[Support] binhex - DelugeVPN


Recommended Posts

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

 

 

supervisor.txt

Link to comment

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

 

Link to comment

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

Here are the contents of the file, changing the port did not seem to make a difference.

 

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1198 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

Link to comment

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

Here are the contents of the file, changing the port did not seem to make a difference.

 

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1198 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

1198 looks correct according to the ovpn file, I'm assuming you also have downloaded the ca.crt file and put it in the same folder yes?

 

Sent from my SM-G900F using Tapatalk

 

 

Link to comment

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

Here are the contents of the file, changing the port did not seem to make a difference.

 

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1198 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

1198 looks correct according to the ovpn file, I'm assuming you also have downloaded the ca.crt file and put it in the same folder yes?

 

Sent from my SM-G900F using Tapatalk

 

Yes, the certificate and other files are there.

 

Here are the contents of the core.conf file too

 

{

  "file": 1,

  "format": 1

}{

  "info_sent": 0.0,

  "lsd": true,

  "max_download_speed": -1.0,

  "send_info": false,

  "natpmp": true,

  "move_completed_path": "/home/nobody/Completed",

  "peer_tos": "0x00",

  "enc_in_policy": 1,

  "queue_new_to_top": false,

  "ignore_limits_on_local_network": true,

  "rate_limit_ip_overhead": false,

  "daemon_port": 58846,

  "torrentfiles_location": "/home/nobody/Torrents",

  "max_active_limit": 8,

  "geoip_db_location": "/usr/share/GeoIP/GeoIP.dat",

  "upnp": true,

  "utpex": true,

  "max_active_downloading": 3,

  "max_active_seeding": 5,

  "allow_remote": true,

  "outgoing_ports": [

    0,

    0

  ],

  "enabled_plugins": [

  ],

  "max_half_open_connections": 50,

  "download_location": "/home/nobody/Incompletes",

  "compact_allocation": false,

  "max_upload_speed": -1.0,

  "plugins_location": "/config/plugins",

  "max_connections_global": 200,

  "enc_prefer_rc4": true,

  "cache_expiry": 60,

  "dht": true,

  "stop_seed_at_ratio": false,

  "stop_seed_ratio": 2.0,

  "max_download_speed_per_torrent": -1,

  "prioritize_first_last_pieces": false,

  "max_upload_speed_per_torrent": -1,

  "auto_managed": true,

  "enc_level": 2,

  "copy_torrent_file": false,

  "max_connections_per_second": 20,

  "listen_ports": [

    6881,

    6891

  ],

  "max_connections_per_torrent": -1,

  "del_copy_torrent_file": false,

  "move_completed": false,

  "autoadd_enable": false,

  "proxies": {

    "peer": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    },

    "web_seed": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    },

    "tracker": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    },

    "dht": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    }

  },

  "dont_count_slow_torrents": false,

  "add_paused": false,

  "random_outgoing_ports": true,

  "max_upload_slots_per_torrent": -1,

  "new_release_check": true,

  "enc_out_policy": 1,

  "seed_time_ratio_limit": 7.0,

  "remove_seed_at_ratio": false,

  "autoadd_location": "/home/nobody/Watched",

  "max_upload_slots_global": 4,

  "seed_time_limit": 180,

  "cache_size": 512,

  "share_ratio_limit": 2.0,

  "random_port": true,

  "listen_interface": "8112"

}

Screen_Shot_2017-01-28_at_5_10.39_PM.png.255a0cca2fb9525a3add1c712d79c819.png

Link to comment

Can you please set debug to true and re run then post the log again.

 

Sent from my SM-G900F using Tapatalk

 

Created by...

___.  .__      .__                 

\_ |__ |__| ____ |  |__  ____ ___  ___

| __ \|  |/    \|  |  \_/ __ \\  \/  /

| \_\ \  |  |  \  Y  \  ___/ >    <

|___  /__|___|  /___|  /\___  >__/\_ \

    \/        \/    \/    \/      \/

  https://hub.docker.com/u/binhex/

 

2017-01-28 18:52:35.399268 [info] Host is running unRAID

2017-01-28 18:52:35.417848 [info] System information Linux 8a1d31e407ce 4.4.30-unRAID #2 SMP PREEMPT Sat Nov 5 12:09:05 PDT 2016 x86_64 GNU/Linux

