[Support] binhex - DelugeVPN


Recommended Posts

Hello, I've a fresh install of unraid 6.10.3 and I tried to install the docker delugeVPN without success. No idea what I'm doing wrong. Can someone help me please ?

Here are the docker logs:

 

Quote

Created by...
___.   .__       .__
\_ |__ |__| ____ |  |__   ____ ___  ___
 | __ \|  |/    \|  |  \_/ __ \\  \/  /
 | \_\ \  |   |  \   Y  \  ___/ >    <
 |___  /__|___|  /___|  /\___  >__/\_ \
     \/        \/     \/     \/      \/
  https://hub.docker.com/u/binhex/

2022-09-17 09:16:35.982262 [info] Host is running unRAID
2022-09-17 09:16:36.001821 [info] System information Linux c8c0a78cf66e 5.15.46-Unraid #1 SMP Fri Jun 10 11:08:41 PDT 2022 x86_64 GNU/Linux
2022-09-17 09:16:36.039165 [info] OS_ARCH defined as 'x86-64'
2022-09-17 09:16:36.062375 [info] PUID defined as '1003'
2022-09-17 09:16:36.174993 [info] PGID defined as '100'
2022-09-17 09:16:36.290253 [info] UMASK defined as '000'
2022-09-17 09:16:36.303503 [info] Setting permissions recursively on '/config'...
2022-09-17 09:16:36.381381 [info] Deleting files in /tmp (non recursive)...
2022-09-17 09:16:36.425186 [info] VPN_ENABLED defined as 'yes'
2022-09-17 09:16:36.438688 [info] VPN_CLIENT defined as 'openvpn'
2022-09-17 09:16:36.451863 [info] VPN_PROV defined as 'pia'
2022-09-17 09:16:36.870667 [crit] No OpenVPN config file located in /config/openvpn/ (ovpn extension), please download from your VPN provider and then restart this container.
2022-09-17 09:16:36.882845 [info] Performing directory listing for '/config/openvpn/' before exiting...
total 0
drwxrwxr-x 1 nobody users  0 Sep 17 09:16 .
drwxrwxr-x 1 nobody users 62 Sep 17 09:16 ..
Created by...
___.   .__       .__
\_ |__ |__| ____ |  |__   ____ ___  ___
 | __ \|  |/    \|  |  \_/ __ \\  \/  /
 | \_\ \  |   |  \   Y  \  ___/ >    <
 |___  /__|___|  /___|  /\___  >__/\_ \
     \/        \/     \/     \/      \/
  https://hub.docker.com/u/binhex/

2022-09-17 09:17:33.783213 [info] Host is running unRAID
2022-09-17 09:17:33.795285 [info] System information Linux c8c0a78cf66e 5.15.46-Unraid #1 SMP Fri Jun 10 11:08:41 PDT 2022 x86_64 GNU/Linux
2022-09-17 09:17:33.809736 [info] OS_ARCH defined as 'x86-64'
2022-09-17 09:17:33.824016 [info] PUID defined as '1003'
2022-09-17 09:17:33.838743 [info] PGID defined as '100'
2022-09-17 09:17:33.885302 [info] UMASK defined as '000'
2022-09-17 09:17:33.898397 [info] Permissions already set for '/config'
2022-09-17 09:17:33.912031 [info] Deleting files in /tmp (non recursive)...
2022-09-17 09:17:33.928099 [info] VPN_ENABLED defined as 'yes'
2022-09-17 09:17:33.941656 [info] VPN_CLIENT defined as 'openvpn'
2022-09-17 09:17:33.954909 [info] VPN_PROV defined as 'pia'
2022-09-17 09:17:34.190076 [info] OpenVPN config file (ovpn extension) is located at /config/openvpn/switzerland.ovpn
2022-09-17 09:17:34.231234 [info] VPN remote server(s) defined as 'swiss.privacy.network,'
2022-09-17 09:17:34.243082 [info] VPN remote port(s) defined as '1198,'
2022-09-17 09:17:34.254545 [info] VPN remote protcol(s) defined as 'udp,'
2022-09-17 09:17:34.268196 [info] VPN_DEVICE_TYPE defined as 'tun0'
2022-09-17 09:17:34.281531 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS)
2022-09-17 09:17:34.294828 [info] LAN_NETWORK defined as '192.168.20.0/24'
2022-09-17 09:17:34.308099 [info] NAME_SERVERS defined as '84.200.69.80,37.235.1.174,1.1.1.1,37.235.1.177,84.200.70.40,1.0.0.1'
2022-09-17 09:17:34.321378 [info] VPN_USER defined as 'xxxx'
2022-09-17 09:17:34.335864 [info] VPN_PASS defined as 'xxxx'
2022-09-17 09:17:34.351087 [info] STRICT_PORT_FORWARD defined as 'yes'
2022-09-17 09:17:34.365183 [info] ENABLE_PRIVOXY defined as 'no'
2022-09-17 09:17:34.380327 [info] VPN_INPUT_PORTS not defined (via -e VPN_INPUT_PORTS), skipping allow for custom incoming ports
2022-09-17 09:17:34.393977 [info] VPN_OUTPUT_PORTS not defined (via -e VPN_OUTPUT_PORTS), skipping allow for custom outgoing ports
2022-09-17 09:17:34.407500 [info] DELUGE_DAEMON_LOG_LEVEL defined as 'info'
2022-09-17 09:17:34.420997 [info] DELUGE_WEB_LOG_LEVEL defined as 'info'
2022-09-17 09:17:34.435978 [info] Starting Supervisor...
2022-09-17 09:17:35,723 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing
2022-09-17 09:17:35,723 INFO Set uid to user 0 succeeded
2022-09-17 09:17:35,725 INFO supervisord started with pid 7
2022-09-17 09:17:36,727 INFO spawned: 'shutdown-script' with pid 184
2022-09-17 09:17:36,727 INFO spawned: 'start-script' with pid 185
2022-09-17 09:17:36,728 INFO spawned: 'watchdog-script' with pid 186
2022-09-17 09:17:36,728 INFO reaped unknown pid 8 (exit status 0)
2022-09-17 09:17:36,742 DEBG 'watchdog-script' stdout output:
[info] Deluge-web config file doesn't exist, copying default...

2022-09-17 09:17:36,742 INFO success: shutdown-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-09-17 09:17:36,742 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-09-17 09:17:36,743 INFO success: watchdog-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-09-17 09:17:36,752 DEBG 'start-script' stdout output:
[info] VPN is enabled, beginning configuration of VPN

2022-09-17 09:17:36,759 DEBG 'start-script' stdout output:
[warn] Password contains characters which could cause authentication issues, please consider changing this if possible

2022-09-17 09:17:36,762 DEBG 'watchdog-script' stdout output:
[info] Deluge config file doesn't exist, copying default...

2022-09-17 09:17:36,783 DEBG 'start-script' stdout output:
[info] Adding 84.200.69.80 to /etc/resolv.conf

2022-09-17 09:17:36,785 DEBG 'start-script' stdout output:
[info] Adding 37.235.1.174 to /etc/resolv.conf

2022-09-17 09:17:36,787 DEBG 'start-script' stdout output:
[info] Adding 1.1.1.1 to /etc/resolv.conf

2022-09-17 09:17:36,788 DEBG 'start-script' stdout output:
[info] Adding 37.235.1.177 to /etc/resolv.conf

2022-09-17 09:17:36,790 DEBG 'start-script' stdout output:
[info] Adding 84.200.70.40 to /etc/resolv.conf

2022-09-17 09:17:36,791 DEBG 'start-script' stdout output:
[info] Adding 1.0.0.1 to /etc/resolv.conf

2022-09-17 09:17:36,950 DEBG 'start-script' stdout output:
[info] Default route for container is 172.17.0.1

2022-09-17 09:17:36,960 DEBG 'start-script' stdout output:
[info] Docker network defined as    172.17.0.0/16

2022-09-17 09:17:36,962 DEBG 'start-script' stdout output:
[info] Adding 192.168.20.0/24 as route via docker eth0

2022-09-17 09:17:36,962 DEBG 'start-script' stdout output:
[info] ip route defined as follows...
--------------------

2022-09-17 09:17:36,963 DEBG 'start-script' stdout output:
default via 172.17.0.1 dev eth0 
172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.4 
192.168.20.0/24 via 172.17.0.1 dev eth0 
local 127.0.0.0/8 dev lo table local proto kernel scope host src 127.0.0.1 
local 127.0.0.1 dev lo table local proto kernel scope host src 127.0.0.1 
broadcast 127.255.255.255 dev lo table local proto kernel scope link src 127.0.0.1 
local 172.17.0.4 dev eth0 table local proto kernel scope host src 172.17.0.4 
broadcast 172.17.255.255 dev eth0 table local proto kernel scope link src 172.17.0.4 

2022-09-17 09:17:36,963 DEBG 'start-script' stdout output:
--------------------

2022-09-17 09:17:36,965 DEBG 'start-script' stdout output:
iptable_mangle         16384  1
ip_tables              28672  3 iptable_filter,iptable_nat,iptable_mangle
x_tables               45056  16 ip6table_filter,xt_conntrack,iptable_filter,ip6table_nat,xt_tcpudp,xt_addrtype,xt_CHECKSUM,xt_nat,ip6_tables,ipt_REJECT,ip_tables,iptable_nat,ip6table_mangle,xt_MASQUERADE,iptable_mangle,xt_mark

2022-09-17 09:17:36,965 DEBG 'start-script' stdout output:
[info] iptable_mangle support detected, adding fwmark for tables

2022-09-17 09:17:37,014 DEBG 'start-script' stdout output:
[info] iptables defined as follows...
--------------------

2022-09-17 09:17:37,014 DEBG 'start-script' stdout output:
-P INPUT DROP
-P FORWARD DROP
-P OUTPUT DROP
-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A INPUT -s 169.150.197.135/32 -i eth0 -j ACCEPT
-A INPUT -s 212.102.36.10/32 -i eth0 -j ACCEPT
-A INPUT -s 212.102.36.12/32 -i eth0 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 8112 -j ACCEPT
-A INPUT -s 192.168.20.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -i tun0 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A OUTPUT -d 169.150.197.135/32 -o eth0 -j ACCEPT
-A OUTPUT -d 212.102.36.10/32 -o eth0 -j ACCEPT
-A OUTPUT -d 212.102.36.12/32 -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 8112 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.20.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o tun0 -j ACCEPT

2022-09-17 09:17:37,015 DEBG 'start-script' stdout output:
--------------------

2022-09-17 09:17:37,015 DEBG 'start-script' stdout output:
[info] Starting OpenVPN (non daemonised)...

2022-09-17 09:17:37,147 DEBG 'start-script' stdout output:
2022-09-17 09:17:37 DEPRECATED OPTION: --cipher set to 'aes-128-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-128-cbc' to --data-ciphers or change --cipher 'aes-128-cbc' to --data-ciphers-fallback 'aes-128-cbc' to silence this warning.

2022-09-17 09:17:37,147 DEBG 'start-script' stdout output:
2022-09-17 09:17:37 WARNING: file 'credentials.conf' is group or others accessible
2022-09-17 09:17:37 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-09-17 09:17:37 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10

2022-09-17 09:17:37,147 DEBG 'start-script' stdout output:
2022-09-17 09:17:37 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2022-09-17 09:17:37,147 DEBG 'start-script' stdout output:
2022-09-17 09:17:37 CRL: loaded 1 CRLs from file -----BEGIN X509 CRL-----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-----END X509 CRL-----


2022-09-17 09:17:37,148 DEBG 'start-script' stdout output:
2022-09-17 09:17:37 TCP/UDP: Preserving recently used remote address: [AF_INET]169.150.197.135:1198
2022-09-17 09:17:37 UDP link local: (not bound)
2022-09-17 09:17:37 UDP link remote: [AF_INET]169.150.197.135:1198

 

Edited by N47H4N
Link to comment
On 9/13/2022 at 1:42 AM, Jorgen said:

 

Don't port-forward on your router, it has no effect on the VPN tunnel, it just adds security risks.

 

The logs show a successful start, so the VPN tunnel should be up.

 

The symptoms you describe definitely sounds like a mismatch between the LAN_NETWORK range on the container (192.168.10.0/24) and the computer you're accessing it from. What's the IP of your PC and the unraid server?


As I said, the port forward was temporary to see if it was an internal issue or similar.  

Server IP is 192.168.10.15.  Phone, laptop, etc are all 192.168.10.xxx.  Laptop is .10.100.  

I think it's something PIA/VPN related.  The one constant that I've found throughout everything is if Key 1 (VPN Enabled) is enabled, the webgui fails to load (and I've found reference to that from other users).  If Key 1 is disabled, the webgui loads fine.

Here is my docker config;

docker run
  -d
  --name='binhex-delugevpn'
  --net='bridge'
  --privileged=true
  -e TZ="America/New_York"
  -e HOST_OS="Unraid"
  -e HOST_HOSTNAME="<snip>"
  -e HOST_CONTAINERNAME="binhex-delugevpn"
  -e 'VPN_ENABLED'='yes'
  -e 'VPN_USER'='<snip>'
  -e 'VPN_PASS'='<snip>'
  -e 'VPN_PROV'='pia'
  -e 'VPN_CLIENT'='openvpn'
  -e 'VPN_OPTIONS'=''
  -e 'STRICT_PORT_FORWARD'='no'
  -e 'ENABLE_PRIVOXY'='yes'
  -e 'LAN_NETWORK'='192.168.10.0/24'
  -e 'NAME_SERVERS'='84.200.69.80,37.235.1.174,1.1.1.1,37.235.1.177,84.200.70.40,1.0.0.1'
  -e 'DELUGE_DAEMON_LOG_LEVEL'='info'
  -e 'DELUGE_WEB_LOG_LEVEL'='info'
  -e 'VPN_INPUT_PORTS'=''
  -e 'VPN_OUTPUT_PORTS'=''
  -e 'DEBUG'='false'
  -e 'UMASK'='000'
  -e 'PUID'='99'
  -e 'PGID'='100'
  -l net.unraid.docker.managed=dockerman
  -l net.unraid.docker.webui='http://[IP]:[PORT:8112]/'
  -l net.unraid.docker.icon='https://raw.githubusercontent.com/binhex/docker-templates/master/binhex/images/deluge-icon.png'
  -p '8112:8112/tcp'
  -p '58846:58846/tcp'
  -p '58946:58946/tcp'
  -p '58946:58946/udp'
  -p '8118:8118/tcp'
  -v '/mnt/user/downloads/':'/data':'rw'
  -v '/mnt/user/seeding/':'/seeding':'rw'
  -v '/mnt/user/appdata/binhex-delugevpn':'/config':'rw'
  --sysctl="net.ipv4.conf.all.src_valid_mark=1" 'binhex/arch-delugevpn'
<snip>



And another log.  There is a section where it shows the listening IP as 0.0.0.0 and shows that Deluge and the webui is not running.  I just don't know enough about it to know why it's not working.

