to a Reverse Proxy (to make it available through a public IP) such as the letsencrypt Docker, you can add this to your configuration: location ^~ /mediathekview/ { proxy_pass http://<server>:<port>/; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection $connection_upgrade; proxy_read_timeout 86400; }
  2. Yes, it's actually running flawlessly since the latest version of the Docker container. I've been in contact with the developer who provided it and with some of his effort, my debugging notes and the latest MediathekView update, it started working. I've been meaning to provide an iteration for Unraid, but been too busy to look into it. Here's how to get it working: Add container from https://hub.docker.com/r/conrad784/mediathekview-webinterface/ Choose a port, config and download location. Add a variable USER_ID = 99, GROUP_ID=100 and UMASK= 0000 That's it. The VNC Web GUI doesn't work too well on mobile (searching with a soft keyboard is a pain) but works perfectly on Desktop. If you are in Austria/use an Austrian VPN and want content from ORF, note the config changes required in the MediathekView forum to the ffmpeg/VLC parameters.
  3. Happy Birthday! Been using Unraid for more than 2.5 years now on a used server I upgraded a bit. Everything has been running smoothly, minor issues I had could be tracked down to faulty RAM and errors with specific Docker containers. Unraid made my life a lot easier, serving as centralized storage (upgrading a number of disks, including two parity drives earlier this year was a breeze), host for VMs and various Docker containers. It allows me to securely access media from a remote location through Kodi, have a VPN connection to my home network whenever I need it, sync files from various devices or download shows off public broadcast stations. Keep up the great work!
  4. Hi, I'm currently using an older system based around an AMD Phenom X4 on an 790GX/SB750 platform with integrated graphics in a server rack which I bought used a few years back. It still works fine and will hopefully last me a few more years, but the TDP is higher than it could be, and the DDR2 RAM it uses currently maxes out at 16 GB. I use two PCIe 2.0 8x disk controllers (one Dell PERC H310 and one Dell PERC H200, both using the SAS2008 chipset, flashed to HBA mode) to drive disks in 14 slots available in my rack at the moment. Ideally, I'd want to keep using the rack, disks (which I am currently updating to new and bigger ones), disk controllers and disk enclosures in the future. I also put in a new, modular ATX power supply, fans and cabling when I initially built my system about two years back, so I'd re-use all of that too. I'd probably want to go the route of a Ryzen 3-, Threadripper- or Xeon-based system (ideally 16+ threads, maybe ECC RAM support). No gaming, but maybe run a few more VMs (a mix of Windows and Linux) for a number of scenarios. As server-grade CPUs don't have included GPUs, I'd probably need at least one slot for a GPU and also at least two PCIe 8x slots to re-use the disk controllers. Any suggestions about a workstation/server CPU/chipset combination that offers at least three PCIe 8x slots to use the disk controllers plus some sort of GPU?
  5. Hi, I've found a container on Dockerhub which I would like to use on unRAID (an X11rdp-ready version of MediathekView, a JAVA application from Germany which allows downloading videos from various VOD services of German-language public service broadcasters). It was no problem to install it from DockerHub and adapt ports and mounts to work with my unRAID set-up and the basic functionality the application provides on any given desktop is there. The only problem is, the docker-compose.yml defines UID and UID as 1000 instead of the 99/100 combo containers built with unRAID in mind use. Files created that way, have their rights off, which probably will lead to problems down the line, once files are being transferred to their permanent homes on my folder structure.. Trying to change PUID/PGID accordingly via the 'parameters' field in the Advanced View of the container leads to an error message of a service within the container not being able to start. Is there an easy way to adapt the UID/GID withing unRAID, or would I have to fork the code and try to make the container itself work with 99/100 first and then add this forked version to unRAID? For those who want to take a look (or any German-speaking users who want to run MediathekView on their setup), the Dockerhub container is here and the according GitHub repository is here. (I also tried the more popular version by tuxflo on Dockerhub, which uses the proper UID/GID but has a number of display issues over X11rdp and still uses an outdated version of the application; the version I tried actually forked that one and improved it).