2017-01-28 18:52:35.441026 [info] PUID defined as '99'

2017-01-28 18:52:35.465069 [info] PGID defined as '100'

2017-01-28 18:52:35.520719 [info] Permissions already set for volume mappings

2017-01-28 18:52:35.547646 [info] VPN_ENABLED defined as 'yes'

2017-01-28 18:52:35.568394 [info] VPN_PROV defined as 'custom'

2017-01-28 18:52:35.589527 [info] VPN_REMOTE defined as 'nl1-ovpn-udp.pointtoserver.com'

2017-01-28 18:52:35.608952 [info] VPN_PORT defined as '1194'

2017-01-28 18:52:35.628419 [info] VPN_PROTOCOL defined as 'udp'

2017-01-28 18:52:35.647994 [info] LAN_NETWORK defined as '10.11.12.0/24'

2017-01-28 18:52:35.667516 [info] NAME_SERVERS defined as '8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177'

2017-01-28 18:52:35.687061 [info] VPN_USER defined as ''

2017-01-28 18:52:35.706655 [info] VPN_PASS defined as ''

2017-01-28 18:52:35.726256 [info] VPN_DEVICE_TYPE defined as 'tun'

2017-01-28 18:52:35.745557 [info] STRONG_CERTS defined as 'no'

2017-01-28 18:52:35.765380 [info] ENABLE_PRIVOXY defined as 'no'

2017-01-28 18:52:35.783113 [info] Setting permissions on files/folders inside container...

2017-01-28 18:52:36,039 CRIT Set uid to user 0

2017-01-28 18:52:36,039 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing

2017-01-28 18:52:36,041 INFO supervisord started with pid 8

2017-01-28 18:52:37,043 INFO spawned: 'checkproc-script' with pid 105

2017-01-28 18:52:37,044 INFO spawned: 'start-script' with pid 106

2017-01-28 18:52:37,045 INFO spawned: 'deluge-script' with pid 107

2017-01-28 18:52:37,046 INFO spawned: 'deluge-web-script' with pid 108

2017-01-28 18:52:37,047 INFO spawned: 'privoxy-script' with pid 109

2017-01-28 18:52:37,057 DEBG 'start-script' stdout output:

[info] VPN is enabled, beginning configuration of VPN

 

2017-01-28 18:52:37,057 INFO success: checkproc-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,058 DEBG 'deluge-script' stdout output:

[info] Deluge config file already exists, skipping copy

 

2017-01-28 18:52:37,058 DEBG 'deluge-script' stdout output:

[info] VPN is enabled, checking VPN tunnel local ip is valid

 

2017-01-28 18:52:37,060 DEBG 'privoxy-script' stdout output:

[info] Privoxy set to disabled

 

2017-01-28 18:52:37,061 DEBG fd 31 closed, stopped monitoring <POutputDispatcher at 47617205265976 for <Subprocess at 47617205251392 with name privoxy-script in state RUNNING> (stderr)>

2017-01-28 18:52:37,061 DEBG fd 27 closed, stopped monitoring <POutputDispatcher at 47617205268424 for <Subprocess at 47617205251392 with name privoxy-script in state RUNNING> (stdout)>

2017-01-28 18:52:37,061 INFO exited: privoxy-script (exit status 0; expected)

2017-01-28 18:52:37,061 DEBG received SIGCLD indicating a child quit

2017-01-28 18:52:37,069 DEBG 'start-script' stdout output:

[debug] Environment variables defined as follows

BASH=/bin/bash

BASHOPTS=cmdhist:complete_fullquote:extquote:force_fignore:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath

BASH_ALIASES=()

BASH_ARGC=()

BASH_ARGV=()

BASH_CMDS=()

BASH_LINENO=([0]="0")

BASH_SOURCE=([0]="/root/start.sh")

BASH_VERSINFO=([0]="4" [1]="4" [2]="5" [3]="1" [4]="release" [5]="x86_64-unknown-linux-gnu")

BASH_VERSION='4.4.5(1)-release'

DEBUG=true

DIRSTACK=()

ENABLE_PRIVOXY=no

EUID=0

GROUPS=()

HOME=/home/nobody

HOSTNAME=8a1d31e407ce

HOSTTYPE=x86_64

HOST_OS=unRAID

IFS=$' \t\n'