 

2022-09-14 22:18:25 net_iface_up: set tun0 up

2022-09-14 22:18:25,076 DEBG 'start-script' stdout output:
2022-09-14 22:18:25 net_addr_v4_add: 10.38.112.227/24 dev tun0
2022-09-14 22:18:25 /root/openvpnup.sh tun0 1500 1553 10.38.112.227 255.255.255.0 init

2022-09-14 22:18:25,077 DEBG 'start-script' stdout output:
2022-09-14 22:18:25 Initialization Sequence Completed

2022-09-14 22:18:42,210 DEBG 'start-script' stdout output:
[info] Attempting to get external IP using 'http://checkip.amazonaws.com'...

2022-09-14 22:18:47,642 DEBG 'start-script' stdout output:
[info] Successfully retrieved external IP address 181.214.206.85

2022-09-14 22:18:47,644 DEBG 'start-script' stdout output:
[info] Port forwarding is not enabled

2022-09-14 22:18:48,264 DEBG 'watchdog-script' stdout output:
[info] Deluge listening interface IP 0.0.0.0 and VPN provider IP 10.38.112.227 different, marking for reconfigure

2022-09-14 22:18:48,268 DEBG 'watchdog-script' stdout output:
[info] Deluge not running

2022-09-14 22:18:48,270 DEBG 'watchdog-script' stdout output:
[info] Deluge Web UI not running

2022-09-14 22:18:48,271 DEBG 'watchdog-script' stdout output:
[info] Privoxy not running

2022-09-14 22:18:48,272 DEBG 'watchdog-script' stdout output:
[info] Attempting to start Deluge...
[info] Removing deluge pid file (if it exists)...

2022-09-14 22:18:48,596 DEBG 'watchdog-script' stdout output:
[info] Deluge key 'listen_interface' currently has an undefined value
[info] Deluge key 'listen_interface' will have a new value '10.38.112.227'
[info] Writing changes to Deluge config file '/config/core.conf'...

2022-09-14 22:18:48,785 DEBG 'watchdog-script' stdout output:
[info] Deluge key 'outgoing_interface' currently has an undefined value
[info] Deluge key 'outgoing_interface' will have a new value 'tun0'
[info] Writing changes to Deluge config file '/config/core.conf'...

2022-09-14 22:18:48,913 DEBG 'watchdog-script' stdout output:
[info] Deluge key 'default_daemon' currently has a value of '42dd2611abd94ceb9de451ee26f8965f'
[info] Deluge key 'default_daemon' will have a new value '42dd2611abd94ceb9de451ee26f8965f'
[info] Writing changes to Deluge config file '/config/web.conf'...

2022-09-14 22:18:49,115 DEBG 'watchdog-script' stdout output:
[info] Deluge process started
[info] Waiting for Deluge process to start listening on port 58846...

2022-09-14 22:18:49,323 DEBG 'watchdog-script' stdout output:
[info] Deluge process listening on port 58846

2022-09-14 22:18:50,432 DEBG 'watchdog-script' stdout output:
Setting "random_port" to: False
Configuration value successfully updated.

2022-09-14 22:18:50,433 DEBG 'watchdog-script' stderr output:
<Deferred at 0x14e7ecdb7040 current result: None>

2022-09-14 22:18:51,436 DEBG 'watchdog-script' stdout output:
Setting "listen_ports" to: (6890, 6890)
Configuration value successfully updated.

2022-09-14 22:18:51,437 DEBG 'watchdog-script' stderr output:
<Deferred at 0x14e13cb7efb0 current result: None>

2022-09-14 22:18:52,534 DEBG 'watchdog-script' stderr output:
<Deferred at 0x14b51864e680 current result: None>

2022-09-14 22:18:52,568 DEBG 'watchdog-script' stdout output:
[info] No torrents with state 'Error' found

2022-09-14 22:18:52,568 DEBG 'watchdog-script' stdout output:
[info] Starting Deluge Web UI...
[info] Deluge Web UI started

2022-09-14 22:18:52,569 DEBG 'watchdog-script' stdout output:
[info] Attempting to start Privoxy...

2022-09-14 22:18:53,573 DEBG 'watchdog-script' stdout output:
[info] Privoxy process started
[info] Waiting for Privoxy process to start listening on port 8118...

2022-09-14 22:18:53,576 DEBG 'watchdog-script' stdout output:
[info] Privoxy process listening on port 8118

 

Link to comment
7 hours ago, Brandon_K said:

 

  -e 'LAN_NETWORK'='192.168.10.0/24'

  --sysctl="net.ipv4.conf.all.src_valid_mark=1"

 

 

 --sysctl="net.ipv4.conf.all.src_valid_mark=1"   is only needed for Wireguard. Since you're using OVPN change this back to the default:

 

--cap-add=NET_ADMIN 

 

 

Can you double check the LAN_NETWORK value, specifically the mask, using Q4 here: https://github.com/binhex/documentation/blob/master/docker/faq/vpn.md

I actually think it's correct, but you might be using another mask on your network.

While you're on that page, check if any other FAQs match your case, if you haven't done that already.

 

 

Your log still looks like a successful start of the VPN tunnel and the applications, but it's hard to tell as it's not a complete log. If the changes above doesn't fix the problem, can you upload complete debug logs please? https://github.com/binhex/documentation/blob/master/docker/faq/help.md

 

Remember to redact any user name and passwords from the logs before uploading here, they could be in multiple places.

 

 

Edited by Jorgen
Link to comment
On 9/13/2022 at 5:15 PM, N47H4N said:

Hello, I've a fresh install of unraid 6.10.3 and I tried to install the docker delugeVPN without success. No idea what I'm doing wrong. Can someone help me please ?

Here are the docker logs:

 

 

Hi everyone, where can I found more logs for troubleshoot my problem. Does someone have an idea what my problem is ?

thx all

Link to comment

@Jorgen  I went into the container console and modified the file "usr/lib/python3.10/site-packages/deluge/log.py" and changed: 

 

DEFAULT_LOGGING_FORMAT % MAX_LOGGER_NAME_LENGTH, datefmt='%H:%M:%S'

TO:

DEFAULT_LOGGING_FORMAT % MAX_LOGGER_NAME_LENGTH, datefmt='%Y-%d-%m - %H:%M:%S'



Would having Binhex modify the container be the only way to use the --logrotate option?

Thanks!

Edited by TurboStreetCar
Link to comment
@Jorgen  I went into the container console and modified the file "usr/lib/python3.10/site-packages/deluge/log.py" and changed: 
 
DEFAULT_LOGGING_FORMAT % MAX_LOGGER_NAME_LENGTH, datefmt='%H:%M:%S'TO:DEFAULT_LOGGING_FORMAT % MAX_LOGGER_NAME_LENGTH, datefmt='%Y-%d-%m - %H:%M:%S'



Would having Binhex modify the container be the only way to use the --logrotate option?

Thanks!


Oh ok, that file is in the cocker image and needs to be patched with your changes every time you update the container.
I was thinking of scripting the change via “extra parameters” but after some research it appears that is not available. See this thread for background and potential workaround using user scripts.

https://forums.unraid.net/topic/58700-passing-commandsargs-to-docker-containers-request/?do=findComment&comment=670979

Deluge daemon needs to be started with the —logrotate option for it to work. And it’s started by one of binhex’s scripts that is part of the image. So you’re in the same situation as you log modifications. Either binhex Updates the image to support logrotate, or you need to patch that script yourself

For persistent logs, I think logrotate would be the better option, but there are other ways. Here are some random thoughts, I’m no particular order of suitability or ease to implement… :)

- user script parses the logs on a schedule and writes the required data into a persistent file outside the container
- user script simply copies the whole log file into persistent storage (you’ll end up with lots of duplication though)
- write your own deluge plug-in to export the data to a persistent file
- identify another trigger to script your own log file, e.g. are the torrents added by radarr that might have better script support?


Sent from my iPhone using Tapatalk
  • Like 1
Link to comment

@Jorgen **UPDATE** So i wasn't too happy with not being able to do this easily, so i continued to bang my head against the wall relentlessly, and i found a good workaround that i *THINK* will persist an update, and will definitely persist restarts of the container. 

There is a plugin, Execute, that can execute a script upon the add, completion, and removal, of a torrent. 

Enabled the plugin, and wrote three similar scripts for each condition, and each script writes an entry to a file stored in my data folder outside of the container. 

Script: 

#!/bin/bash
torrentid=$1
torrentname=$2
torrentpath=$3

timestamp=$(date +"%m-%d-%Y-%T")

echo -e "$timestamp" " Torrent Added" "\t" " : " "$torrentname"  >> /data/deluge_scripts/torrentlog.log

 

The scripts and logfile are stored outside of the container, so no changes to the container would effect them. The only difference between the scripts is the substitution of "Added" for "Completed" and "Removed".

Output is as follows: 
 

09-22-2022-15:36:03  Torrent Added        :  debian-edu-11.5.0-amd64-netinst.iso
09-22-2022-15:41:08  Torrent Removed      :  debian-edu-11.5.0-amd64-netinst.iso
09-22-2022-15:43:14  Torrent Added        :  debian-edu-11.5.0-amd64-netinst.iso
09-22-2022-15:44:14  Torrent Finished     :  debian-edu-11.5.0-amd64-netinst.iso
09-22-2022-15:46:52  Torrent Removed      :  debian-edu-11.5.0-amd64-netinst.iso



Seems like a good workaround, and IF it does happen to get lost in an update, its easy enough to re-enable the plugin, and insert the path to the existing scripts.

If you want to implement this, you have to set permissions of the script files to be executable using:
 

chmod +x scriptname.sh

 

and the log file needs to be created and permission given to write to file using: 

chmod +w torrentlog.log

 

There may be an easier way, as I'm a noob to Linux code, but this worked given my privative skill level.

Link to comment

The last couple days privoxy is timing out, any reason why that might happen? The tunnel is up and everything is working except medusa and radarr is not finding anything because of privoxy timing out. This is the error I get in Medusa as an example. 

 HTTPConnectionPool(host='192.168.2.218', port=8118): Read timed out. (read timeout=30)

If I disable proxy in medusa and radarr they are able to reach the indexer and grab torrents and send them to deluge just fine. There is no error in the supervisord log either that I can see. 

 

 

Link to comment

This is just a huge THANK YOU post to @binhex - I have been using Deluge in a VM with my own OpenVPN config for PIA.  It was a PITA, always breaking down, occasionally leaking my IP causing DMCA notices from my ISP, just all around crap setup.  I have docker containers for basically everything else, but recently stumbled onto this project - it's EXACTLY what I've been needing!!!

 

I fumbled a bit with the setup, but your FAQ's and guides are ridiculously thorough - pretty much every issue / question (and a lot more) I had were found in the FAQ's and documentation.  Hats off to you my friend, I will send you some beer money today!

  • Like 1
Link to comment
This is just a huge THANK YOU post to @binhex - I have been using Deluge in a VM with my own OpenVPN config for PIA.  It was a PITA, always breaking down, occasionally leaking my IP causing DMCA notices from my ISP, just all around crap setup.  I have docker containers for basically everything else, but recently stumbled onto this project - it's EXACTLY what I've been needing!!!
 
I fumbled a bit with the setup, but your FAQ's and guides are ridiculously thorough - pretty much every issue / question (and a lot more) I had were found in the FAQ's and documentation.  Hats off to you my friend, I will send you some beer money today!
Thanks for the kind words and the beer money, much appreciated, and thanks for reading the FAQ, a lot of people don't!

Sent from my 22021211RG using Tapatalk

Link to comment

Hello,

 

I am imbareced to ask another question here.
I a still having issues with my NAS, and to solve this i had to put my own router behind the modem, with the latter one in bridge mode. While doing so the my Lan network ip's have all changed from 192.168.178.XXX to 192.168.1.XXX

So i changed the LAN network line to: LAN_NETWORK=192.168.1.0/24
(i had this wrong the lat couple of times i posted an issue i couldn't solve, but i believe it to be correct now)

 

never the less the container does not seem to start (still using portainer (2.15.1) instead of unraid)

 

as far as i know nothing else changed.
 

the following keeps repeating

 

does anyone have an idea about what the issue could be?
it seems to me like an authentification issue, just don't understand why.

 

Kindest greetz

 

Matthieu
 

2022-09-25 14:54:45,626 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 SENT CONTROL [be-anr-v023.prod.surfshark.com]: 'PUSH_REQUEST' (status=1)

2022-09-25 14:54:45,662 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 AUTH: Received control message: AUTH_FAILED

2022-09-25 14:54:45,662 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 SIGTERM[soft,auth-failure] received, process exiting

2022-09-25 14:54:45,665 DEBG 'start-script' stdout output:
[info] Starting OpenVPN (non daemonised)...

2022-09-25 14:54:45,677 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.