  6. Hi, I've been running unRAID for about two years now on a server built mostly from used components, including mostly older hard drives I had lying around. The storage is mostly used for media files, backups, cloud sync/storage back-ends, with a number of Docker containers and one Ubuntu server VM for various purposes,so nothing too fancy. The server is capable of handling eight 3.5" and six 2.5" drives. I have seven of the eight 3.5" and all of the 2.5" slots populated, all hooked up to two eight-port SAS2008 storage controllers and currently run a double parity (2×3 TB 3,5" drives) set-up with a cache pool consisting of two SSDs (2×525 GB, 2.5") drives and a total of 9 TB of storage (which is about 90% full right now, so another reason to replace some disks). Parity and cache drive also are on a different controller each, for (hopefully) performance reasons. One very old 3.5" 1 TB drive has recently shown a big number reallocated sectors, so this needs to get replaced ASAP. Also, one of the 2.5" disks only is capable of SATA I speed, and a few smaller (1-1.5 TB) drives are only capable of SATA II speeds. Also with the 3 TB parity drives, I am limited to putting in replacement drives <= 3 TB. In short, a number of drives will have to be replaced soon, both for storage/speed and age reasons. I generally know to swap out one drive at a time and let the array rebuild data from parity and I am pretty sure the same goes for replacing the actual parity drives. As the 3 TB parity drives are still in good shape (as far as their SMART values go at least), I'd like to re-purpose them as data drives down the line. The general idea from a cost/value point of view right now is to got with 8 TB parity drives and mostly 4 TB 3.5"/2 TB 2.5" drives as replacements over the next few months, bringing usable array capacity from 9 TB to 27-30 TB eventually. If I get a good deal on any 5-8 TB drives, I can also use those without a hassle. Here's my plan, just curious if this is alright or I am missing something: Replace faulty drive 1. Replace the dying old drive with a new 4 TB drive 2. Null 4 TB drive, add it to the array, let data re-build on it from parity (1 TB --> 4 TB drive, 11 TB array as I still only have 3 TB parity drives; will unRAID at that point tell me I can only use 3 of the 4 TB due to the size of the parity drives?) Replace parity drive 1 3. Replace 3 TB parity drive with a new 8 TB drive 4. Null 8 TB drive, set it up for parity, let parity re-build (3 TB --> 8 TB parity drive, 8/3 TB parity drives) Re-purpose old parity drive 1 5. Put former 3 TB parity drive in the one empty slot I still have, null 3 TB drive, add it to the array (<empty> --> 3 TB drive, 11 --> 14 TB array) Replace parity drive 2 6. Replace the second 3 TB parity drive with a new 8 TB drive 7. Null second 8 TB drive, set it up for parity, let parity re-build - at that point, I'll have usable 8 TB of dual-parity (3 TB --> 8 TB parity drive, 8/8 TB parity drives, 14 --> 15 TB array, as I now can use the full 4 TB of the new disk instead of just 3 TB) Re-purpose old parity drive 2 8. Replace some other 1 TB old age drive with the second former 3 TB parity drive 9. null 3 TB drive, add it to the array, let data re-build from parity (1 TB --> 3 TB drive, 15 --> 17 TB array) Replace other old/slow/small disks 9. Replace old drive with new drive, null new drive, add it to the array, let data re-build from parity (depending on what gets replaced, 17 --> 17.5-30 TB array) 10. wash, rinse, repeat Anything I am missing or not thinking of?
  7. I noticed two big issues with this container: every time I stop and restart the container (and sometimes at random after a time) all my shares will display "Database Error". I'll have to disconnect and reconnect them again, to make them sync again (for a while). I also tried deleting the local .sync directories before adding the shares back to no avail I've had docker.img use space up to 100% a few times and enlarged the file each time. As it began to fill up again today, I finally noticed what the matter was: the logfile within the container had grown to a whooping 27 GB! Any idea what may cause this? I've been using Sync for many years on a number of Windows and Linux computers as well as Android devices and virtually never had these problems on any other platform (except on Ubuntu, when I ran out of disk space on the volume that housed the Sync folders)
  8. If you used the mirror described above, here's how to get back on the main repo (git commands as described by the team in the News section of SickRage:) docker exec -it sickrage /bin/bash cd /app/sickrage git remote set-url origin https://github.com/SickRage/SickRage.git git fetch origin git checkout master git branch -u origin/master git reset --hard origin/master git pull
  9. I was wrong about the DNS, that actually did the trick. I found out what the problem was, I'm not sure if it is a bug or a feature of your container though: When VPN is disabled in the container's properties, my ISP's DNS (probably puled from unRAID) were being written into /etc/resolv.conf, so everything worked fine with the manual connection; when VPN was enabled in the container, the DNS I put there (my VPN provider's supposedly public but not working one) was being written into /etc/resolv.conf and thus led to the behavior described above - and your were spot on about noticing problems with the DNS. So the question is, should the DNS server variable in the container's properties always get written into /etc/resolv.conf, whether VPN is being enabled or not, or only, when VPN is being enabled? Same thing also is true for activ's Transmission container, btw, as I was/am actually using that one (I might switch over to Deluge, but thus far I got everything set up to work with Transmission, so I'll stick with it for the time being) Thanks again for the quick help!