LANG=en_GB.UTF-8

LAN_NETWORK=10.11.12.0/24

MACHTYPE=x86_64-unknown-linux-gnu

 

2017-01-28 18:52:37,069 DEBG 'start-script' stdout output:

NAME_SERVERS=8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177

OPTERR=1

OPTIND=1

OSTYPE=linux-gnu

PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

PGID=100

PIPESTATUS=([0]="0")

PPID=8

PS4='+ '

PUID=99

PWD=/

SHELL=/bin/bash

SHELLOPTS=braceexpand:hashall:interactive-comments

SHLVL=1

STRONG_CERTS=no

SUPERVISOR_ENABLED=1

SUPERVISOR_GROUP_NAME=start-script

SUPERVISOR_PROCESS_NAME=start-script

TERM=xterm

TZ=America/New_York

UID=0

VPN_CONFIG=/config/openvpn/Netherlands1-udp.ovpn

VPN_DEVICE_TYPE=tun

VPN_ENABLED=yes

VPN_PASS=

VPN_PORT=1194

VPN_PROTOCOL=udp

VPN_PROV=custom

VPN_REMOTE=nl1-ovpn-udp.pointtoserver.com

VPN_USER=

_='[debug] Environment variables defined as follows'

exit_code_chmod=0

exit_code_chown=0

[debug] Directory listing of files in /config/openvpn as follows

 

2017-01-28 18:52:37,073 DEBG 'start-script' stdout output:

total 36

drwxrwxrwx 1 nobody users  157 Jan 28 17:11 .

drwxrwxr-x 1 nobody users  114 Jan 28 16:31 ..

-rwxrwxrwx 1 nobody users 4096 Jan 27 15:45 ._ca.crt

-rwxrwxrwx 1 nobody users 1667 Apr 10  2014 ca.crt

-rwxrwxrwx 1 nobody users  26 Jan 28 17:11 credentials.conf

-rwxrwxrwx 1 nobody users 4096 Jan 27 15:43 ._.DS_Store

-rwxrwxrwx 1 nobody users 6148 Jan 28 16:31 .DS_Store

-rwxrwxrwx 1 nobody users  399 Jan 28 17:11 Netherlands1-udp.ovpn

-rwxrwxrwx 1 nobody users 4096 Jan 27 15:45 ._Wdc.key

-rwxrwxrwx 1 nobody users  657 Nov  3  2012 Wdc.key

 

2017-01-28 18:52:37,073 DEBG 'start-script' stdout output:

[debug] Contents of ovpn file /config/openvpn/Netherlands1-udp.ovpn as follows...

 

2017-01-28 18:52:37,074 DEBG 'start-script' stdout output:

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1194 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

2017-01-28 18:52:37,074 DEBG 'start-script' stdout output:

[info] VPN config file (ovpn extension) is located at /config/openvpn/Netherlands1-udp.ovpn

 

2017-01-28 18:52:37,100 DEBG 'start-script' stdout output:

[info] Default route for container is 172.17.0.1

 

2017-01-28 18:52:37,102 DEBG 'start-script' stdout output:

[info] Adding 8.8.8.8 to /etc/resolv.conf

 

2017-01-28 18:52:37,105 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.174 to /etc/resolv.conf

 

2017-01-28 18:52:37,107 DEBG 'start-script' stdout output:

[info] Adding 8.8.4.4 to /etc/resolv.conf

 

2017-01-28 18:52:37,110 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.177 to /etc/resolv.conf

 

2017-01-28 18:52:37,110 DEBG 'start-script' stdout output:

[debug] Show name servers defined for container

 

2017-01-28 18:52:37,112 DEBG 'start-script' stdout output:

nameserver 8.8.8.8

nameserver 37.235.1.174

nameserver 8.8.4.4

nameserver 37.235.1.177

[debug] Show name resolution for VPN endpoint nl1-ovpn-udp.pointtoserver.com

 

2017-01-28 18:52:37,157 DEBG 'start-script' stdout output:

;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 48887

;; flags: qr rd ra ; QUERY: 1, ANSWER: 9, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:

;; nl1-ovpn-udp.pointtoserver.com. IN A

 

;; ANSWER SECTION:

nl1-ovpn-udp.pointtoserver.com. 99 IN CNAME nl-ovpn-udp.pointtoserver.com.

