macester Posted June 14, 2015 Share Posted June 14, 2015 (edited) Mace docker repo Been back for awhile gonna try to get the time to update it all. EAP Controller [Stable] 2018.06.20 - First release. qBittorrent [Stable] 2015.12.22 - First release. 2016.01.20 - Update to qbitTorrent 3.3.2 2016.01.21 - Update to qbitTorrent 3.3.3 DDclient [Stable] 2015.12.05 - First release. Darkstat [Stable] 2015.08.12 - Updated to "phusion/baseimage:0.9.17" - Updated to Darkstat 3.0.719 Cloudflare-ddns [Stable] 2015.08.12 - Updated to "phusion/baseimage:0.9.17" Openvpn-as [Stable] 2015.07.01 - Complete rewrite - Last code diden´t survive upgrades of openvpn and sometimes got corrupted on docker rebuilds. New code to better fit unRAID permissions and Phusion template. (Need to set a new config directory/ or clear old one- if upgrading). 2015.08.12 - Updated to "phusion/baseimage:0.9.17" - Updated to openvpn-as 2.0.20. 2015.08.15 - Admin username changed, "admin" and password "openvpn". (openvpn user gets auto removed) - Default tcp port changed from 443 to 9443. - All username/password variables removed, now uses internal database. - "INTERFACE" variable added, fixes bond0 issues. - Openvpn is now running as nobody:users. 2015.10.07 - Fix error that "/mnt/user/(appdata) coulden´t be used. 2015.10.17 - Openvpn-as, updated to 2.0.21 2015.11.12 -Add variable for pipework, "PIPEWORK". (dont use INTERFACE variable,) - "PIPEWORK=yes" will set container interface to eth1 and change port 9443/tcp to 443/tcp it will also wait with starting openvpn until "pipework" container is up. - http://lime-technology.com/forum/index.php?topic=43970.0 - https://hub.docker.com/r/dreamcat4/pipework/ 2015.12.16 Upgrade Phusion base-image. 2015.12.19 *Revert to previous Phusion base-image.(New image is bugged) 2015.12.24 Phusion base-image.(Upgrade sys-log) Add apt-get upgrade for security updates should have been enabled along time ago 2016.01.06 Update to openvpn-as openvpn-as-2.0.24 For EAP controller docker "Config" directory needs to be mapped to a direct path, "/mnt/config/appdata/EAP"", "/mnt/disk1/appdata/EAP"". The reason for this is that mongodb cant start with the fuse "shfs" unraid uses, Havent looked into it super much so this might change or rather hopefully will(eap is calling the start of mongodb from its java script so abit tricky). For a custom cert(letsencrypt etc...), stop the container and put the cert in "/config/cert" it needs to be named "mydomain.p12" and have the password "tplink"(or dont set a password). The password it hardcoded in the controller(mailed them about it but no answer). A simple LE export would look like this: (openssl pkcs12 -export -inkey /source/privkey.pem -in /source/cert.pem -certfile /source/chain.pem -name eap -out /mnt/cache/appdata/eap-controller/cert/mydomain.p12 -password pass:tplink) For openvpn docker Issues 'Internal Server Error' with this "CPage error in CLogin/locateChild" Your docker image dosent have sufficent free space, increase the size in docker settings. (atleast 2GB is needed) For a fully working vpn server that can reach resources on your home LAN it´s pretty simple. Configuration section: Server Network Settings (tab) Hostname or IP Address: (external ip or dnas name ex, myunraid.dyndns.org). VPN Settings (tab) Routing - "Specify the private subnets to which all clients should be given access": (add your home LAN ex, 192.168.1.0/24 bellow the line 172.17.0.0/16) DNS Settings - Have clients use these DNS servers: (primary dns 184.108.40.206 secondary dns 220.127.116.11) User Management section: User Permissions (tab) Add vpn users with passwords (only two users can be connected at the same time for the free license) ------------------------------------------------------------------------------------------------------------ Router configuration Check your Router/Gateway manual and forward port tcp/943 tcp/9443(tcp/443 if pipework is enabled) and udp/1194 Notes On your client surf to https://myunraid.dyndns.org:943 and login with the vpnuser details. (port 9443 can also be used as webGui, 443 if pipework is enabled) A side note is that in the .ovpn file for your client you might want to remove the line that says myunraid.dyndns.org:9443 and just keep the lines with myunraid.dyndns.org:1194 for a big speed improvment. (so it uses udp instead of tcp as default) Or disable tcp/9443 connections in the webui (no need to forward port tcp/9443 in your router) Edited June 21, 2018 by macester Quote Link to comment
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.