  10. Sorry, that's it - nothing more happening here.
  11. Sure, there you go, thanks! Created by... ___. .__ .__ \_ |__ |__| ____ | |__ ____ ___ ___ | __ \| |/ \| | \_/ __ \\ \/ / | \_\ \ | | \ Y \ ___/ > < |___ /__|___| /___| /\___ >__/\_ \ \/ \/ \/ \/ \/ https://hub.docker.com/u/binhex/ 2017-08-07 15:13:22.633365 [info] Host is running unRAID 2017-08-07 15:13:22.683157 [info] System information Linux 683e339df547 4.9.30-unRAID #1 SMP PREEMPT Fri May 26 13:56:36 PDT 2017 x86_64 GNU/Linux 2017-08-07 15:13:22.753417 [info] PUID defined as '99' 2017-08-07 15:13:22.834103 [info] PGID defined as '100' 2017-08-07 15:13:23.279725 [info] UMASK defined as '000' 2017-08-07 15:13:23.327588 [info] Permissions already set for volume mappings 2017-08-07 15:13:23.427337 [info] VPN_ENABLED defined as 'yes' 2017-08-07 15:13:23.479148 [info] VPN_PROV defined as 'custom' 2017-08-07 15:13:23.544305 [info] VPN_REMOTE defined as 'cc.myvpnprovider.net' 2017-08-07 15:13:23.592989 [info] VPN_PORT defined as '1197' 2017-08-07 15:13:23.641179 [info] VPN_PROTOCOL defined as 'udp' 2017-08-07 15:13:23.691185 [info] LAN_NETWORK defined as '192.168.1.0/24' 2017-08-07 15:13:23.742468 [info] NAME_SERVERS defined as '<DNS-of-VPN-Provider>' 2017-08-07 15:13:23.790667 [info] VPN_USER defined as 'username' 2017-08-07 15:13:23.839399 [info] VPN_PASS defined as 'password' 2017-08-07 15:13:23.892156 [info] VPN_DEVICE_TYPE defined as 'tun' 2017-08-07 15:13:23.962749 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS) 2017-08-07 15:13:24.013515 [info] ENABLE_PRIVOXY defined as 'yes' 2017-08-07 15:13:24.056767 [info] Setting permissions on files/folders inside container... 2017-08-07 15:13:24.152373 [info] Starting Supervisor... 2017-08-07 15:13:25,585 CRIT Set uid to user 0 2017-08-07 15:13:25,585 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing 2017-08-07 15:13:25,590 INFO supervisord started with pid 7 2017-08-07 15:13:26,593 INFO spawned: 'start-script' with pid 109 2017-08-07 15:13:26,595 INFO spawned: 'deluge-script' with pid 110 2017-08-07 15:13:26,598 INFO spawned: 'deluge-web-script' with pid 111 2017-08-07 15:13:26,601 INFO spawned: 'privoxy-script' with pid 112 2017-08-07 15:13:26,602 INFO reaped unknown pid 8 2017-08-07 15:13:26,613 DEBG 'start-script' stdout output: [info] VPN is enabled, beginning configuration of VPN 2017-08-07 15:13:26,614 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-08-07 15:13:26,614 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-08-07 15:13:26,614 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-08-07 15:13:26,614 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-08-07 15:13:26,624 DEBG 'deluge-script' stdout output: [info] Deluge config file already exists, skipping copy 2017-08-07 15:13:26,625 DEBG 'deluge-script' stdout output: [info] VPN is enabled, checking VPN tunnel local ip is valid 2017-08-07 15:13:26,625 DEBG 'deluge-script' stdout output: [debug] Waiting for valid IP address from tunnel... 2017-08-07 15:13:26,635 DEBG 'privoxy-script' stdout output: [debug] Waiting for valid IP address from tunnel... 