nl-ovpn-udp.pointtoserver.com. 99 IN A 206.123.147.2

nl-ovpn-udp.pointtoserver.com. 99 IN A 213.5.64.37

nl-ovpn-udp.pointtoserver.com. 99 IN A 138.99.211.130

nl-ovpn-udp.pointtoserver.com. 99 IN A 213.5.69.62

nl-ovpn-udp.pointtoserver.com. 99 IN A 213.5.64.38

nl-ovpn-udp.pointtoserver.com. 99 IN A 79.142.68.125

nl-ovpn-udp.pointtoserver.com. 99 IN A 185.2.29.191

nl-ovpn-udp.pointtoserver.com. 99 IN A 188.72.98.130

 

;; AUTHORITY SECTION:

 

;; ADDITIONAL SECTION:

 

;; Query time: 42 msec

;; SERVER: 8.8.8.8

;; WHEN: Sat Jan 28 18:52:37 2017

;; MSG SIZE  rcvd: 202

 

2017-01-28 18:52:37,162 DEBG 'start-script' stdout output:

[info] Adding 10.11.12.0/24 as route via docker eth0

 

2017-01-28 18:52:37,163 DEBG 'start-script' stdout output:

[info] ip route defined as follows...

--------------------

 

2017-01-28 18:52:37,164 DEBG 'start-script' stdout output:

default via 172.17.0.1 dev eth0

 

2017-01-28 18:52:37,164 DEBG 'start-script' stdout output:

10.11.12.0/24 via 172.17.0.1 dev eth0

172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.5

 

2017-01-28 18:52:37,165 DEBG 'start-script' stdout output:

--------------------

[debug] Modules currently loaded for kernel

 

2017-01-28 18:52:37,171 DEBG 'start-script' stdout output:

Module                  Size  Used by

xt_nat                  1849  6

veth                    4665  0

ipt_MASQUERADE          1213  7

nf_nat_masquerade_ipv4    1865  1 ipt_MASQUERADE

iptable_nat            1831  1

nf_conntrack_ipv4      5810  2

nf_nat_ipv4            4327  1 iptable_nat

iptable_filter          1528  1

ip_tables              9422  2 iptable_filter,iptable_nat

nf_nat                  9852  3 nf_nat_ipv4,xt_nat,nf_nat_masquerade_ipv4

md_mod                36275  4

nct6775                35316  0

hwmon_vid              2212  1 nct6775

bonding                90588  0

igb                  124436  0

ptp                    8988  1 igb

pps_core                5864  1 ptp

i2c_algo_bit            4624  1 igb

x86_pkg_temp_thermal    4669  0

coretemp                5276  0

kvm_intel            142275  0

kvm                  268324  1 kvm_intel

i2c_i801              10759  0

ahci                  26003  6

i2c_core              18064  3 igb,i2c_i801,i2c_algo_bit

libahci                19067  1 ahci

 

2017-01-28 18:52:37,173 DEBG 'start-script' stdout output:

[warn] iptable_mangle module not supported, you will not be able to connect to ruTorrent or Privoxy outside of your LAN

[info] Please attempt to load the module by executing the following on your host:- '/sbin/modprobe iptable_mangle'

 

2017-01-28 18:52:37,196 DEBG 'start-script' stdout output:

[info] iptables defined as follows...

--------------------

 

2017-01-28 18:52:37,197 DEBG 'start-script' stdout output:

-P INPUT DROP

-P FORWARD ACCEPT

-P OUTPUT DROP

-A INPUT -i tun0 -j ACCEPT

-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A INPUT -i eth0 -p udp -m udp --sport 1194 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A INPUT -s 10.11.12.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT

-A INPUT -p udp -m udp --sport 53 -j ACCEPT

-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT

-A INPUT -i lo -j ACCEPT

-A OUTPUT -o tun0 -j ACCEPT

-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A OUTPUT -o eth0 -p udp -m udp --dport 1194 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A OUTPUT -d 10.11.12.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT

-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT

-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT

-A OUTPUT -o lo -j ACCEPT

 

2017-01-28 18:52:37,197 DEBG 'start-script' stdout output:

--------------------

[info] Starting OpenVPN...