2022-09-25 14:54:45,678 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 WARNING: file 'credentials.conf' is group or others accessible
2022-09-25 14:54:45 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-09-25 14:54:45 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10
2022-09-25 14:54:45 WARNING: --ping should normally be used with --ping-restart or --ping-exit
2022-09-25 14:54:45 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2022-09-25 14:54:45 NOTE: --fast-io is disabled since we are not using UDP

2022-09-25 14:54:45,679 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-09-25 14:54:45 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication

2022-09-25 14:54:45,680 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 TCP/UDP: Preserving recently used remote address: [AF_INET]188.95.54.18:1443
2022-09-25 14:54:45 Socket Buffers: R=[131072->131072] S=[16384->16384]

2022-09-25 14:54:45,680 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 Attempting to establish TCP connection with [AF_INET]188.95.54.18:1443 [nonblock]

2022-09-25 14:54:45,699 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 TCP connection established with [AF_INET]188.95.54.18:1443
2022-09-25 14:54:45 TCP_CLIENT link local: (not bound)
2022-09-25 14:54:45 TCP_CLIENT link remote: [AF_INET]188.95.54.18:1443

2022-09-25 14:54:45,718 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 TLS: Initial packet from [AF_INET]188.95.54.18:1443, sid=139b612a ad1d11c0

2022-09-25 14:54:45,827 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 VERIFY OK: depth=2, C=VG, O=Surfshark, CN=Surfshark Root CA

2022-09-25 14:54:45,829 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 VERIFY OK: depth=1, C=VG, O=Surfshark, CN=Surfshark Intermediate CA
2022-09-25 14:54:45 VERIFY KU OK
2022-09-25 14:54:45 Validating certificate extended key usage
2022-09-25 14:54:45 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2022-09-25 14:54:45 VERIFY EKU OK
2022-09-25 14:54:45 VERIFY OK: depth=0, CN=be-anr-v023.prod.surfshark.com

2022-09-25 14:54:45,915 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1635', remote='link-mtu 1583'
2022-09-25 14:54:45 WARNING: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'

2022-09-25 14:54:45,916 DEBG 'start-script' stdout output:
2022-09-25 14:54:45 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2022-09-25 14:54:45 [be-anr-v023.prod.surfshark.com] Peer Connection Initiated with [AF_INET]188.95.54.18:1443

2022-09-25 14:54:46,960 DEBG 'start-script' stdout output:
2022-09-25 14:54:46 SENT CONTROL [be-anr-v023.prod.surfshark.com]: 'PUSH_REQUEST' (status=1)

 

Link to comment

I have been running binhex-delugevpn with Torguard for about 6 months with no problems.  Out of nowhere the downloads stopped.  I tracked down the problem to DNS not resolving.  I switched out the pre-existing dns servers for just 8.8.8.8.  This seemed to work for a while but it has now stopped.  I no longer can get to the WebUI and when I try to ping anyth domains I get: Temporary failure in name resolution.  I have tried many things including: changing the dns servers on my router to 8.8.8.8 and 8.8.4.4 and just using my gateway as my dns server.  Nothing seems to work.

 


Created by...
___.   .__       .__
\_ |__ |__| ____ |  |__   ____ ___  ___
 | __ \|  |/    \|  |  \_/ __ \\  \/  /
 | \_\ \  |   |  \   Y  \  ___/ >    <
 |___  /__|___|  /___|  /\___  >__/\_ \
     \/        \/     \/     \/      \/
  https://hub.docker.com/u/binhex/

2022-09-25 07:53:29.136779 [info] Host is running unRAID
2022-09-25 07:53:29.175510 [info] System information Linux ab450a8312cc 5.19.9-Unraid #1 SMP PREEMPT_DYNAMIC Fri Sep 23 07:24:37 PDT 2022 x86_64 GNU/Linux
2022-09-25 07:53:29.253965 [info] OS_ARCH defined as 'x86-64'
2022-09-25 07:53:29.315805 [info] PUID defined as '99'
2022-09-25 07:53:29.587910 [info] PGID defined as '100'
2022-09-25 07:53:29.848335 [info] UMASK defined as '000'
2022-09-25 07:53:29.888184 [info] Permissions already set for '/config'
2022-09-25 07:53:29.985261 [info] Deleting files in /tmp (non recursive)...
2022-09-25 07:53:30.063692 [info] VPN_ENABLED defined as 'yes'
2022-09-25 07:53:30.104168 [info] VPN_CLIENT defined as 'openvpn'
2022-09-25 07:53:30.140489 [info] VPN_PROV defined as 'custom'
2022-09-25 07:53:30.212029 [info] OpenVPN config file (ovpn extension) is located at /config/openvpn/32.ovpn
2022-09-25 07:53:30.312714 [info] VPN remote server(s) defined as '146.70.137.202,'
2022-09-25 07:53:30.348519 [info] VPN remote port(s) defined as '1912,'
2022-09-25 07:53:30.384197 [info] VPN remote protcol(s) defined as 'udp,'
2022-09-25 07:53:30.423912 [info] VPN_DEVICE_TYPE defined as 'tun0'
2022-09-25 07:53:30.465389 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS)
2022-09-25 07:53:30.506149 [info] LAN_NETWORK defined as '192.168.50.0/24'
2022-09-25 07:53:30.551168 [info] NAME_SERVERS defined as '8.8.8.8,8.8.4.4'
2022-09-25 07:53:30.591598 [info] VPN_USER defined as '<snip>'
2022-09-25 07:53:30.630110 [info] VPN_PASS defined as '<snip>'
2022-09-25 07:53:30.668957 [info] ENABLE_PRIVOXY defined as 'yes'
2022-09-25 07:53:30.712336 [info] VPN_INPUT_PORTS not defined (via -e VPN_INPUT_PORTS), skipping allow for custom incoming ports
2022-09-25 07:53:30.756864 [info] VPN_OUTPUT_PORTS not defined (via -e VPN_OUTPUT_PORTS), skipping allow for custom outgoing ports
2022-09-25 07:53:30.796731 [info] DELUGE_DAEMON_LOG_LEVEL defined as 'info'
2022-09-25 07:53:30.838438 [info] DELUGE_WEB_LOG_LEVEL defined as 'info'
2022-09-25 07:53:30.884332 [info] Starting Supervisor...
2022-09-25 07:53:33,210 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing
2022-09-25 07:53:33,210 INFO Set uid to user 0 succeeded
2022-09-25 07:53:33,252 INFO supervisord started with pid 6
2022-09-25 07:53:34,256 INFO spawned: 'shutdown-script' with pid 182
2022-09-25 07:53:34,259 INFO spawned: 'start-script' with pid 183
2022-09-25 07:53:34,261 INFO spawned: 'watchdog-script' with pid 184
2022-09-25 07:53:34,262 INFO reaped unknown pid 7 (exit status 0)
2022-09-25 07:53:34,282 DEBG 'shutdown-script' stdout output:
[info] Signal not specified as parameter 2, assuming signal '15' (sigterm)
[info] Process owner not specified as parameter 3, assuming owner 'nobody'

2022-09-25 07:53:34,282 INFO success: shutdown-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-09-25 07:53:34,282 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-09-25 07:53:34,283 INFO success: watchdog-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-09-25 07:53:34,293 DEBG 'start-script' stdout output:
[info] VPN is enabled, beginning configuration of VPN

2022-09-25 07:53:34,304 DEBG 'start-script' stdout output:
[warn] Username contains characters which could cause authentication issues, please consider changing this if possible

2022-09-25 07:53:34,379 DEBG 'start-script' stdout output:
[debug] Contents of ovpn file /config/openvpn/32.ovpn as follows...

2022-09-25 07:53:34,381 DEBG 'start-script' stdout output:
client
dev tun
proto udp
remote 146.70.137.202 1912
remote-cert-tls server
auth SHA256
key-direction 1
setenv CLIENT_CERT 0
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
<snip>
-----END OpenVPN Static key V1-----
</tls-auth>
resolv-retry infinite
nobind
cipher AES-128-CBC
auth-user-pass credentials.conf
compress
ncp-disable
tun-mtu-extra 32
<ca>
-----BEGIN CERTIFICATE-----
<snip>
-----END CERTIFICATE-----
</ca>
2022-09-25 07:53:34,394 DEBG 'start-script' stdout output:
[debug] Environment variables defined as follows
ADDITIONAL_PORTS=
APPLICATION=deluge
BASH=/bin/bash
BASHOPTS=checkwinsize:cmdhist:complete_fullquote:extquote:force_fignore:globasciiranges:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath
BASH_ALIASES=()
BASH_ARGC=()
BASH_ARGV=()
BASH_CMDS=()
BASH_LINENO=([0]="0")
BASH_SOURCE=([0]="/root/start.sh")
BASH_VERSINFO=([0]="5" [1]="1" [2]="16" [3]="1" [4]="release" [5]="x86_64-pc-linux-gnu")
BASH_VERSION='5.1.16(1)-release'
DEBUG=true
DELUGE_DAEMON_LOG_LEVEL=info
DELUGE_WEB_LOG_LEVEL=info
DIRSTACK=()
ENABLE_PRIVOXY=yes

2022-09-25 07:53:34,394 DEBG 'start-script' stdout output:
EUID=0
GROUPS=()
HOME=/home/nobody
HOSTNAME=ab450a8312cc
HOSTTYPE=x86_64
HOST_CONTAINERNAME=binhex-delugevpn
HOST_HOSTNAME=Tower
HOST_OS=Unraid
IFS=$' \t\n'
LANG=en_GB.UTF-8
LAN_NETWORK=192.168.50.0/24
MACHTYPE=x86_64-pc-linux-gnu
NAME_SERVERS=8.8.8.8,8.8.4.4
OPTERR=1
OPTIND=1
OSTYPE=linux-gnu
OS_ARCH=x86-64
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
PGID=100
PIPESTATUS=([0]="0")
PPID=6
PS4='+ '
PUID=99
PWD=/
SHELL=/bin/bash
SHELLOPTS=braceexpand:hashall:interactive-comments
SHLVL=1
STRICT_PORT_FORWARD=yes
SUPERVISOR_ENABLED=1
SUPERVISOR_GROUP_NAME=start-script
SUPERVISOR_PROCESS_NAME=start-script
TERM=xterm
TZ=America/Los_Angeles
UID=0
UMASK=000
VPN_CLIENT=openvpn
VPN_CONFIG=/config/openvpn/32.ovpn
VPN_DEVICE_TYPE=tun0
VPN_ENABLED=yes
VPN_INPUT_PORTS=
VPN_OPTIONS=
VPN_OUTPUT_PORTS=
VPN_PASS=<snip>
VPN_PROV=custom
VPN_REMOTE_PORT=1912,
VPN_REMOTE_PROTOCOL=udp,
VPN_REMOTE_SERVER=146.70.137.202,
VPN_USER=<snip>
_='[debug] Environment variables defined as follows'
password_char_check=
username_char_check=.
vpn_ping=
[debug] Directory listing of files in /config/openvpn/ as follows

2022-09-25 07:53:34,414 DEBG 'start-script' stdout output:
total 12
drwxrwxr-x 1 nobody users   45 Sep 25 07:53 .
drwxrwxr-x 1 nobody users 4096 Sep 24 17:42 ..
-rwxrwxr-x 1 nobody users 2045 Sep 25 07:53 32.ovpn
-rwxrwxr-x 1 nobody users   30 Sep 25 07:53 credentials.conf

2022-09-25 07:53:34,414 DEBG 'start-script' stdout output:
[debug] Contents of OpenVPN config file '/config/openvpn/32.ovpn' as follows...

2022-09-25 07:53:34,415 DEBG 'start-script' stdout output:
client
dev tun
proto udp
remote 146.70.137.202 1912
remote-cert-tls server
auth SHA256
key-direction 1
setenv CLIENT_CERT 0
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
<snip>
-----END OpenVPN Static key V1-----
</tls-auth>
resolv-retry infinite
nobind
cipher AES-128-CBC
auth-user-pass credentials.conf
compress
ncp-disable
tun-mtu-extra 32
<ca>
-----BEGIN CERTIFICATE-----
<snip>
-----END CERTIFICATE-----
</ca>
2022-09-25 07:53:34,420 DEBG 'start-script' stdout output:
[info] Adding 8.8.8.8 to /etc/resolv.conf

2022-09-25 07:53:34,425 DEBG 'start-script' stdout output:
[info] Adding 8.8.4.4 to /etc/resolv.conf

2022-09-25 07:53:34,440 DEBG 'start-script' stdout output:
146.70.137.202

2022-09-25 07:53:34,479 DEBG 'start-script' stdout output:
[debug] Show name servers defined for container

2022-09-25 07:53:34,480 DEBG 'start-script' stdout output:
nameserver 8.8.8.8
nameserver 8.8.4.4

2022-09-25 07:53:34,480 DEBG 'start-script' stdout output:
[debug] Show name resolution for VPN endpoint 146.70.137.202

2022-09-25 07:53:34,514 DEBG 'start-script' stdout output:
;; ->>HEADER<<- opcode: QUERY, rcode: NXDOMAIN, id: 30087
;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 
;; QUESTION SECTION:
;; 146.70.137.202.    IN    A

;; ANSWER SECTION:

;; AUTHORITY SECTION:
.    86392    IN    SOA    a.root-servers.net. nstld.verisign-grs.com. 2022092500 1800 900 604800 86400

;; ADDITIONAL SECTION:

;; Query time: 16 msec
;; SERVER: 8.8.8.8
;; WHEN: Sun Sep 25 07:53:34 2022
;; MSG SIZE  rcvd: 107

2022-09-25 07:53:34,515 DEBG 'start-script' stdout output:
[debug] Show contents of hosts file

2022-09-25 07:53:34,516 DEBG 'start-script' stdout output:
127.0.0.1    localhost
::1    localhost ip6-localhost ip6-loopback
fe00::0    ip6-localnet
ff00::0    ip6-mcastprefix
ff02::1    ip6-allnodes
ff02::2    ip6-allrouters
172.17.0.2    ab450a8312cc

2022-09-25 07:53:34,602 DEBG 'start-script' stdout output:
[debug] Docker interface defined as eth0

2022-09-25 07:53:34,609 DEBG 'start-script' stdout output:
[info] Default route for container is 172.17.0.1

2022-09-25 07:53:34,614 DEBG 'start-script' stdout output:
[debug] Docker IP defined as 172.17.0.2

2022-09-25 07:53:34,619 DEBG 'start-script' stdout output:
[debug] Docker netmask defined as 255.255.0.0

2022-09-25 07:53:34,633 DEBG 'start-script' stdout output:
[info] Docker network defined as    172.17.0.0/16

2022-09-25 07:53:34,639 DEBG 'start-script' stdout output:
[info] Adding 192.168.50.0/24 as route via docker eth0