2017-08-07 15:13:26,710 DEBG 'start-script' stdout output: [debug] Environment variables defined as follows BASH=/bin/bash BASHOPTS=cmdhist:complete_fullquote:extquote:force_fignore:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath BASH_ALIASES=() BASH_ARGC=() BASH_ARGV=() BASH_CMDS=() BASH_LINENO=([0]="0") BASH_SOURCE=([0]="/root/start.sh") BASH_VERSINFO=([0]="4" [1]="4" [2]="12" [3]="1" [4]="release" [5]="x86_64-unknown-linux-gnu") BASH_VERSION='4.4.12(1)-release' DEBUG=true DIRSTACK=() ENABLE_PRIVOXY=yes EUID=0 ) HOME=/home/nobody HOSTNAME=683e339df547 HOSTTYPE=x86_64 HOST_OS=unRAID IFS=$' \t\n' LANG=en_GB.UTF-8 LAN_NETWORK=192.168.1.0/24 MACHTYPE=x86_64-unknown-linux-gnu NAME_SERVERS=<DNS-of-VPN-Provider> OPTERR=1 OPTIND=1 OSTYPE=linux-gnu PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin PGID=100 PIPESTATUS=([0]="0") PPID=7 PS4='+ ' PUID=99 PWD=/ SHELL=/bin/bash SHELLOPTS=braceexpand:hashall:interactive-comments SHLVL=1 STRICT_PORT_FORWARD=no STRONG_CERTS=no SUPERVISOR_ENABLED=1 SUPERVISOR_GROUP_NAME=start-script SUPERVISOR_PROCESS_NAME=start-script TERM=xterm TZ=Europe/Berlin UID=0 0 VPN_CONFIG=/config/openvpn/myvpnprovider_linux.ovpn VPN_DEVICE_TYPE=tun VPN_ENABLED=yes VPN_OPTIONS= VPN_PASS=password VPN_PORT=1197 VPN_PROTOCOL=udp VPN_PROV=custom VPN_REMOTE=cc.myvpnprovider.net VPN_USER=username _='[debug] Environment variables defined as follows' exit_code_chmod=0 exit_code_chown=0 [debug] Directory listing of files in /config/openvpn as follows 2017-08-07 15:13:26,755 DEBG 'start-script' stdout output: total 32 drwxrwxrwx 1 nobody users 174 Aug 7 13:58 . drwxrwxr-x 1 nobody users 274 Aug 7 14:36 .. -rwxrwxrwx 1 nobody users 6296 Aug 7 13:25 ca.crt -rwxrwxrwx 1 nobody users 18 Aug 7 13:58 credentials.conf -rwxrwxrwx 1 nobody users 2202 Aug 7 13:25 crl.pem -rwxrwxrwx 1 nobody users 1521 Aug 7 13:25 myvpnprovider.crt -rwxrwxrwx 1 nobody users 1704 Aug 7 13:25 myvpnprovider.key -rwxrwxrwx 1 nobody users 435 Aug 7 13:58 myvpnprovider_linux.ovpn -rwxrwxrwx 1 nobody users 1301 Aug 7 13:25 update-resolv-conf 2017-08-07 15:13:26,756 DEBG 'start-script' stdout output: [info] VPN config file (ovpn extension) is located at /config/openvpn/myvpnprovider_linux.ovpn 2017-08-07 15:13:26,770 DEBG 'start-script' stderr output: dos2unix: 2017-08-07 15:13:26,770 DEBG 'start-script' stderr output: converting file /config/openvpn/myvpnprovider_linux.ovpn to Unix format... 2017-08-07 15:13:26,838 DEBG 'start-script' stdout output: [debug] Contents of ovpn file /config/openvpn/myvpnprovider_linux.ovpn as follows... 2017-08-07 15:13:26,840 DEBG 'start-script' stdout output: client pull-filter ignore "route-ipv6" pull-filter ignore "ifconfig-ipv6" cipher AES-256-CBC resolv-retry infinite nobind persist-key comp-lzo verb 3 remote-cert-tls server script-security 2 t cert myvpnprovider.crt key myvpnprovider.key crl-verify crl.pem tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA:TLS-DHE-RSA-WITH-AES-128-CBC-SHA:TLS-DHE-RSA-WITH-SEED-CBC-SHA:TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA 2017-08-07 15:13:26,864 DEBG 'start-script' stdout output: [info] Default route for container is 172.17.0.1 2017-08-07 15:13:26,872 DEBG 'start-script' stdout output: [info] Adding <DNS-of-VPN-Provider> to /etc/resolv.conf 2017-08-07 15:13:26,872 DEBG 'start-script' stdout output: [debug] Show name servers defined for container 2017-08-07 15:13:26,873 DEBG 'start-script' stdout output: nameserver <DNS-of-VPN-Provider> 2017-08-07 15:13:26,873 DEBG 'start-script' stdout output: [debug] Show name resolution for VPN endpoint cc.myvpnprovider.net 2017-08-07 15:13:26,944 DEBG 'start-script' stdout