 

2017-01-28 18:52:37,229 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

 

Link to comment

# accept input from local lan to docker network (any port)
iptables -A INPUT -i eth0 -p tcp -s 192.168.1.0/24 -d 172.17.0.0/16 -j ACCEPT

# accept output from docker network to local lan (any port)
iptables -A OUTPUT -o eth0 -p tcp -s 172.17.0.0/16 -d 192.168.1.0/24 -j ACCEPT

 

I don't want to pester you binhex but it's there any chance of getting this included in the docker?

 

I'm having to reboot rather regularly at the moment due to VM issues and having to go in and reapply it every time is starting  to get old ;D

It will be included in the next build, I've got more than just that to include so it will require some testing, hope to have it done by next Friday latest.

 

Sent from my SM-G900F using Tapatalk

 

This is now done, please pull down the latest image and give it a whirl.

 

note:- i have seen a couple of people reporting an issue where openvpn doesn't start correctly, this maybe due to a stale openvpn docker image being used, so if you see issues it might be wise to delete the docker image and re-pull from fresh to force the pull down of the newer intermediate image.

 

edit - bug in incoming port for build 1.3.13-32, fixed up and currently building again, please update in approx 10 mins from now.

 

Updated, all seems good. Thanks.

Link to comment

Hi there!

 

I updated my delugevpn this morning and I can't reach the webGUI.

Logs:

2017-01-30 11:53:34.534371 [info] Starting Supervisor...

2017-01-30 11:53:35,053 CRIT Set uid to user 0

2017-01-30 11:53:35,054 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing

2017-01-30 11:53:35,058 INFO supervisord started with pid 9

2017-01-30 11:53:36,061 INFO spawned: 'checkproc-script' with pid 106

2017-01-30 11:53:36,063 INFO spawned: 'start-script' with pid 107

2017-01-30 11:53:36,065 INFO spawned: 'deluge-script' with pid 108

2017-01-30 11:53:36,066 INFO spawned: 'deluge-web-script' with pid 109

2017-01-30 11:53:36,067 INFO spawned: 'privoxy-script' with pid 110

2017-01-30 11:53:36,074 DEBG 'start-script' stdout output:

[info] VPN is enabled, beginning configuration of VPN

 

2017-01-30 11:53:36,074 INFO success: checkproc-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,078 DEBG 'deluge-script' stdout output:

[info] Deluge config file already exists, skipping copy

 

2017-01-30 11:53:36,079 DEBG 'deluge-script' stdout output:

[info] VPN is enabled, checking VPN tunnel local ip is valid

 

2017-01-30 11:53:36,086 DEBG 'privoxy-script' stdout output:

[info] Privoxy set to disabled

 

2017-01-30 11:53:36,086 DEBG fd 31 closed, stopped monitoring <POutputDispatcher at 47550195628008 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stderr)>

2017-01-30 11:53:36,086 DEBG fd 27 closed, stopped monitoring <POutputDispatcher at 47550195628152 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stdout)>

2017-01-30 11:53:36,086 INFO exited: privoxy-script (exit status 0; expected)

2017-01-30 11:53:36,087 DEBG received SIGCLD indicating a child quit

2017-01-30 11:53:36,087 DEBG 'start-script' stdout output:

[debug] Environment variables defined as follows

 

2017-01-30 11:53:36,088 DEBG 'start-script' stdout output:

BASH=/bin/bash

BASHOPTS=cmdhist:complete_fullquote:extquote:force_fignore:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath

BASH_ALIASES=()

BASH_ARGC=()

BASH_ARGV=()

BASH_CMDS=()

BASH_LINENO=([0]="0")

BASH_SOURCE=([0]="/root/start.sh")

BASH_VERSINFO=([0]="4" [1]="4" [2]="5" [3]="1" [4]="release" [5]="x86_64-unknown-linux-gnu")

BASH_VERSION='4.4.5(1)-release'

DEBUG=true

DIRSTACK=()

ENABLE_PRIVOXY=no

EUID=0

 

)

HOME=/home/nobody

HOSTNAME=c15b3aae8ecd

HOSTTYPE=x86_64

HOST_OS=unRAID

IFS=$' \t\n'

LANG=en_GB.UTF-8

LAN_NETWORK=192.168.1.0/24

MACHTYPE=x86_64-unknown-linux-gnu

NAME_SERVERS=8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177

OPTERR=1

OPTIND=1

OSTYPE=linux-gnu

PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

PGID=100

PIPESTATUS=([0]="0")

PPID=9

PS4='+ '