2022-09-25 07:53:34,641 DEBG 'start-script' stdout output:
[info] ip route defined as follows...
--------------------

2022-09-25 07:53:34,642 DEBG 'start-script' stdout output:
default via 172.17.0.1 dev eth0 
172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.2 
192.168.50.0/24 via 172.17.0.1 dev eth0 
local 127.0.0.0/8 dev lo table local proto kernel scope host src 127.0.0.1 
local 127.0.0.1 dev lo table local proto kernel scope host src 127.0.0.1 

2022-09-25 07:53:34,643 DEBG 'start-script' stdout output:
broadcast 127.255.255.255 dev lo table local proto kernel scope link src 127.0.0.1 
local 172.17.0.2 dev eth0 table local proto kernel scope host src 172.17.0.2 
broadcast 172.17.255.255 dev eth0 table local proto kernel scope link src 172.17.0.2 
--------------------
[debug] Modules currently loaded for kernel

2022-09-25 07:53:34,647 DEBG 'start-script' stdout output:
Module                  Size  Used by
xt_mark                16384  0
xt_CHECKSUM            16384  1
ipt_REJECT             16384  2
nf_reject_ipv4         16384  1 ipt_REJECT
ip6table_mangle        16384  1
xt_nat                 16384  9
xt_tcpudp              16384  36
ip6table_nat           16384  1
vhost_net              28672  0
tun                    53248  1 vhost_net
vhost                  40960  1 vhost_net
vhost_iotlb            16384  1 vhost
tap                    24576  1 vhost_net
veth                   32768  0
xt_conntrack           16384  2
xt_MASQUERADE          16384  13
nf_conntrack_netlink    49152  0
nfnetlink              16384  2 nf_conntrack_netlink
xfrm_user              36864  1
xfrm_algo              16384  1 xfrm_user
xt_addrtype            16384  2
iptable_nat            16384  1
nf_nat                 49152  4 ip6table_nat,xt_nat,iptable_nat,xt_MASQUERADE
nf_conntrack          139264  5 xt_conntrack,nf_nat,xt_nat,nf_conntrack_netlink,xt_MASQUERADE
nf_defrag_ipv6         16384  1 nf_conntrack
nf_defrag_ipv4         16384  1 nf_conntrack
br_netfilter           32768  0
xfs                  1654784  3
nfsd                  507904  3
auth_rpcgss           135168  1 nfsd
oid_registry           16384  1 auth_rpcgss
lockd                 102400  1 nfsd
grace                  16384  2 nfsd,lockd
sunrpc                569344  13 nfsd,auth_rpcgss,lockd
md_mod                 53248  3
iptable_mangle         16384  1
ip6table_filter        16384  1
ip6_tables             28672  3 ip6table_filter,ip6table_nat,ip6table_mangle
iptable_filter         16384  1
ip_tables              28672  3 iptable_filter,iptable_nat,iptable_mangle
x_tables               45056  16 ip6table_filter,xt_conntrack,iptable_filter,ip6table_nat,xt_tcpudp,xt_addrtype,xt_CHECKSUM,xt_nat,ip6_tables,ipt_REJECT,ip_tables,iptable_nat,ip6table_mangle,xt_MASQUERADE,iptable_mangle,xt_mark
af_packet              49152  2
8021q                  32768  0
garp                   16384  1 8021q
mrp                    16384  1 8021q
bridge                262144  1 br_netfilter
stp                    16384  2 bridge,garp
llc                    16384  3 bridge,stp,garp
bonding               147456  0
tls                   106496  1 bonding
ipv6                  532480  130 bridge,br_netfilter,ip6table_mangle,bonding
firewire_ohci          40960  0
i2c_i801               24576  0
ahci                   45056  3
i2c_smbus              16384  1 i2c_i801
input_leds             16384  0
intel_powerclamp       16384  0
coretemp               16384  0
mxm_wmi                16384  0
kvm_intel             266240  0
kvm                   958464  1 kvm_intel
crc32c_intel           24576  2
intel_cstate           20480  0
intel_uncore          200704  0
led_class              16384  1 input_leds
i2c_core               86016  2 i2c_smbus,i2c_i801
libahci                40960  1 ahci
tg3                   159744  0
firewire_core          77824  1 firewire_ohci
sata_sil24             24576  0
i5500_temp             16384  0
wmi                    28672  1 mxm_wmi
button                 20480  0
acpi_cpufreq           16384  0
unix                   53248  366

2022-09-25 07:53:34,652 DEBG 'start-script' stdout output:
iptable_mangle         16384  1
ip_tables              28672  3 iptable_filter,iptable_nat,iptable_mangle
x_tables               45056  16 ip6table_filter,xt_conntrack,iptable_filter,ip6table_nat,xt_tcpudp,xt_addrtype,xt_CHECKSUM,xt_nat,ip6_tables,ipt_REJECT,ip_tables,iptable_nat,ip6table_mangle,xt_MASQUERADE,iptable_mangle,xt_mark

2022-09-25 07:53:34,652 DEBG 'start-script' stdout output:
[info] iptable_mangle support detected, adding fwmark for tables

2022-09-25 07:53:34,752 DEBG 'start-script' stdout output:
[info] iptables defined as follows...
--------------------

2022-09-25 07:53:34,754 DEBG 'start-script' stdout output:
-P INPUT DROP
-P FORWARD DROP
-P OUTPUT DROP
-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A INPUT -s 146.70.137.202/32 -i eth0 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 8112 -j ACCEPT
-A INPUT -s 192.168.50.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT
-A INPUT -s 192.168.50.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --dport 8118 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -i tun0 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A OUTPUT -d 146.70.137.202/32 -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 8112 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.50.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.50.0/24 -o eth0 -p tcp -m tcp --sport 8118 -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o tun0 -j ACCEPT

2022-09-25 07:53:34,756 DEBG 'start-script' stdout output:
--------------------

2022-09-25 07:53:34,756 DEBG 'start-script' stdout output:
[debug] VPN remote configuration options as follows...
[debug] VPN remote server is defined as '146.70.137.202'
[debug] VPN remote port is defined as '1912'
[debug] VPN remote protocol is defined as 'udp'

2022-09-25 07:53:34,756 DEBG 'start-script' stdout output:
[debug] VPN remote ip is defined as '146.70.137.202'

2022-09-25 07:53:34,757 DEBG 'start-script' stdout output:
[debug] OpenVPN command line:- /usr/bin/openvpn --reneg-sec 0 --mute-replay-warnings --auth-nocache --setenv VPN_PROV 'custom' --setenv VPN_CLIENT 'openvpn' --setenv DEBUG 'true' --setenv VPN_DEVICE_TYPE 'tun0' --setenv VPN_ENABLED 'yes' --setenv VPN_REMOTE_SERVER '146.70.137.202' --setenv APPLICATION 'deluge' --script-security 2 --writepid /root/openvpn.pid --remap-usr1 SIGHUP --log-append /dev/stdout --pull-filter ignore 'up' --pull-filter ignore 'down' --pull-filter ignore 'route-ipv6' --pull-filter ignore 'ifconfig-ipv6' --pull-filter ignore 'tun-ipv6' --pull-filter ignore 'dhcp-option DNS6' --pull-filter ignore 'persist-tun' --pull-filter ignore 'reneg-sec' --up /root/openvpnup.sh --up-delay --up-restart --keepalive 10 60 --auth-user-pass credentials.conf --cd /config/openvpn --config '/config/openvpn/32.ovpn' --remote 146.70.137.202 1912 udp --remote-random
[info] Starting OpenVPN (non daemonised)...

2022-09-25 07:53:34,975 DEBG 'start-script' stdout output:
2022-09-25 07:53:34 DEPRECATED OPTION: ncp-disable. Disabling cipher negotiation is a deprecated debug feature that will be removed in OpenVPN 2.6

2022-09-25 07:53:34,975 DEBG 'start-script' stdout output:
2022-09-25 07:53:34 DEPRECATED OPTION: --cipher set to 'AES-128-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-128-CBC' to --data-ciphers or change --cipher 'AES-128-CBC' to --data-ciphers-fallback 'AES-128-CBC' to silence this warning.

2022-09-25 07:53:34,975 DEBG 'start-script' stdout output:
2022-09-25 07:53:34 WARNING: file 'credentials.conf' is group or others accessible
2022-09-25 07:53:34 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-09-25 07:53:34 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10

2022-09-25 07:53:34,976 DEBG 'start-script' stdout output:
2022-09-25 07:53:34 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2022-09-25 07:53:34,977 DEBG 'start-script' stdout output:
2022-09-25 07:53:34 TCP/UDP: Preserving recently used remote address: [AF_INET]146.70.137.202:1912

2022-09-25 07:53:34,977 DEBG 'start-script' stdout output:
2022-09-25 07:53:34 UDP link local: (not bound)
2022-09-25 07:53:34 UDP link remote: [AF_INET]146.70.137.202:1912

 

Link to comment
On 9/25/2022 at 8:17 AM, spikey1973 said:

Hello,

 

I am imbareced to ask another question here.
I a still having issues with my NAS, and to solve this i had to put my own router behind the modem, with the latter one in bridge mode. While doing so the my Lan network ip's have all changed from 192.168.178.XXX to 192.168.1.XXX

So i changed the LAN network line to: LAN_NETWORK=192.168.1.0/24
(i had this wrong the lat couple of times i posted an issue i couldn't solve, but i believe it to be correct now)

 

never the less the container does not seem to start (still using portainer (2.15.1) instead of unraid)

 

as far as i know nothing else changed.
 

the following keeps repeating

 

does anyone have an idea about what the issue could be?
it seems to me like an authentification issue, just don't understand why.

 

Kindest greetz

 

Matthieu

Per the FAQ, your VPN is not connecting.

 

Quote

Q17. I'm unable to connect to the web ui and i'm seeing the following repeated over and over in the /config/supervisord.log file, what does it mean and how can i fix it?

2020-02-04 07:21:26,213 DEBG 'start-script' stdout output: Tue Feb 4 07:21:26 2020 [UNDEF] Inactivity timeout (--ping-restart), restarting 2020-02-04 07:21:26,213 DEBG 'start-script' stdout output: Tue Feb 4 07:21:26 2020 SIGHUP[soft,ping-restart] received, process restarting

A17. This means the OpenVPN Client is unable to connect to the VPN providers server on the specified IP address and port (as defined in the ovpn file 'remote' line), this can have many causes, some of the more common causes (and solutions) are as follows, in descending order of most common:-

Cause: Out of date ovpn config file containing reference to retired VPN remote server(s).
Solution: Download the latest ovpn config file from your VPN provider, place in /config/openvpn/ and restart container.

Cause: VPN provider has a major outage.
Solution: Contact VPN provider to confirm outage and wait for the outage to be resolved.

Cause: Hardware firewall/router is blocking outbound connections to the vpn providers servers.
Solution: Allow outbound connections for the port defined in the VPN providers ovpn file on your firewall/router.

Cause: Host machine firewall blocking the docker container from connecting to the vpn providers servers.
Solution: Allow outbound connections for the port defined in the VPN providers ovpn file on the hosts firewall.

Cause: VLAN blocking the connection for the host to the VPN providers servers.
Solution: Allow outbound connections for the port defined in the VPN providers ovpn file on your switch.

Cause: ISP is hijacking DNS lookup and redirecting you to their (spammy) landing page.
Solution: Contact ISP and disable DNS redirection, Virgin UK and SKY ISP's have a website where you can disable it.

Cause: ISP is blocking outbound connections to the VPN providers servers.
Solution: Use an IP based ovpn config file instead, this wil circumvent the requirement to do a name lookup.

Once you have ruled out any potential Home LAN issues and if none of the above resolve the issue then you may have to switch VPN provider or even ISP to get around the blocking restriction.

 

Link to comment
On 7/9/2022 at 11:26 AM, bbeecher said:

Recently (past week) a tracker I use started rejecting connection requests with the deluge client saying: "Client calling in as ("-DE" / "Deluge/2.1.0 libtorrent/2.0.6.0") is not allowed, please check the Rules for an allowed client "  

 

The rules state: "Due to release stream issues, Versions 2.x Sourced from their PPA (or docker based on PPA) will not work here"

 

This image is arch based right? So I can't imagine it's coming from the PPA - Did the user agent change recently?  I'm seeing a full string as 

 

"-DE205s-
Deluge/2.1.0 libtorrent/2.0.6.0"

 

Which seems fine? 

Did you ever figure out a solution for this?  I have the same problem (I won't mention the tracker).  Mine didn't stop working until early september

Link to comment

Well this is new, just started happening yesterday.  I'm running on Synology Docker, with containers automatically updated by ouroboros.  Potential change to the latest package?

 

Start container deluge failed: {"message":"OCI runtime create failed: container_linux.go:367: starting container process caused: exec: \"/usr/bin/tini\": stat /usr/bin/tini: no such file or directory: unknown"}.

Link to comment

Hi, i am havign the same Wireguard error as many in here:

2022-10-04 09:32:48,843 DEBG 'start-script' stdout output:
[info] Attempting to bring WireGuard interface 'up'...

2022-10-04 09:32:48,857 DEBG 'start-script' stderr output:
Warning: `/config/wireguard/wg0.conf' is world accessible

2022-10-04 09:32:48,877 DEBG 'start-script' stderr output:
[#] ip link add wg0 type wireguard

2022-10-04 09:32:48,884 DEBG 'start-script' stderr output:
Error: Unknown device type.

2022-10-04 09:32:48,903 DEBG 'start-script' stderr output:
Unable to access interface: Protocol not supported

2022-10-04 09:32:48,904 DEBG 'start-script' stderr output:
[#] ip link delete dev wg0

2022-10-04 09:32:48,914 DEBG 'start-script' stderr output:
Cannot find device "wg0"

2022-10-04 09:32:48,915 DEBG 'start-script' stdout output:
[warn] WireGuard interface failed to come 'up', exit code is '1'

 

The provider is Mullvad, the file is converted to Wg0.conf in Wireguard directory.