output: ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 49260 ;; flags: qr tc rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; cc.myvpnprovider.net. IN A ;; ANSWER SECTION: ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 53 msec ;; SERVER: <DNS-of-VPN-Provider> ;; WHEN: Mon Aug 7 15:13:26 2017 ;; MSG SIZE rcvd: 36 ;; WARNING: The answer packet was truncated; you might want to ;; query again with TCP (-t argument), or EDNS0 (-b for buffer size) 2017-08-07 15:13:26,957 DEBG 'start-script' stdout output: [info] Adding 192.168.1.0/24 as route via docker eth0 2017-08-07 15:13:26,958 DEBG 'start-script' stdout output: [info] ip route defined as follows... -------------------- 2017-08-07 15:13:26,959 DEBG 'start-script' stdout output: default via 172.17.0.1 dev eth0 172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.11 192.168.1.0/24 via 172.17.0.1 dev eth0 -------------------- [debug] Modules currently loaded for kernel 2017-08-07 15:13:26,983 DEBG 'start-script' stdout output: Module Size Used by xt_CHECKSUM 1335 1 ipt_REJECT 1521 2 nf_reject_ipv4 2483 1 ipt_REJECT ebtable_filter 1903 0 ebtables 14552 1 ebtable_filter vhost_net 9091 0 vhost 19681 1 vhost_net macvtap 11622 1 vhost_net tun 19304 18 vhost_net iptable_mangle 1658 2 macvlan 12389 1 macvtap xt_nat 1913 26 veth 4966 0 ipt_MASQUERADE 1277 23 nf_nat_masquerade_ipv4 1865 1 ipt_MASQUERADE iptable_nat 1897 3 nf_conntrack_ipv4 5874 20 nf_nat_ipv4 4199 1 iptable_nat iptable_filter 1706 3 ip_tables 9853 3 iptable_mangle,iptable_filter,iptable_nat nf_nat 11145 3 xt_nat,nf_nat_masquerade_ipv4,nf_nat_ipv4 md_mod 36700 8 kvm_amd 2151758 0 kvm 289949 1 kvm_amd k10temp 2996 0 mpt3sas 168061 11 pata_atiixp 4691 0 i2c_piix4 9140 0 raid_class 3380 1 mpt3sas i2c_core 20390 1 i2c_piix4 atl1e 25028 0 scsi_transport_sas 21714 1 mpt3sas wmi 6548 0 asus_atk0110 7122 0 acpi_cpufreq 7054 1 2017-08-07 15:13:26,991 DEBG 'start-script' stdout output: [info] iptable_mangle support detected, adding fwmark for tables 2017-08-07 15:13:27,005 DEBG 'start-script' stdout output: [debug] Docker interface defined as eth0 2017-08-07 15:13:27,010 DEBG 'start-script' stdout output: [debug] Docker IP defined as 172.17.0.11 2017-08-07 15:13:27,020 DEBG 'start-script' stdout output: [debug] Docker netmask defined as 255.255.0.0 2017-08-07 15:13:27,040 DEBG 'start-script' stdout output: [info] Docker network defined as 172.17.0.0/16 2017-08-07 15:13:27,337 DEBG 'start-script' stdout output: [info] iptables defined as follows... -------------------- 2017-08-07 15:13:27,340 DEBG 'start-script' stdout output: -P INPUT DROP -P FORWARD ACCEPT -P OUTPUT DROP -A INPUT -i tun0 -j ACCEPT -A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT -A INPUT -i eth0 -p udp -m udp --sport 1197 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT -A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT -A INPUT -s 192.168.1.