PUID=99

PWD=/

SHELL=/bin/bash

SHELLOPTS=braceexpand:hashall:interactive-comments

SHLVL=1

STRONG_CERTS=no

SUPERVISOR_ENABLED=1

SUPERVISOR_GROUP_NAME=start-script

SUPERVISOR_PROCESS_NAME=start-script

TERM=xterm

TZ=Europe/Paris

UID=0

VPN_CONFIG=/config/openvpn/***vpn***-udp.ovpn.ovpn

VPN_DEVICE_TYPE=tun

VPN_ENABLED=yes

VPN_PASS=***password***

VPN_PORT=1196

VPN_PROTOCOL=udp

VPN_PROV=custom

VPN_REMOTE=***vpndns***.net

VPN_USER=***username***

_='[debug] Environment variables defined as follows'

exit_code_chmod=0

exit_code_chown=0

[debug] Directory listing of files in /config/openvpn as follows

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

total 8

drwxrwxrwx 1 nobody users 10 Jan 30 11:49 .

drwxrwxr-x 1 nobody users 87 Jan 30 10:12 ..

-rwxrwxrwx 1 nobody users 2876 Jan 30 11:49 ***vpn***-udp.ovpn.ovpn

-rwxrwxrwx 1 nobody users 30 Jan 30 11:49 credentials.conf

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

[debug] Contents of ovpn file /config/openvpn/***vpn***-udp.ovpn.ovpn as follows...

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

verb 9

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote ***vpndns***.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#register-dns

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

 

</ca>

2017-01-30 11:53:36,093 DEBG 'start-script' stdout output:

[info] VPN config file (ovpn extension) is located at /config/openvpn/***vpn***-udp.ovpn.ovpn

 

2017-01-30 11:53:36,162 DEBG 'start-script' stdout output:

[info] Default route for container is 172.17.0.1

 

2017-01-30 11:53:36,167 DEBG 'start-script' stdout output:

[info] Adding 8.8.8.8 to /etc/resolv.conf

 

2017-01-30 11:53:36,172 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.174 to /etc/resolv.conf

 

2017-01-30 11:53:36,177 DEBG 'start-script' stdout output:

[info] Adding 8.8.4.4 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.177 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[debug] Show name servers defined for container

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

nameserver 8.8.8.8

nameserver 37.235.1.174

nameserver 8.8.4.4

nameserver 37.235.1.177

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

[debug] Show name resolution for VPN endpoint ***vpndns***.net

 

2017-01-30 11:53:36,278 DEBG 'start-script' stdout output:

;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 61185

;; flags: qr rd ra ; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 0

;; QUESTION SECTION:

;; ***vpndns***.net. IN A

 

;; ANSWER SECTION:

***vpndns***.net. 9 IN A ***ip***

***vpndns***.net. 9 IN A ***ip***

 

;; AUTHORITY SECTION:

***vpndns*** 3599 IN NS ***vpndns***

***vpndns*** 3599 IN NS ***vpndns***

 

;; ADDITIONAL SECTION:

 

;; Query time: 93 msec

;; SERVER: 8.8.8.8

;; WHEN: Mon Jan 30 11:53:36 2017

;; MSG SIZE rcvd: 123

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] Adding 192.168.1.0/24 as route via docker eth0

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] ip route defined as follows...

--------------------

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

default via 172.17.0.1 dev eth0

172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.3

192.168.1.0/24 via 172.17.0.1 dev eth0

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

--------------------

[debug] Modules currently loaded for kernel

 

2017-01-30 11:53:36,288 DEBG 'start-script' stdout output:

Module Size Used by

xt_CHECKSUM 1271 1

iptable_mangle 1592 1

ipt_REJECT 1457 2

nf_reject_ipv4 2419 1 ipt_REJECT

ebtable_filter 1839 0

ebtables 14232 1 ebtable_filter

vhost_net 8037 1

tun 16556 7 vhost_net

vhost 13029 1 vhost_net

macvtap 9551 1 vhost_net

macvlan 11993 1 macvtap

xt_nat 1849 8

veth 4665 0

ipt_MASQUERADE 1213 12

nf_nat_masquerade_ipv4 1865 1 ipt_MASQUERADE

iptable_nat 1831 1

nf_conntrack_ipv4 5810 8

nf_nat_ipv4 4327 1 iptable_nat

iptable_filter 1528 1

ip_tables 9422 3 iptable_filter,iptable_mangle,iptable_nat

nf_nat 9852 3 nf_nat_ipv4,xt_nat,nf_nat_masquerade_ipv4

md_mod 36275 3

coretemp 5276 0

kvm_intel 142275 4

kvm 268324 1 kvm_intel

i2c_i801 10759 0

i2c_core 18064 1 i2c_i801

r8169 57980 0

pata_jmicron 2563 0

mii 3523 1 r8169

ahci 26003 6

libahci 19067 1 ahci

acpi_cpufreq 6306 0

 