 

Config as explained in the Github:

--sysctl="net.ipv4.conf.all.src_valid_mark=1" \

--privileged=true \

 

I am using Mullvad. I don't know what am i doing wrong at this point. Configuration provided by mullvad: 

 

[Interface]
PrivateKey = xxxxxxx
Address = 10.x.x.x/32
DNS = 10.x.x.x

[Peer]
PublicKey = xxxxxxxxxxx
AllowedIPs = 0.0.0.0/0
Endpoint = x.x.x.x:51820

 

 

 

 

 

 

 

Link to comment

After an XFS rebuild, my Torrents have vanished from Deluge - but the files are still on my disk, how do I get them back?

I had 3x 2TB (1 parity, 2 data) drives in my server, with DelugeVPN configured and working fine. I then added a (very old) 1TB drive, but within a couple of weeks it said it was unmountable. I figured the drive was dead (it really was old, so not surprising) and added a new drive. The new drive was 6TB, so I did a parity swap to make the new 6TB drive the parity, and the old 2TB parity replaced the 1TB data drive

But the "new" 2TB data drive was still unmountable, so I ran XFS_REPAIR from the unRAID web UI. All good, everything seemed to restore just fine. All my downloads (spread, I believe, across all 3 disks) are there on the disk, I can see them and open them etc no problem


I went to run Deluge, and the WebUI didn't come up. Look in the logs, and apparently my OpenVPN config has vanished - I re-add it to the binhex-delugegpn/openvpn folder and restart it, and deluge opens just fine, it remembers my password in the webUI, all good, presumably it's saved the rest of my config... except none of my torrents are showing up? I can't find any config for the Docker to set a specific folder to save them in, although I have found a bunch of .torrent files in binhex-delugevpn/state with names that look like md5/sha/whatever hashes. I added them as magnet links, so the names could make sense

Are those my torrents? Do I just add them back to Deluge via the WebUI, or is there something else I should be doing here

 

Edit: They appear to be *some of* my torrents, but not all, and at least miss off the most recent dozen or so, what am I missing?

Edited by audigex
Adding detail
Link to comment

I am new to Deluge. I am using Sonarr as the indexer. I had added a few torrents via Sonarr. These were imported from my library and missing episodes were successfully downloaded by Deluge. These were then moved by Sonarr to the TV share on the array and Deluge was still seeding the torrents. I was remote and locked myself out of Deluge. Before finding the proper way of removing a password I deleted and re-added the Deluge docker thinking re-adding the Torrent files in order to have them seed again would be easy. I have been unsuccessful thus far.

 

 

 

What I need to do is to download the torrent file in order to seed. I have read through the FAQ and searched this forum but did not see any instruction for this. Can someone point me to a guide that may help? 

 

 

 

Thanks in advance

Link to comment

Help please.

 

  As of today, delugevpn no longer works.  UI will not load.  If I turn off the VPN, the UI loads just fine.  I even tried Binhex/Qbitvpn and get same symptoms.  Were the IP tables just changed?  I have had this setup for 2 months with no issues but today it has issues.  I have completely rebuilt the docker from scratch and tried new VPN severs in both the US and Canada with no luck.  If it is an IP Tables thing, where can I find the list of IPs for NORDVPN that are on the list?  Supervisord.log attached.  

 

Any thoughts could help. 

supervisord.log

 

Quote

Created by...
___.   .__       .__
\_ |__ |__| ____ |  |__   ____ ___  ___
 | __ \|  |/    \|  |  \_/ __ \\  \/  /
 | \_\ \  |   |  \   Y  \  ___/ >    <
 |___  /__|___|  /___|  /\___  >__/\_ \
     \/        \/     \/     \/      \/
  https://hub.docker.com/u/binhex/

2022-10-08 12:54:47.866504 [info] Host is running unRAID
2022-10-08 12:54:47.878390 [info] System information Linux 0a8f5fc9d2e7 5.19.14-Unraid #1 SMP PREEMPT_DYNAMIC Thu Oct 6 09:15:00 PDT 2022 x86_64 GNU/Linux
2022-10-08 12:54:47.892737 [info] OS_ARCH defined as 'x86-64'
2022-10-08 12:54:47.906481 [info] PUID defined as '99'
2022-10-08 12:54:47.927473 [info] PGID defined as '100'
2022-10-08 12:54:47.947133 [info] UMASK defined as '000'
2022-10-08 12:54:47.960819 [info] Permissions already set for '/config'
2022-10-08 12:54:47.978237 [info] Deleting files in /tmp (non recursive)...
2022-10-08 12:54:47.995966 [info] VPN_ENABLED defined as 'yes'
2022-10-08 12:54:48.009681 [info] VPN_CLIENT defined as 'openvpn'
2022-10-08 12:54:48.022889 [info] VPN_PROV defined as 'custom'
2022-10-08 12:54:48.041999 [info] OpenVPN config file (ovpn extension) is located at /config/openvpn/us8735.nordvpn.com.udp.ovpn
2022-10-08 12:54:48.070094 [info] VPN remote server(s) defined as '23.105.174.4,'
2022-10-08 12:54:48.081315 [info] VPN remote port(s) defined as '1194,'
2022-10-08 12:54:48.092535 [info] VPN remote protcol(s) defined as 'udp,'
2022-10-08 12:54:48.106015 [info] VPN_DEVICE_TYPE defined as 'tun0'
2022-10-08 12:54:48.119042 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS)
2022-10-08 12:54:48.132049 [info] LAN_NETWORK defined as '192.168.31.0/24'
2022-10-08 12:54:48.145331 [info] NAME_SERVERS defined as '217.114.38.10,217.114.38.42,217.114.38.194,23.105.174.4'
2022-10-08 12:54:48.158484 [info] VPN_USER defined as '####################'
2022-10-08 12:54:48.171567 [info] VPN_PASS defined as '###########################'
2022-10-08 12:54:48.184573 [info] ENABLE_PRIVOXY defined as 'yes'
2022-10-08 12:54:48.199078 [info] VPN_INPUT_PORTS defined as '9696,7878,8989,9897,6789'
2022-10-08 12:54:48.211955 [info] VPN_OUTPUT_PORTS defined as '9696,7878,8989,9897,6789'
2022-10-08 12:54:48.225056 [info] DELUGE_DAEMON_LOG_LEVEL defined as 'info'
2022-10-08 12:54:48.237921 [info] DELUGE_WEB_LOG_LEVEL defined as 'info'
2022-10-08 12:54:48.252458 [info] Starting Supervisor...
2022-10-08 12:54:48,397 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing
2022-10-08 12:54:48,397 INFO Set uid to user 0 succeeded
2022-10-08 12:54:48,398 INFO supervisord started with pid 7
2022-10-08 12:54:49,400 INFO spawned: 'start-script' with pid 183
2022-10-08 12:54:49,402 INFO spawned: 'watchdog-script' with pid 184
2022-10-08 12:54:49,402 INFO reaped unknown pid 8 (exit status 0)
2022-10-08 12:54:49,405 DEBG 'start-script' stdout output:
[info] VPN is enabled, beginning configuration of VPN

2022-10-08 12:54:49,405 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-10-08 12:54:49,405 INFO success: watchdog-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2022-10-08 12:54:49,430 DEBG 'start-script' stdout output:
[debug] Contents of ovpn file /config/openvpn/us8735.nordvpn.com.udp.ovpn as follows...

2022-10-08 12:54:49,431 DEBG 'start-script' stdout output:
client
dev tun
proto udp
remote 23.105.174.4 1194
resolv-retry infinite
remote-random
nobind
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
ping 15
ping-restart 0
ping-timer-rem
comp-lzo no
verify-x509-name CN=us8735.nordvpn.com

remote-cert-tls server

auth-user-pass credentials.conf
verb 3
pull
fast-io
cipher AES-256-CBC
auth SHA512
<ca>
-----BEGIN CERTIFICATE-----
MIIFCjCCAvKgAwIBAgIBATANBgkqhkiG9w0BAQ0FADA5MQswCQYDVQQGEwJQQTEQ
MA4GA1UEChMHTm9yZFZQTjEYMBYGA1UEAxMPTm9yZFZQTiBSb290IENBMB4XDTE2
MDEwMTAwMDAwMFoXDTM1MTIzMTIzNTk1OVowOTELMAkGA1UEBhMCUEExEDAOBgNV
BAoTB05vcmRWUE4xGDAWBgNVBAMTD05vcmRWUE4gUm9vdCBDQTCCAiIwDQYJKoZI
hvcNAQEBBQADggIPADCCAgoCggIBAMkr/BYhyo0F2upsIMXwC6QvkZps3NN2/eQF
kfQIS1gql0aejsKsEnmY0Kaon8uZCTXPsRH1gQNgg5D2gixdd1mJUvV3dE3y9FJr
XMoDkXdCGBodvKJyU6lcfEVF6/UxHcbBguZK9UtRHS9eJYm3rpL/5huQMCppX7kU
eQ8dpCwd3iKITqwd1ZudDqsWaU0vqzC2H55IyaZ/5/TnCk31Q1UP6BksbbuRcwOV
skEDsm6YoWDnn/IIzGOYnFJRzQH5jTz3j1QBvRIuQuBuvUkfhx1FEwhwZigrcxXu
MP+QgM54kezgziJUaZcOM2zF3lvrwMvXDMfNeIoJABv9ljw969xQ8czQCU5lMVmA
37ltv5Ec9U5hZuwk/9QO1Z+d/r6Jx0mlurS8gnCAKJgwa3kyZw6e4FZ8mYL4vpRR
hPdvRTWCMJkeB4yBHyhxUmTRgJHm6YR3D6hcFAc9cQcTEl/I60tMdz33G6m0O42s
Qt/+AR3YCY/RusWVBJB/qNS94EtNtj8iaebCQW1jHAhvGmFILVR9lzD0EzWKHkvy
WEjmUVRgCDd6Ne3eFRNS73gdv/C3l5boYySeu4exkEYVxVRn8DhCxs0MnkMHWFK6
MyzXCCn+JnWFDYPfDKHvpff/kLDobtPBf+Lbch5wQy9quY27xaj0XwLyjOltpiST
LWae/Q4vAgMBAAGjHTAbMAwGA1UdEwQFMAMBAf8wCwYDVR0PBAQDAgEGMA0GCSqG
SIb3DQEBDQUAA4ICAQC9fUL2sZPxIN2mD32VeNySTgZlCEdVmlq471o/bDMP4B8g
nQesFRtXY2ZCjs50Jm73B2LViL9qlREmI6vE5IC8IsRBJSV4ce1WYxyXro5rmVg/
k6a10rlsbK/eg//GHoJxDdXDOokLUSnxt7gk3QKpX6eCdh67p0PuWm/7WUJQxH2S
DxsT9vB/iZriTIEe/ILoOQF0Aqp7AgNCcLcLAmbxXQkXYCCSB35Vp06u+eTWjG0/
pyS5V14stGtw+fA0DJp5ZJV4eqJ5LqxMlYvEZ/qKTEdoCeaXv2QEmN6dVqjDoTAo
k0t5u4YRXzEVCfXAC3ocplNdtCA72wjFJcSbfif4BSC8bDACTXtnPC7nD0VndZLp
+RiNLeiENhk0oTC+UVdSc+n2nJOzkCK0vYu0Ads4JGIB7g8IB3z2t9ICmsWrgnhd
NdcOe15BincrGA8avQ1cWXsfIKEjbrnEuEk9b5jel6NfHtPKoHc9mDpRdNPISeVa
wDBM1mJChneHt59Nh8Gah74+TM1jBsw4fhJPvoc7Atcg740JErb904mZfkIEmojC
VPhBHVQ9LHBAdM8qFI2kRK0IynOmAZhexlP/aT/kpEsEPyaZQlnBn3An1CRz8h0S
PApL8PytggYKeQmRhl499+6jLxcZ2IegLfqq41dzIjwHwTMplg+1pKIOVojpWA==
-----END CERTIFICATE-----
</ca>
key-direction 1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
e685bdaf659a25a200e2b9e39e51ff03
0fc72cf1ce07232bd8b2be5e6c670143
f51e937e670eee09d4f2ea5a6e4e6996
5db852c275351b86fc4ca892d78ae002
d6f70d029bd79c4d1c26cf14e9588033
cf639f8a74809f29f72b9d58f9b8f5fe
fc7938eade40e9fed6cb92184abb2cc1
0eb1a296df243b251df0643d53724cdb
5a92a1d6cb817804c4a9319b57d53be5
80815bcfcb2df55018cc83fc43bc7ff8
2d51f9b88364776ee9d12fc85cc7ea5b
9741c4f598c485316db066d52db4540e
212e1518a9bd4828219e24b20d88f598
a196c9de96012090e333519ae18d3509
9427e7b372d348d352dc4c85e18cd4b9
3f8a56ddb2e64eb67adfc9b337157ff4
-----END OpenVPN Static key V1-----
</tls-auth>

2022-10-08 12:54:49,434 DEBG 'start-script' stdout output:
[debug] Environment variables defined as follows