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -j ACCEPT -A INPUT -p udp -m udp --sport 53 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT -A INPUT -i lo -j ACCEPT -A OUTPUT -o tun0 -j ACCEPT -A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT -A OUTPUT -o eth0 -p udp -m udp --dport 1197 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT -A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT -A OUTPUT -s 172.17.0.0/16 -d 192.168.1.0/24 -o eth0 -p tcp -j ACCEPT -A OUTPUT -p udp -m udp --dport 53 -j ACCEPT -A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT -A OUTPUT -o lo -j ACCEPT 2017-08-07 15:13:27,342 DEBG 'start-script' stdout output: -------------------- [debug] OpenVPN command line '/usr/bin/openvpn --cd /config/openvpn --config /config/openvpn/myvpnprovider_linux.ovpn --daemon --dev tun0 --remote cc.myvpnprovider.net 1197 --proto udp --reneg-sec 0 --mute-replay-warnings --auth-nocache --keepalive 10 60 --setenv VPN_PROV custom --setenv DEBUG true --script-security 2 --up /root/openvpnup.sh --up-delay --up-restart --writepid /root/openvpn.pid --auth-user-pass credentials.conf' [info] Starting OpenVPN... 2017-08-07 15:13:27,539 DEBG 'start-script' stdout output: [info] OpenVPN started [debug] Waiting for valid IP address from tunnel...
  12. I can't get a connection established when I run the container with VPN set to "yes". If I set it to "no" and manually establish the connection via CLI in the conainter's shell, everything works fine. Any ideas? OpenVPN CLI that works: /usr/bin/openvpn --cd /config/openvpn --config /config/openvpn/myvpnprovider_linux.ovpn --dev tun0 --remote cc.myvpnprovider.com 1197 --proto udp --reneg-sec 0 --mute-replay-warnings --auth-nocache --keepalive 10 60 --setenv VPN_PROV custom --setenv DEBUG true --script-security 2 --up /root/openvpnup.sh --up-delay --up-restart --writepid /root/openvpn.pid --auth-user-pass credentials.conf Successful connection output: Mon Aug 7 14:57:35 2017 WARNING: file 'myvpnprovider.key' is group or others accessible Mon Aug 7 14:57:35 2017 WARNING: file 'credentials.conf' is group or others accessible Mon Aug 7 14:57:35 2017 OpenVPN 2.4.1 x86_64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Mar 22 2017 Mon Aug 7 14:57:35 2017 library versions: OpenSSL 1.1.0e 16 Feb 2017, LZO 2.10 Mon Aug 7 14:57:35 2017 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Mon Aug 7 14:57:36 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]203.99.107.45:1197 Mon Aug 7 14:57:36 2017 Socket Buffers: R=[212992->212992] S=[212992->212992] Mon Aug 7 14:57:36 2017 UDP link local: (not bound) Mon Aug 7 14:57:36 2017 UDP link remote: [AF_INET]203.99.107.45:1197 Mon Aug 7 14:57:36 2017 TLS: Initial packet from [AF_INET]203.99.107.45:1197, sid=afe0d213 29e40f41 Mon Aug 7 14:57:36 2017 VERIFY WARNING: depth=1, unable to get certificate CRL: C=NA, ST=None, L=None, O=myvpnprovider, CN=master.myvpnprovider.com, emailAddress=info@myvpnprovider.com Mon Aug 7 14:57:36 2017 VERIFY WARNING: depth=2, unable to get certificate CRL: C=NA, ST=None, L=None, O=myvpnprovider, CN=myvpnprovider CA, emailAddress=info@myvpnprovider.com Mon Aug 7 14:57:36 2017 VERIFY OK: depth=2, C=NA, ST=None, L=None, O=myvpnprovider, CN=myvpnprovider CA, emailAddress=info@myvpnprovider.com Mon Aug 7 14:57:36 2017 VERIFY OK: depth=1, C=NA, ST=None, L=None, O=myvpnprovider, CN=master.myvpnprovider.com, emailAddress=info@myvpnprovider.com Mon Aug 7 14:57:36 2017 VERIFY KU OK Mon Aug 7 14:57:36 2017 Validating certificate extended key usage Mon Aug 7 14:57:36 2017 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication Mon Aug 7 14:57:36 2017 VERIFY EKU OK Mon Aug 7 14:57:36 2017 VERIFY OK: depth=0, C=NA, ST=None, L=None, O=myvpnprovider, CN=cc9.myvpnprovider.com, emailAddress=info@myvpnprovider.com Mon Aug 7 14:57:36 