2022-10-08 12:54:49,435 DEBG 'start-script' stdout output:
ADDITIONAL_PORTS=
APPLICATION=deluge
BASH=/bin/bash
BASHOPTS=checkwinsize:cmdhist:complete_fullquote:extquote:force_fignore:globasciiranges:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath
BASH_ALIASES=()
BASH_ARGC=()
BASH_ARGV=()
BASH_CMDS=()
BASH_LINENO=([0]="0")
BASH_SOURCE=([0]="/root/start.sh")
BASH_VERSINFO=([0]="5" [1]="1" [2]="16" [3]="1" [4]="release" [5]="x86_64-pc-linux-gnu")
BASH_VERSION='5.1.16(1)-release'
DEBUG=true
DELUGE_DAEMON_LOG_LEVEL=info
DELUGE_WEB_LOG_LEVEL=info
DIRSTACK=()
ENABLE_PRIVOXY=yes
EUID=0
GROUPS=()
HOME=/home/nobody
HOSTNAME=0a8f5fc9d2e7
HOSTTYPE=x86_64
HOST_CONTAINERNAME=binhex-delugevpn
HOST_HOSTNAME=Zion
HOST_OS=Unraid
IFS=$' \t\n'
LANG=en_GB.UTF-8
LAN_NETWORK=192.168.31.0/24
MACHTYPE=x86_64-pc-linux-gnu
NAME_SERVERS=217.114.38.10,217.114.38.42,217.114.38.194,23.105.174.4
OPTERR=1
OPTIND=1
OSTYPE=linux-gnu
OS_ARCH=x86-64
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
PGID=100
PIPESTATUS=([0]="0")
PPID=7
PS4='+ '
PUID=99
PWD=/
SHELL=/bin/bash
SHELLOPTS=braceexpand:hashall:interactive-comments
SHLVL=1
STRICT_PORT_FORWARD=yes
SUPERVISOR_ENABLED=1
SUPERVISOR_GROUP_NAME=start-script
SUPERVISOR_PROCESS_NAME=start-script
TERM=xterm
TZ=America/New_York
UID=0
UMASK=000
VPN_CLIENT=openvpn
VPN_CONFIG=/config/openvpn/us8735.nordvpn.com.udp.ovpn
VPN_DEVICE_TYPE=tun0
VPN_ENABLED=yes
VPN_INPUT_PORTS=9696,7878,8989,9897,6789
VPN_OPTIONS=
VPN_OUTPUT_PORTS=9696,7878,8989,9897,6789
VPN_PASS=####################
VPN_PROV=custom
VPN_REMOTE_PORT=1194,
VPN_REMOTE_PROTOCOL=udp,
VPN_REMOTE_SERVER=23.105.174.4,
VPN_USER=#############################
_='[debug] Environment variables defined as follows'
password_char_check=
username_char_check=
vpn_ping='ping 15'
[debug] Directory listing of files in /config/openvpn/ as follows

2022-10-08 12:54:49,438 DEBG 'start-script' stdout output:
total 48
drwxrwxr-x 1 nobody users 4096 Oct  8 12:54 .
drwxrwxr-x 1 nobody users  254 Oct  8 12:45 ..
-rwxrwxr-x 1 nobody users   50 Oct  8 12:54 credentials.conf
-rwxrwxr-x 1 nobody users 2839 Oct  8 12:54 us8735.nordvpn.com.udp.ovpn
-rwxrwxr-x 1 nobody users 2769 Oct  8 12:14 us8769.nordvpn.com.udp.ovpn
-rwxrwxr-x 1 nobody users 2809 Sep 26 18:23 us8775.nordvpn.com.udp.ovpn
-rwxrwxr-x 1 nobody users 2846 Oct  8 11:03 us9510.nordvpn.com.tcp.ovpn
-rwxrwxr-x 1 nobody users 2846 Oct  8 11:03 us9514.nordvpn.com.tcp.ovpn
-rwxrwxr-x 1 nobody users 2847 Oct  8 11:03 us9514.nordvpn.com.udp.ovpn
-rwxrwxr-x 1 nobody users 2847 Sep 26 18:23 us9531.nordvpn.com.tcp.ovpn
-rwxrwxr-x 1 nobody users 2848 Sep 26 18:23 us9531.nordvpn.com.udp.ovpn
-rwxrwxr-x 1 nobody users 2847 Oct  8 11:03 us9533.nordvpn.com.tcp.ovpn
-rwxrwxr-x 1 nobody users 2848 Oct  8 11:03 us9533.nordvpn.com.udp.ovpn

2022-10-08 12:54:49,438 DEBG 'start-script' stdout output:
[debug] Contents of OpenVPN config file '/config/openvpn/us8735.nordvpn.com.udp.ovpn' as follows...

2022-10-08 12:54:49,438 DEBG 'start-script' stdout output:
client
dev tun
proto udp
remote 23.105.174.4 1194
resolv-retry infinite
remote-random
nobind
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
ping 15
ping-restart 0
ping-timer-rem
comp-lzo no
verify-x509-name CN=us8735.nordvpn.com

remote-cert-tls server

auth-user-pass credentials.conf
verb 3
pull
fast-io
cipher AES-256-CBC
auth SHA512
<ca>
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
</ca>
key-direction 1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
e685bdaf659a25a200e2b9e39e51ff03
0fc72cf1ce07232bd8b2be5e6c670143
f51e937e670eee09d4f2ea5a6e4e6996
5db852c275351b86fc4ca892d78ae002
d6f70d029bd79c4d1c26cf14e9588033
cf639f8a74809f29f72b9d58f9b8f5fe
fc7938eade40e9fed6cb92184abb2cc1
0eb1a296df243b251df0643d53724cdb
5a92a1d6cb817804c4a9319b57d53be5
80815bcfcb2df55018cc83fc43bc7ff8
2d51f9b88364776ee9d12fc85cc7ea5b
9741c4f598c485316db066d52db4540e
212e1518a9bd4828219e24b20d88f598
a196c9de96012090e333519ae18d3509
9427e7b372d348d352dc4c85e18cd4b9
3f8a56ddb2e64eb67adfc9b337157ff4
-----END OpenVPN Static key V1-----
</tls-auth>

2022-10-08 12:54:49,440 DEBG 'start-script' stdout output:
[info] Adding 217.114.38.10 to /etc/resolv.conf

2022-10-08 12:54:49,442 DEBG 'start-script' stdout output:
[info] Adding 217.114.38.42 to /etc/resolv.conf

2022-10-08 12:54:49,443 DEBG 'start-script' stdout output:
[info] Adding 217.114.38.194 to /etc/resolv.conf

2022-10-08 12:54:49,445 DEBG 'start-script' stdout output:
[info] Adding 23.105.174.4 to /etc/resolv.conf

2022-10-08 12:54:49,447 DEBG 'start-script' stdout output:
23.105.174.4

2022-10-08 12:54:49,453 DEBG 'start-script' stdout output:
[debug] Show name servers defined for container

2022-10-08 12:54:49,453 DEBG 'start-script' stdout output:
nameserver 217.114.38.10
nameserver 217.114.38.42
nameserver 217.114.38.194
nameserver 23.105.174.4

2022-10-08 12:54:49,453 DEBG 'start-script' stdout output:
[debug] Show name resolution for VPN endpoint 23.105.174.4

2022-10-08 12:55:49,514 DEBG 'start-script' stderr output:
Error: error sending query: Could not send or receive, because of network error

2022-10-08 12:55:49,514 DEBG 'start-script' stdout output:
[debug] Show contents of hosts file

2022-10-08 12:55:49,514 DEBG 'start-script' stdout output:
127.0.0.1    localhost
::1    localhost ip6-localhost ip6-loopback
fe00::0    ip6-localnet
ff00::0    ip6-mcastprefix
ff02::1    ip6-allnodes
ff02::2    ip6-allrouters
172.17.0.4    0a8f5fc9d2e7

2022-10-08 12:55:49,519 DEBG 'start-script' stdout output:
[debug] Docker interface defined as eth0

2022-10-08 12:55:49,521 DEBG 'start-script' stdout output:
[info] Default route for container is 172.17.0.1

2022-10-08 12:55:49,523 DEBG 'start-script' stdout output:
[debug] Docker IP defined as 172.17.0.4

2022-10-08 12:55:49,525 DEBG 'start-script' stdout output:
[debug] Docker netmask defined as 255.255.0.0

2022-10-08 12:55:49,528 DEBG 'start-script' stdout output:
[info] Docker network defined as    172.17.0.0/16

2022-10-08 12:55:49,530 DEBG 'start-script' stdout output:
[info] Adding 192.168.31.0/24 as route via docker eth0

2022-10-08 12:55:49,531 DEBG 'start-script' stdout output:
[info] ip route defined as follows...
--------------------

2022-10-08 12:55:49,531 DEBG 'start-script' stdout output:
default via 172.17.0.1 dev eth0 
172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.4 
192.168.31.0/24 via 172.17.0.1 dev eth0 

2022-10-08 12:55:49,531 DEBG 'start-script' stdout output:
local 127.0.0.0/8 dev lo table local proto kernel scope host src 127.0.0.1 
local 127.0.0.1 dev lo table local proto kernel scope host src 127.0.0.1 
broadcast 127.255.255.255 dev lo table local proto kernel scope link src 127.0.0.1 
local 172.17.0.4 dev eth0 table local proto kernel scope host src 172.17.0.4 
broadcast 172.17.255.255 dev eth0 table local proto kernel scope link src 172.17.0.4 
--------------------
[debug] Modules currently loaded for kernel

2022-10-08 12:55:49,533 DEBG 'start-script' stdout output:
Module                  Size  Used by
xt_mark                16384  0
xt_nat                 16384  16
veth                   32768  0
cmac                   16384  1
cifs                  806912  4
asn1_decoder           16384  1 cifs
cifs_arc4              16384  1 cifs
cifs_md4               16384  1 cifs
dns_resolver           16384  1 cifs
xt_CHECKSUM            16384  1
ipt_REJECT             16384  2
nf_reject_ipv4         16384  1 ipt_REJECT
xt_tcpudp              16384  41
ip6table_mangle        16384  1
ip6table_nat           16384  1
nvidia_uvm           1298432  0
iptable_mangle         16384  1
vhost_net              28672  0
tun                    53248  1 vhost_net
vhost                  40960  1 vhost_net
vhost_iotlb            16384  1 vhost
tap                    24576  1 vhost_net
xt_conntrack           16384  3
xt_MASQUERADE          16384  13
nf_conntrack_netlink    49152  0
nfnetlink              16384  2 nf_conntrack_netlink
xfrm_user              36864  1
xfrm_algo              16384  1 xfrm_user
xt_addrtype            16384  2
iptable_nat            16384  3
nf_nat                 49152  4 ip6table_nat,xt_nat,iptable_nat,xt_MASQUERADE
nf_conntrack          139264  5 xt_conntrack,nf_nat,xt_nat,nf_conntrack_netlink,xt_MASQUERADE
nf_defrag_ipv6         16384  1 nf_conntrack
nf_defrag_ipv4         16384  1 nf_conntrack
br_netfilter           32768  0
xfs                  1654784  8
nfsd                  507904  3
auth_rpcgss           135168  1 nfsd
oid_registry           16384  2 cifs,auth_rpcgss
lockd                 102400  1 nfsd
grace                  16384  2 nfsd,lockd
sunrpc                569344  13 nfsd,auth_rpcgss,lockd
md_mod                 53248  5
efivarfs               16384  1
ip6table_filter        16384  1
ip6_tables             28672  3 ip6table_filter,ip6table_nat,ip6table_mangle
iptable_filter         16384  1
ip_tables              28672  3 iptable_filter,iptable_nat,iptable_mangle
x_tables               45056  16 ip6table_filter,xt_conntrack,iptable_filter,ip6table_nat,xt_tcpudp,xt_addrtype,xt_CHECKSUM,xt_nat,ip6_tables,ipt_REJECT,ip_tables,iptable_nat,ip6table_mangle,xt_MASQUERADE,iptable_mangle,xt_mark
bridge                262144  1 br_netfilter
stp                    16384  1 bridge
llc                    16384  2 bridge,stp
bonding               151552  0
tls                   106496  1 bonding
ipv6                  532480  168 bridge,br_netfilter,ip6table_mangle,bonding
e1000e                200704  0
r8169                  81920  0
realtek                24576  1
wmi_bmof               16384  0
x86_pkg_temp_thermal    16384  0
intel_powerclamp       16384  0
coretemp               16384  0
kvm_intel             270336  0
kvm                   958464  1 kvm_intel
crct10dif_pclmul       16384  1
crc32_pclmul           16384  0
crc32c_intel           24576  2
ghash_clmulni_intel    16384  0
aesni_intel           380928  1
crypto_simd            16384  1 aesni_intel
cryptd                 24576  2 crypto_simd,ghash_clmulni_intel
rapl                   16384  0
intel_cstate           20480  0
intel_uncore          200704  0
nvidia_drm             65536  0
nvidia_modeset       1146880  1 nvidia_drm
nvidia              40816640  2 nvidia_uvm,nvidia_modeset
i2c_i801               24576  0
i2c_smbus              16384  1 i2c_i801
drm_kms_helper        159744  1 nvidia_drm
ahci                   45056  7
libahci                40960  1 ahci
drm                   475136  4 drm_kms_helper,nvidia,nvidia_drm
joydev                 24576  0
nvme                   49152  2
nvme_core             106496  3 nvme
i2c_core               86016  5 drm_kms_helper,nvidia,i2c_smbus,i2c_i801,drm
syscopyarea            16384  1 drm_kms_helper
sysfillrect            16384  1 drm_kms_helper
sysimgblt              16384  1 drm_kms_helper
fb_sys_fops            16384  1 drm_kms_helper
wmi                    28672  1 wmi_bmof
video                  53248  0
backlight              20480  3 video,drm,nvidia_modeset
tpm_crb                16384  0
tpm_tis                16384  0
tpm_tis_core           204
2022-10-08 12:55:49,533 DEBG 'start-script' stdout output:
80  1 tpm_tis
tpm                    73728  3 tpm_tis,tpm_crb,tpm_tis_core
acpi_tad               16384  0
acpi_pad               24576  0
button                 20480  0
unix                   53248  503

2022-10-08 12:55:49,534 DEBG 'start-script' stdout output:
iptable_mangle         16384  1
ip_tables              28672  3 iptable_filter,iptable_nat,iptable_mangle
x_tables               45056  16 ip6table_filter,xt_conntrack,iptable_filter,ip6table_nat,xt_tcpudp,xt_addrtype,xt_CHECKSUM,xt_nat,ip6_tables,ipt_REJECT,ip_tables,iptable_nat,ip6table_mangle,xt_MASQUERADE,iptable_mangle,xt_mark

2022-10-08 12:55:49,534 DEBG 'start-script' stdout output:
[info] iptable_mangle support detected, adding fwmark for tables

2022-10-08 12:55:49,584 DEBG 'start-script' stdout output:
[info] iptables defined as follows...
--------------------