2017 Control Channel: TLSv1.2, cipher SSLv3 DHE-RSA-AES256-SHA, 4096 bit RSA Mon Aug 7 14:57:36 2017 [cc9.myvpnprovider.com] Peer Connection Initiated with [AF_INET]203.99.107.45:1197 Mon Aug 7 14:57:38 2017 SENT CONTROL [cc9.myvpnprovider.com]: 'PUSH_REQUEST' (status=1) Mon Aug 7 14:57:38 2017 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.11.0.1,route-ipv6 0000::/2,route-ipv6 4000::/2,route-ipv6 8000::/2,route-ipv6 C000::/2,route-gateway 10.11.0.1,topology subnet,socket-flags TCP_NODELAY,ifconfig-ipv6 fdda:d0d0:cafe:1197::1007/64 fdda:d0d0:cafe:1197::,ifconfig 10.11.0.9 255.255.0.0,peer-id 5,cipher AES-256-GCM' Mon Aug 7 14:57:38 2017 Pushed option removed by filter: 'route-ipv6 0000::/2' Mon Aug 7 14:57:38 2017 Pushed option removed by filter: 'route-ipv6 4000::/2' Mon Aug 7 14:57:38 2017 Pushed option removed by filter: 'route-ipv6 8000::/2' Mon Aug 7 14:57:38 2017 Pushed option removed by filter: 'route-ipv6 C000::/2' Mon Aug 7 14:57:38 2017 Pushed option removed by filter: 'ifconfig-ipv6 fdda:d0d0:cafe:1197::1007/64 fdda:d0d0:cafe:1197::' Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: --socket-flags option modified Mon Aug 7 14:57:38 2017 NOTE: setsockopt TCP_NODELAY=1 failed Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: --ifconfig/up options modified Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: route options modified Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: route-related options modified Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: peer-id set Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: adjusting link_mtu to 1625 Mon Aug 7 14:57:38 2017 OPTIONS IMPORT: data channel crypto options modified Mon Aug 7 14:57:38 2017 Data Channel Encrypt: Cipher 'AES-256-GCM' initialized with 256 bit key Mon Aug 7 14:57:38 2017 Data Channel Decrypt: Cipher 'AES-256-GCM' initialized with 256 bit key Mon Aug 7 14:57:38 2017 ROUTE_GATEWAY 172.17.0.1/255.255.0.0 IFACE=eth0 HWADDR=02:42:ac:11:00:0b Mon Aug 7 14:57:38 2017 TUN/TAP device tun0 opened Mon Aug 7 14:57:38 2017 TUN/TAP TX queue length set to 100 Mon Aug 7 14:57:38 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0 Mon Aug 7 14:57:38 2017 /usr/bin/ip link set dev tun0 up mtu 1500 Mon Aug 7 14:57:38 2017 /usr/bin/ip addr add dev tun0 10.11.0.9/16 broadcast 10.11.255.255 Mon Aug 7 14:57:38 2017 /root/openvpnup.sh tun0 1500 1553 10.11.0.9 255.255.0.0 init Mon Aug 7 14:57:38 2017 /usr/bin/ip route add 203.99.107.45/32 via 172.17.0.1 Mon Aug 7 14:57:38 2017 /usr/bin/ip route add 0.0.0.0/1 via 10.11.0.1 Mon Aug 7 14:57:38 2017 /usr/bin/ip route add 128.0.0.0/1 via 10.11.0.1 Mon Aug 7 14:57:38 2017 Initialization Sequence Completed [debug] VPN provider custom is != pia, skipping incoming port detection [info] Successfully retrieved external IP address 203.99.107.69 OpenVPN CLI from the debug log that DOESN'T work and log output: [debug] OpenVPN command line '/usr/bin/openvpn --cd /config/openvpn --config /config/openvpn/myvpnprovider_linux.ovpn --daemon --dev tun0 --remote cc.myvpnprovider.com 1197 --proto udp --reneg-sec 0 --mute-replay-warnings --auth-nocache --keepalive 10 60 --setenv VPN_PROV custom --setenv DEBUG true --script-security 2 --up /root/openvpnup.sh --up-delay --up-restart --writepid /root/openvpn.pid --auth-user-pass credentials.conf' [info] Starting OpenVPN... 