2022-10-08 12:55:49,584 DEBG 'start-script' stdout output:
-P INPUT DROP
-P FORWARD DROP
-P OUTPUT DROP
-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A INPUT -s 23.105.174.4/32 -i eth0 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 8112 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 9696 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 9696 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 7878 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 7878 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8989 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 8989 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 9897 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 9897 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 6789 -j ACCEPT
-A INPUT -i eth0 -p udp -m udp --dport 6789 -j ACCEPT
-A INPUT -s 192.168.31.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT
-A INPUT -s 192.168.31.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --dport 8118 -j ACCEPT
-A INPUT -s 192.168.31.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --sport 9696 -j ACCEPT
-A INPUT -s 192.168.31.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --sport 7878 -j ACCEPT
-A INPUT -s 192.168.31.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --sport 8989 -j ACCEPT
-A INPUT -s 192.168.31.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --sport 9897 -j ACCEPT
-A INPUT -s 192.168.31.0/24 -d 172.17.0.0/16 -i eth0 -p tcp -m tcp --sport 6789 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -i tun0 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A OUTPUT -d 23.105.174.4/32 -o eth0 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 8112 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 9696 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 9696 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 7878 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 7878 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8989 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 8989 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 9897 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 9897 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 6789 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 6789 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.31.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.31.0/24 -o eth0 -p tcp -m tcp --sport 8118 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.31.0/24 -o eth0 -p tcp -m tcp --dport 9696 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.31.0/24 -o eth0 -p tcp -m tcp --dport 7878 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.31.0/24 -o eth0 -p tcp -m tcp --dport 8989 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.31.0/24 -o eth0 -p tcp -m tcp --dport 9897 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 192.168.31.0/24 -o eth0 -p tcp -m tcp --dport 6789 -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o tun0 -j ACCEPT

2022-10-08 12:55:49,585 DEBG 'start-script' stdout output:
--------------------

2022-10-08 12:55:49,585 DEBG 'start-script' stdout output:
[debug] VPN remote configuration options as follows...
[debug] VPN remote server is defined as '23.105.174.4'
[debug] VPN remote port is defined as '1194'
[debug] VPN remote protocol is defined as 'udp'
[debug] VPN remote ip is defined as '23.105.174.4'

2022-10-08 12:55:49,585 DEBG 'start-script' stdout output:
[debug] OpenVPN command line:- /usr/bin/openvpn --reneg-sec 0 --mute-replay-warnings --auth-nocache --setenv VPN_PROV 'custom' --setenv VPN_CLIENT 'openvpn' --setenv DEBUG 'true' --setenv VPN_DEVICE_TYPE 'tun0' --setenv VPN_ENABLED 'yes' --setenv VPN_REMOTE_SERVER '23.105.174.4' --setenv APPLICATION 'deluge' --script-security 2 --writepid /root/openvpn.pid --remap-usr1 SIGHUP --log-append /dev/stdout --pull-filter ignore 'up' --pull-filter ignore 'down' --pull-filter ignore 'route-ipv6' --pull-filter ignore 'ifconfig-ipv6' --pull-filter ignore 'tun-ipv6' --pull-filter ignore 'dhcp-option DNS6' --pull-filter ignore 'persist-tun' --pull-filter ignore 'reneg-sec' --up /root/openvpnup.sh --up-delay --up-restart --auth-user-pass credentials.conf --cd /config/openvpn --config '/config/openvpn/us8735.nordvpn.com.udp.ovpn' --remote 23.105.174.4 1194 udp --remote-random
[info] Starting OpenVPN (non daemonised)...

2022-10-08 12:55:49,600 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.

2022-10-08 12:55:49,600 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 WARNING: file 'credentials.conf' is group or others accessible
2022-10-08 12:55:49 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-10-08 12:55:49 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10

2022-10-08 12:55:49,601 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 WARNING: --ping should normally be used with --ping-restart or --ping-exit
2022-10-08 12:55:49 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2022-10-08 12:55:49,601 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-10-08 12:55:49 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication

2022-10-08 12:55:49,601 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 TCP/UDP: Preserving recently used remote address: [AF_INET]23.105.174.4:1194

2022-10-08 12:55:49,601 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-10-08 12:55:49 UDP link local: (not bound)
2022-10-08 12:55:49 UDP link remote: [AF_INET]23.105.174.4:1194

2022-10-08 12:55:49,613 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 TLS: Initial packet from [AF_INET]23.105.174.4:1194, sid=a089e6b1 788bea05

2022-10-08 12:55:49,639 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 VERIFY OK: depth=2, C=PA, O=NordVPN, CN=NordVPN Root CA

2022-10-08 12:55:49,639 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 VERIFY OK: depth=1, C=PA, O=NordVPN, CN=NordVPN CA7

2022-10-08 12:55:49,639 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 VERIFY KU OK
2022-10-08 12:55:49 Validating certificate extended key usage
2022-10-08 12:55:49 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2022-10-08 12:55:49 VERIFY EKU OK
2022-10-08 12:55:49 VERIFY X509NAME OK: CN=us8735.nordvpn.com
2022-10-08 12:55:49 VERIFY OK: depth=0, CN=us8735.nordvpn.com

2022-10-08 12:55:49,650 DEBG 'start-script' stdout output:
2022-10-08 12:55:49 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 4096 bit RSA, signature: RSA-SHA512
2022-10-08 12:55:49 [us8735.nordvpn.com] Peer Connection Initiated with [AF_INET]23.105.174.4:1194

2022-10-08 12:55:50,814 DEBG 'start-script' stdout output:
2022-10-08 12:55:50 SENT CONTROL [us8735.nordvpn.com]: 'PUSH_REQUEST' (status=1)

2022-10-08 12:55:50,824 DEBG 'start-script' stdout output:
2022-10-08 12:55:50 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 103.86.96.100,dhcp-option DNS 103.86.99.100,sndbuf 524288,rcvbuf 524288,explicit-exit-notify,comp-lzo no,route-gateway 10.8.1.1,topology subnet,ping 60,ping-restart 180,ifconfig 10.8.1.8 255.255.255.0,peer-id 5,cipher AES-256-GCM'

2022-10-08 12:55:50,825 DEBG 'start-script' stdout output:
2022-10-08 12:55:50 OPTIONS IMPORT: timers and/or timeouts modified
2022-10-08 12:55:50 OPTIONS IMPORT: explicit notify parm(s) modified
2022-10-08 12:55:50 OPTIONS IMPORT: compression parms modified
2022-10-08 12:55:50 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
2022-10-08 12:55:50 Socket Buffers: R=[212992->1048576] S=[212992->1048576]
2022-10-08 12:55:50 OPTIONS IMPORT: --ifconfig/up options modified
2022-10-08 12:55:50 OPTIONS IMPORT: route options modified
2022-10-08 12:55:50 OPTIONS IMPORT: route-related options modified
2022-10-08 12:55:50 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2022-10-08 12:55:50 OPTIONS IMPORT: peer-id set
2022-10-08 12:55:50 OPTIONS IMPORT: adjusting link_mtu to 1657
2022-10-08 12:55:50 OPTIONS IMPORT: data channel crypto options modified
2022-10-08 12:55:50 Data Channel: using negotiated cipher 'AES-256-GCM'
2022-10-08 12:55:50 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2022-10-08 12:55:50 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2022-10-08 12:55:50 net_route_v4_best_gw query: dst 0.0.0.0
2022-10-08 12:55:50 net_route_v4_best_gw result: via 172.17.0.1 dev eth0
2022-10-08 12:55:50 ROUTE_GATEWAY 172.17.0.1/255.255.0.0 IFACE=eth0 HWADDR=02:42:ac:11:00:04
2022-10-08 12:55:50 TUN/TAP device tun0 opened
2022-10-08 12:55:50 net_iface_mtu_set: mtu 1500 for tun0
2022-10-08 12:55:50 net_iface_up: set tun0 up
2022-10-08 12:55:50 net_addr_v4_add: 10.8.1.8/24 dev tun0
2022-10-08 12:55:50 /root/openvpnup.sh tun0 1500 1585 10.8.1.8 255.255.255.0 init

2022-10-08 12:55:50,826 DEBG 'start-script' stdout output:
2022-10-08 12:55:50 net_route_v4_add: 23.105.174.4/32 via 172.17.0.1 dev [NULL] table 0 metric -1

2022-10-08 12:55:50,826 DEBG 'start-script' stdout output:
2022-10-08 12:55:50 net_route_v4_add: 0.0.0.0/1 via 10.8.1.1 dev [NULL] table 0 metric -1
2022-10-08 12:55:50 net_route_v4_add: 128.0.0.0/1 via 10.8.1.1 dev [NULL] table 0 metric -1
2022-10-08 12:55:50 Initialization Sequence Completed

2022-10-08 12:55:50,827 DEBG 'start-script' stdout output:
[debug] Waiting for valid local and gateway IP addresses from tunnel...

2022-10-08 12:55:50,828 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 12:55:51,832 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 12:55:51,835 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 12:55:51,835 DEBG 'start-script' stdout output:
[debug] Valid local IP address from tunnel acquired '10.8.1.8'

2022-10-08 12:55:51,835 DEBG 'start-script' stdout output:
[debug] Checking we can resolve name 'www.google.com' to address...

2022-10-08 12:55:51,890 DEBG 'watchdog-script' stdout output:
[debug] Checking we can resolve name 'www.google.com' to address...

2022-10-08 12:56:51,900 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 11 retries left

2022-10-08 12:56:51,953 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 11 retries left

2022-10-08 12:57:56,965 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 10 retries left

2022-10-08 12:57:57,013 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 10 retries left

2022-10-08 12:59:02,028 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 9 retries left

2022-10-08 12:59:02,075 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 9 retries left

2022-10-08 13:00:07,089 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 8 retries left

2022-10-08 13:00:07,139 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 8 retries left

2022-10-08 13:01:12,154 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 7 retries left

2022-10-08 13:01:12,203 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 7 retries left

2022-10-08 13:02:17,212 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 6 retries left

2022-10-08 13:02:17,268 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 6 retries left

2022-10-08 13:03:22,277 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 5 retries left

2022-10-08 13:03:22,334 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 5 retries left

2022-10-08 13:04:27,342 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 4 retries left

2022-10-08 13:04:27,396 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 4 retries left

2022-10-08 13:05:32,407 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 3 retries left

2022-10-08 13:05:32,460 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 3 retries left

2022-10-08 13:06:37,472 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 2 retries left

2022-10-08 13:06:37,525 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 2 retries left

2022-10-08 13:07:42,538 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 1 retries left

2022-10-08 13:07:42,586 DEBG 'watchdog-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 1 retries left

2022-10-08 13:07:47,539 DEBG 'start-script' stdout output:
[info] DNS failure, creating file '/tmp/dnsfailure' to indicate failure...

2022-10-08 13:07:47,542 DEBG 'start-script' stdout output:
[info] Attempting to get external IP using 'http://checkip.amazonaws.com'...

2022-10-08 13:07:47,587 DEBG 'watchdog-script' stdout output:
[info] DNS failure, creating file '/tmp/dnsfailure' to indicate failure...

2022-10-08 13:07:47,588 DEBG 'watchdog-script' stderr output:
chmod: changing permissions of '/tmp/dnsfailure': Operation not permitted

2022-10-08 13:07:49,606 DEBG 'start-script' stdout output:
[info] Sending SIGTERM (-15) to 'openvpn' due to dns failure...

2022-10-08 13:07:49,610 DEBG 'start-script' stdout output:
2022-10-08 13:07:49 event_wait : Interrupted system call (code=4)
2022-10-08 13:07:49 SIGTERM received, sending exit notification to peer

2022-10-08 13:07:50,802 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 net_route_v4_del: 23.105.174.4/32 via 172.17.0.1 dev [NULL] table 0 metric -1
2022-10-08 13:07:50 net_route_v4_del: 0.0.0.0/1 via 10.8.1.1 dev [NULL] table 0 metric -1

2022-10-08 13:07:50,802 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 net_route_v4_del: 128.0.0.0/1 via 10.8.1.1 dev [NULL] table 0 metric -1
2022-10-08 13:07:50 Closing TUN/TAP interface
2022-10-08 13:07:50 net_addr_v4_del: 10.8.1.8 dev tun0

2022-10-08 13:07:50,818 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 SIGTERM[soft,exit-with-notification] received, process exiting

2022-10-08 13:07:50,819 DEBG 'start-script' stdout output:
[debug] VPN remote configuration options as follows...
[debug] VPN remote server is defined as '23.105.174.4'
[debug] VPN remote port is defined as '1194'
[debug] VPN remote protocol is defined as 'udp'
[debug] VPN remote ip is defined as '23.105.174.4'

2022-10-08 13:07:50,819 DEBG 'start-script' stdout output:
[debug] OpenVPN command line:- /usr/bin/openvpn --reneg-sec 0 --mute-replay-warnings --auth-nocache --setenv VPN_PROV 'custom' --setenv VPN_CLIENT 'openvpn' --setenv DEBUG 'true' --setenv VPN_DEVICE_TYPE 'tun0' --setenv VPN_ENABLED 'yes' --setenv VPN_REMOTE_SERVER '23.105.174.4' --setenv APPLICATION 'deluge' --script-security 2 --writepid /root/openvpn.pid --remap-usr1 SIGHUP --log-append /dev/stdout --pull-filter ignore 'up' --pull-filter ignore 'down' --pull-filter ignore 'route-ipv6' --pull-filter ignore 'ifconfig-ipv6' --pull-filter ignore 'tun-ipv6' --pull-filter ignore 'dhcp-option DNS6' --pull-filter ignore 'persist-tun' --pull-filter ignore 'reneg-sec' --up /root/openvpnup.sh --up-delay --up-restart --auth-user-pass credentials.conf --cd /config/openvpn --config '/config/openvpn/us8735.nordvpn.com.udp.ovpn' --remote 23.105.174.4 1194 udp --remote-random
[info] Starting OpenVPN (non daemonised)...

2022-10-08 13:07:50,822 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.