2017-08-07 15:13:27,539 DEBG 'start-script' stdout output: [info] OpenVPN started [debug] Waiting for valid IP address from tunnel... Contents of myvpnprovider_linux.ovpn (I added the filters about ipv6, since unRAID doesn't support IPv6 yet, otherwise there was an error): client pull-filter ignore "route-ipv6" pull-filter ignore "ifconfig-ipv6" cipher AES-256-CBC resolv-retry infinite nobind persist-key comp-lzo verb 3 remote-cert-tls server script-security 2 ca ca.crt cert myvpnprovider.crt key myvpnprovider.key crl-verify crl.pem tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA:TLS-DHE-RSA-WITH-AES-128-CBC-SHA:TLS-DHE-RSA-WITH-SEED-CBC-SHA:TLS-DHE-RSA-WITH-CAMELLIA-128-CBC-SHA Variables for the container: 2017-08-07 15:13:22.753417 [info] PUID defined as '99' 2017-08-07 15:13:22.834103 [info] PGID defined as '100' 2017-08-07 15:13:23.279725 [info] UMASK defined as '000' 2017-08-07 15:13:23.427337 [info] VPN_ENABLED defined as 'yes' 2017-08-07 15:13:23.479148 [info] VPN_PROV defined as 'custom' 2017-08-07 15:13:23.544305 [info] VPN_REMOTE defined as 'cc.myvpnprovider.com' 2017-08-07 15:13:23.592989 [info] VPN_PORT defined as '1197' 2017-08-07 15:13:23.641179 [info] VPN_PROTOCOL defined as 'udp' 2017-08-07 15:13:23.691185 [info] LAN_NETWORK defined as '192.168.1.0/24' 2017-08-07 15:13:23.742468 [info] NAME_SERVERS defined as '<The VPN provider's DNS server>' 2017-08-07 15:13:23.790667 [info] VPN_USER defined as 'username' 2017-08-07 15:13:23.839399 [info] VPN_PASS defined as 'password' 2017-08-07 15:13:23.892156 [info] VPN_DEVICE_TYPE defined as 'tun' 2017-08-07 15:13:23.962749 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS) 2017-08-07 15:13:24.013515 [info] ENABLE_PRIVOXY defined as 'yes' Any ideas why everything works when manually establishing the connection but not when the start script uses virtually the same syntax?
  13. I noticed, that my blocklist isn't being used anymore. Log says: [2017-07-31 16:41:38.773] Couldn't read "/config/blocklists/blocklist.bin": No such device (blocklist.c:89) The file/folder exists (in /mnt/user/appdata/transmission, is accessible from within the container (I checked it from the container's shell) and an update also updates it and the log states how many entries the file has. Reinstalling the container didn't solve the issue (I kept my settings but deleted the blocklist folder before to make sure it gets created anew). Any ideas?
  14. Two short questions: Any idea how to set up access the Web GUI (on port 943) through a reverse proxy using nginx (in the letsencrypt docker)? Also, any idea on how to set up OpenVPN to use a dockerized pi-hole as the DNS (Docker by diginc; running on a host in its own Docker network as described below) - that would be neat to achieve ad-free surfing on the go )
  15. I've installed this yesterday (using the method of giving the container its own IP adress) and also use it as the DHCP server for my network (as my router would set its own IP as DNS to my clients and ignore the upstream to PiHole in the local network). So far so good and thanks for the good work! Now, on to my actual question: can this be used with the OpenVPN container and if so, how should this be configured? Just setting the (192.168.x.x) IP adress as the DNS server in OpenVPN didn't work. Other tutorials (where both PiHole and OpnVPN run on the same machine) mention the address of tun0?