2022-10-08 13:07:50,822 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 WARNING: file 'credentials.conf' is group or others accessible

2022-10-08 13:07:50,822 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-10-08 13:07:50 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10

2022-10-08 13:07:50,823 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 WARNING: --ping should normally be used with --ping-restart or --ping-exit
2022-10-08 13:07:50 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2022-10-08 13:07:50,823 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-10-08 13:07:50 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication

2022-10-08 13:07:50,823 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 TCP/UDP: Preserving recently used remote address: [AF_INET]23.105.174.4:1194

2022-10-08 13:07:50,823 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-10-08 13:07:50 UDP link local: (not bound)
2022-10-08 13:07:50 UDP link remote: [AF_INET]23.105.174.4:1194

2022-10-08 13:07:50,835 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 TLS: Initial packet from [AF_INET]23.105.174.4:1194, sid=7774aa59 ddceec61

2022-10-08 13:07:50,862 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 VERIFY OK: depth=2, C=PA, O=NordVPN, CN=NordVPN Root CA
2022-10-08 13:07:50 VERIFY OK: depth=1, C=PA, O=NordVPN, CN=NordVPN CA7

2022-10-08 13:07:50,863 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 VERIFY KU OK
2022-10-08 13:07:50 Validating certificate extended key usage
2022-10-08 13:07:50 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2022-10-08 13:07:50 VERIFY EKU OK
2022-10-08 13:07:50 VERIFY X509NAME OK: CN=us8735.nordvpn.com
2022-10-08 13:07:50 VERIFY OK: depth=0, CN=us8735.nordvpn.com

2022-10-08 13:07:50,874 DEBG 'start-script' stdout output:
2022-10-08 13:07:50 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 4096 bit RSA, signature: RSA-SHA512
2022-10-08 13:07:50 [us8735.nordvpn.com] Peer Connection Initiated with [AF_INET]23.105.174.4:1194

2022-10-08 13:07:51,988 DEBG 'start-script' stdout output:
2022-10-08 13:07:51 SENT CONTROL [us8735.nordvpn.com]: 'PUSH_REQUEST' (status=1)
2022-10-08 13:07:51 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 103.86.96.100,dhcp-option DNS 103.86.99.100,sndbuf 524288,rcvbuf 524288,explicit-exit-notify,comp-lzo no,route-gateway 10.8.2.1,topology subnet,ping 60,ping-restart 180,ifconfig 10.8.2.5 255.255.255.0,peer-id 4,cipher AES-256-GCM'
2022-10-08 13:07:51 OPTIONS IMPORT: timers and/or timeouts modified
2022-10-08 13:07:51 OPTIONS IMPORT: explicit notify parm(s) modified
2022-10-08 13:07:51 OPTIONS IMPORT: compression parms modified
2022-10-08 13:07:51 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
2022-10-08 13:07:51 Socket Buffers: R=[212992->1048576] S=[212992->1048576]
2022-10-08 13:07:51 OPTIONS IMPORT: --ifconfig/up options modified
2022-10-08 13:07:51 OPTIONS IMPORT: route options modified
2022-10-08 13:07:51 OPTIONS IMPORT: route-related options modified
2022-10-08 13:07:51 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2022-10-08 13:07:51 OPTIONS IMPORT: peer-id set
2022-10-08 13:07:51 OPTIONS IMPORT: adjusting link_mtu to 1657
2022-10-08 13:07:51 OPTIONS IMPORT: data channel crypto options modified
2022-10-08 13:07:51 Data Channel: using negotiated cipher 'AES-256-GCM'
2022-10-08 13:07:51 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2022-10-08 13:07:51 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key

2022-10-08 13:07:51,988 DEBG 'start-script' stdout output:
2022-10-08 13:07:51 net_route_v4_best_gw query: dst 0.0.0.0
2022-10-08 13:07:51 net_route_v4_best_gw result: via 172.17.0.1 dev eth0
2022-10-08 13:07:51 ROUTE_GATEWAY 172.17.0.1/255.255.0.0 IFACE=eth0 HWADDR=02:42:ac:11:00:04
2022-10-08 13:07:51 TUN/TAP device tun0 opened
2022-10-08 13:07:51 net_iface_mtu_set: mtu 1500 for tun0
2022-10-08 13:07:51 net_iface_up: set tun0 up
2022-10-08 13:07:51 net_addr_v4_add: 10.8.2.5/24 dev tun0
2022-10-08 13:07:51 /root/openvpnup.sh tun0 1500 1585 10.8.2.5 255.255.255.0 init

2022-10-08 13:07:51,990 DEBG 'start-script' stdout output:
2022-10-08 13:07:51 net_route_v4_add: 23.105.174.4/32 via 172.17.0.1 dev [NULL] table 0 metric -1
2022-10-08 13:07:51 net_route_v4_add: 0.0.0.0/1 via 10.8.2.1 dev [NULL] table 0 metric -1
2022-10-08 13:07:51 net_route_v4_add: 128.0.0.0/1 via 10.8.2.1 dev [NULL] table 0 metric -1
2022-10-08 13:07:51 Initialization Sequence Completed

2022-10-08 13:07:51,991 DEBG 'start-script' stdout output:
[debug] Waiting for valid local and gateway IP addresses from tunnel...

2022-10-08 13:07:51,992 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 13:07:52,996 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 13:07:52,999 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 13:07:53,000 DEBG 'start-script' stdout output:
[debug] Valid local IP address from tunnel acquired '10.8.2.5'

2022-10-08 13:07:53,000 DEBG 'start-script' stdout output:
[debug] Checking we can resolve name 'www.google.com' to address...

2022-10-08 13:08:10,577 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 13:08:10,578 DEBG 'start-script' stdout output:
[info] Failed on last attempt, attempting to get external IP using 'http://whatismyip.akamai.com'...

2022-10-08 13:08:38,607 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 13:08:38,608 DEBG 'start-script' stdout output:
[info] Failed on last attempt, attempting to get external IP using 'https://ifconfig.co/ip'...

2022-10-08 13:08:53,060 DEBG 'start-script' stdout output:
[debug] Having issues resolving name 'www.google.com'
[debug] Retrying in 5 secs...
[debug] 11 retries left

2022-10-08 13:09:06,638 DEBG 'start-script' stdout output:
egrep: warning: egrep is obsolescent; using grep -E

2022-10-08 13:09:06,638 DEBG 'start-script' stdout output:
[info] Failed on last attempt, attempting to get external IP using 'https://showextip.azurewebsites.net'...

2022-10-08 13:09:10,643 WARN received SIGTERM indicating exit request
2022-10-08 13:09:10,644 DEBG killing watchdog-script (pid 184) with signal SIGTERM
2022-10-08 13:09:10,644 INFO waiting for start-script, watchdog-script to die
2022-10-08 13:09:10,644 DEBG fd 11 closed, stopped monitoring <POutputDispatcher at 22547291294016 for <Subprocess at 22547291293344 with name watchdog-script in state STOPPING> (stdout)>
2022-10-08 13:09:10,644 DEBG fd 15 closed, stopped monitoring <POutputDispatcher at 22547291294064 for <Subprocess at 22547291293344 with name watchdog-script in state STOPPING> (stderr)>
2022-10-08 13:09:10,645 INFO stopped: watchdog-script (exit status 143)
2022-10-08 13:09:10,645 DEBG received SIGCHLD indicating a child quit
2022-10-08 13:09:10,645 DEBG killing start-script (pid 183) with signal SIGTERM
2022-10-08 13:09:11,645 DEBG fd 8 closed, stopped monitoring <POutputDispatcher at 22547292418880 for <Subprocess at 22547292418784 with name start-script in state STOPPING> (stdout)>
2022-10-08 13:09:11,646 DEBG fd 10 closed, stopped monitoring <POutputDispatcher at 22547291293632 for <Subprocess at 22547292418784 with name start-script in state STOPPING> (stderr)>
2022-10-08 13:09:11,646 INFO stopped: start-script (terminated by SIGTERM)
2022-10-08 13:09:11,646 DEBG received SIGCHLD indicating a child quit

 

Edited by Kevin McTague
Link to comment

I've been running this for probably 2+ years and everything's been great. About 3-4 months ago, however, I started having issues connecting to the WebUI:

 

Quote

Firefox can’t establish a connection to the server at 192.168.1.5:8112.

 

The log looks like this:

2022-10-09 18:48:57,206 DEBG 'start-script' stdout output:
2022-10-09 18:48:57 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2022-10-09 18:48:57 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-10-09 18:48:57 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-10-09 18:48:57 TCP/UDP: Preserving recently used remote address: [AF_INET]209.58.163.227:80
2022-10-09 18:48:57 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-10-09 18:48:57 UDP link local: (not bound)
2022-10-09 18:48:57 UDP link remote: [AF_INET]209.58.163.227:80

2022-10-09 18:49:58,036 DEBG 'start-script' stdout output:
2022-10-09 18:49:58 [UNDEF] Inactivity timeout (--ping-restart), restarting
2022-10-09 18:49:58 SIGHUP[soft,ping-restart] received, process restarting

2022-10-09 18:49:58,036 DEBG 'start-script' stdout output:
2022-10-09 18:49:58 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
2022-10-09 18:49:58 WARNING: file 'credentials.conf' is group or others accessible
2022-10-09 18:49:58 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-10-09 18:49:58 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10

2022-10-09 18:49:58,036 DEBG 'start-script' stdout output:
2022-10-09 18:49:58 Restart pause, 5 second(s)

2022-10-09 18:50:03,036 DEBG 'start-script' stdout output:
2022-10-09 18:50:03 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2022-10-09 18:50:03,037 DEBG 'start-script' stdout output:
2022-10-09 18:50:03 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-10-09 18:50:03 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication

2022-10-09 18:50:03,037 DEBG 'start-script' stdout output:
2022-10-09 18:50:03 TCP/UDP: Preserving recently used remote address: [AF_INET]209.58.163.227:80
2022-10-09 18:50:03 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-10-09 18:50:03 UDP link local: (not bound)
2022-10-09 18:50:03 UDP link remote: [AF_INET]209.58.163.227:80

2022-10-09 18:51:03,635 DEBG 'start-script' stdout output:
2022-10-09 18:51:03 [UNDEF] Inactivity timeout (--ping-restart), restarting
2022-10-09 18:51:03 SIGHUP[soft,ping-restart] received, process restarting

2022-10-09 18:51:03,635 DEBG 'start-script' stdout output:
2022-10-09 18:51:03 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
2022-10-09 18:51:03 WARNING: file 'credentials.conf' is group or others accessible
2022-10-09 18:51:03 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-10-09 18:51:03 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10

2022-10-09 18:51:03,635 DEBG 'start-script' stdout output:
2022-10-09 18:51:03 Restart pause, 5 second(s)

2022-10-09 18:51:08,636 DEBG 'start-script' stdout output:
2022-10-09 18:51:08 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2022-10-09 18:51:08,636 DEBG 'start-script' stdout output:
2022-10-09 18:51:08 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-10-09 18:51:08 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication

2022-10-09 18:51:08,636 DEBG 'start-script' stdout output:
2022-10-09 18:51:08 TCP/UDP: Preserving recently used remote address: [AF_INET]209.58.163.227:80
2022-10-09 18:51:08 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-10-09 18:51:08 UDP link local: (not bound)
2022-10-09 18:51:08 UDP link remote: [AF_INET]209.58.163.227:80

2022-10-09 18:52:08,876 DEBG 'start-script' stdout output:
2022-10-09 18:52:08 [UNDEF] Inactivity timeout (--ping-restart), restarting

2022-10-09 18:52:08,876 DEBG 'start-script' stdout output:
2022-10-09 18:52:08 SIGHUP[soft,ping-restart] received, process restarting

2022-10-09 18:52:08,876 DEBG 'start-script' stdout output:
2022-10-09 18:52:08 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.

2022-10-09 18:52:08,876 DEBG 'start-script' stdout output:
2022-10-09 18:52:08 WARNING: file 'credentials.conf' is group or others accessible
2022-10-09 18:52:08 OpenVPN 2.5.7 [git:makepkg/a0f9a3e9404c8321+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 31 2022
2022-10-09 18:52:08 library versions: OpenSSL 1.1.1q  5 Jul 2022, LZO 2.10
2022-10-09 18:52:08 Restart pause, 5 second(s)

2022-10-09 18:52:13,877 DEBG 'start-script' stdout output:
2022-10-09 18:52:13 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2022-10-09 18:52:13,877 DEBG 'start-script' stdout output:
2022-10-09 18:52:13 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2022-10-09 18:52:13 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication

2022-10-09 18:52:13,877 DEBG 'start-script' stdout output:
2022-10-09 18:52:13 TCP/UDP: Preserving recently used remote address: [AF_INET]209.58.163.227:80
2022-10-09 18:52:13 Socket Buffers: R=[212992->212992] S=[212992->212992]
2022-10-09 18:52:13 UDP link local: (not bound)
2022-10-09 18:52:13 UDP link remote: [AF_INET]209.58.163.227:80

 

Eventually, several hours later, I can connect to the UI and everything is good. If I get impatient, sometimes I can connect after restarting the container one or two times.

 

Any suggestions on what to take a look at?

Link to comment

Hi there so after years of Deluge vpn working without issues last issue was in 2020 when PIA changed the servers. Today out of the blue now my deluge doesnt download anything. I'm able to get to the web interface without issues I tried several ovpn files and also tried disabling vpn and using my real Ip and it doesnt download anything have tried several torrents and nothing. I must specify that with the vpn it tries to start with horrible speed but drops to 0. I'm not sure where to to troubleshoot next  please advise

Link to comment

Hey, I can no longer access Deluge vpn's webui. I didn't touch anything before it stopped working, so I am very confused. In the config, my lan network setting is correct, my vpn username and password are correct as well. For sanity sake, I redownloaded the openvpn files (using Mullvad vpn) and it still is not working.

 

Again, it was working for a while until it just wasn't. I'm very confused and don't know what to do. The Deluge vpn container is up to date and so is Unraid (v6.11.1).

delugevpn log.txt

  • Like 1
Link to comment
On 10/8/2022 at 6:28 PM, Kevin McTague said:

[debug] Having issues resolving name 'www.google.com'

looks like name resolution issues.

On 10/8/2022 at 6:28 PM, Kevin McTague said:

2022-10-08 12:54:48.145331 [info] NAME_SERVERS defined as '217.114.38.10,217.114.38.42,217.114.38.194,23.105.174.4'

the above is what you currently have defined, try the defaults instead:-

 

NAME_SERVERS=84.200.69.80,37.235.1.174,1.1.1.1,37.235.1.177,84.200.70.40,1.0.0.1

 

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.