2017-01-30 11:53:36,291 DEBG 'start-script' stdout output:

[info] iptable_mangle support detected, adding fwmark for tables

 

2017-01-30 11:53:36,332 DEBG 'start-script' stdout output:

[info] iptables defined as follows...

--------------------

 

2017-01-30 11:53:36,333 DEBG 'start-script' stdout output:

-P INPUT DROP

-P FORWARD ACCEPT

-P OUTPUT DROP

-A INPUT -i tun0 -j ACCEPT

-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A INPUT -i eth0 -p udp -m udp --sport 1196 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT

-A INPUT -p udp -m udp --sport 53 -j ACCEPT

-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT

-A INPUT -i lo -j ACCEPT

-A OUTPUT -o tun0 -j ACCEPT

-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A OUTPUT -o eth0 -p udp -m udp --dport 1196 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT

-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT

-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT

-A OUTPUT -o lo -j ACCEPT

 

2017-01-30 11:53:36,334 DEBG 'start-script' stdout output:

--------------------

[info] Starting OpenVPN...

 

2017-01-30 11:53:36,356 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

2017-01-30 11:53:46,363 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:53:46,374 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:06,382 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:06,396 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:26,406 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:26,417 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

As you can see, OpenVPN restarts every 20 seconds or so. What I don't understand is that my VPN provider logs does receive these "successful" connections

They last 2 minutes each: 7,4 Kio up / 2,6 Kio down.

 

I tried removing the delugevpn image pulling it again. I also tried with a brand new config file from my vpn provider. But no success so far...

 

Any help is welcome! :)

Link to comment

Hi there!

 

I updated my delugevpn this morning and I can't reach the webGUI.

Logs:

2017-01-30 11:53:34.534371 [info] Starting Supervisor...

2017-01-30 11:53:35,053 CRIT Set uid to user 0

2017-01-30 11:53:35,054 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing

2017-01-30 11:53:35,058 INFO supervisord started with pid 9

2017-01-30 11:53:36,061 INFO spawned: 'checkproc-script' with pid 106

2017-01-30 11:53:36,063 INFO spawned: 'start-script' with pid 107

2017-01-30 11:53:36,065 INFO spawned: 'deluge-script' with pid 108

2017-01-30 11:53:36,066 INFO spawned: 'deluge-web-script' with pid 109

2017-01-30 11:53:36,067 INFO spawned: 'privoxy-script' with pid 110

2017-01-30 11:53:36,074 DEBG 'start-script' stdout output:

[info] VPN is enabled, beginning configuration of VPN

 

2017-01-30 11:53:36,074 INFO success: checkproc-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,078 DEBG 'deluge-script' stdout output:

[info] Deluge config file already exists, skipping copy

 

2017-01-30 11:53:36,079 DEBG 'deluge-script' stdout output:

[info] VPN is enabled, checking VPN tunnel local ip is valid

 

2017-01-30 11:53:36,086 DEBG 'privoxy-script' stdout output:

[info] Privoxy set to disabled

 

2017-01-30 11:53:36,086 DEBG fd 31 closed, stopped monitoring <POutputDispatcher at 47550195628008 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stderr)>

2017-01-30 11:53:36,086 DEBG fd 27 closed, stopped monitoring <POutputDispatcher at 47550195628152 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stdout)>

2017-01-30 11:53:36,086 INFO exited: privoxy-script (exit status 0; expected)

2017-01-30 11:53:36,087 DEBG received SIGCLD indicating a child quit

2017-01-30 11:53:36,087 DEBG 'start-script' stdout output:

[debug] Environment variables defined as follows

 

2017-01-30 11:53:36,088 DEBG 'start-script' stdout output:

BASH=/bin/bash

BASHOPTS=cmdhist:complete_fullquote:extquote:force_fignore:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath

BASH_ALIASES=()

BASH_ARGC=()

BASH_ARGV=()

BASH_CMDS=()

BASH_LINENO=([0]="0")

BASH_SOURCE=([0]="/root/start.sh")

BASH_VERSINFO=([0]="4" [1]="4" [2]="5" [3]="1" [4]="release" [5]="x86_64-unknown-linux-gnu")

BASH_VERSION='4.4.5(1)-release'

DEBUG=true

DIRSTACK=()

ENABLE_PRIVOXY=no

EUID=0

 

)

HOME=/home/nobody

HOSTNAME=c15b3aae8ecd

HOSTTYPE=x86_64

HOST_OS=unRAID

IFS=$' \t\n'

LANG=en_GB.UTF-8

LAN_NETWORK=192.168.1.0/24

MACHTYPE=x86_64-unknown-linux-gnu

NAME_SERVERS=8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177

OPTERR=1

OPTIND=1

OSTYPE=linux-gnu

PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

PGID=100

PIPESTATUS=([0]="0")

PPID=9

PS4='+ '

PUID=99

PWD=/

SHELL=/bin/bash

SHELLOPTS=braceexpand:hashall:interactive-comments

SHLVL=1

STRONG_CERTS=no

SUPERVISOR_ENABLED=1

SUPERVISOR_GROUP_NAME=start-script

SUPERVISOR_PROCESS_NAME=start-script

TERM=xterm

TZ=Europe/Paris

UID=0

VPN_CONFIG=/config/openvpn/***vpn***-udp.ovpn.ovpn

VPN_DEVICE_TYPE=tun

VPN_ENABLED=yes

VPN_PASS=***password***

VPN_PORT=1196

VPN_PROTOCOL=udp

VPN_PROV=custom

VPN_REMOTE=***vpndns***.net

VPN_USER=***username***

_='[debug] Environment variables defined as follows'

exit_code_chmod=0

exit_code_chown=0

[debug] Directory listing of files in /config/openvpn as follows

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

total 8

drwxrwxrwx 1 nobody users 10 Jan 30 11:49 .

drwxrwxr-x 1 nobody users 87 Jan 30 10:12 ..

-rwxrwxrwx 1 nobody users 2876 Jan 30 11:49 ***vpn***-udp.ovpn.ovpn

-rwxrwxrwx 1 nobody users 30 Jan 30 11:49 credentials.conf

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

[debug] Contents of ovpn file /config/openvpn/***vpn***-udp.ovpn.ovpn as follows...

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

verb 9

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote ***vpndns***.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#register-dns

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

 

</ca>

2017-01-30 11:53:36,093 DEBG 'start-script' stdout output:

[info] VPN config file (ovpn extension) is located at /config/openvpn/***vpn***-udp.ovpn.ovpn

 

2017-01-30 11:53:36,162 DEBG 'start-script' stdout output:

[info] Default route for container is 172.17.0.1

 

2017-01-30 11:53:36,167 DEBG 'start-script' stdout output:

[info] Adding 8.8.8.8 to /etc/resolv.conf

 

2017-01-30 11:53:36,172 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.174 to /etc/resolv.conf

 

2017-01-30 11:53:36,177 DEBG 'start-script' stdout output:

[info] Adding 8.8.4.4 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.177 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[debug] Show name servers defined for container

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

nameserver 8.8.8.8

nameserver 37.235.1.174

nameserver 8.8.4.4

nameserver 37.235.1.177

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

[debug] Show name resolution for VPN endpoint ***vpndns***.net

 

2017-01-30 11:53:36,278 DEBG 'start-script' stdout output:

;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 61185

;; flags: qr rd ra ; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 0

;; QUESTION SECTION:

;; ***vpndns***.net. IN A

 

;; ANSWER SECTION:

***vpndns***.net. 9 IN A ***ip***

***vpndns***.net. 9 IN A ***ip***

 

;; AUTHORITY SECTION:

***vpndns*** 3599 IN NS ***vpndns***

***vpndns*** 3599 IN NS ***vpndns***

 

;; ADDITIONAL SECTION:

 

;; Query time: 93 msec

;; SERVER: 8.8.8.8

;; WHEN: Mon Jan 30 11:53:36 2017

;; MSG SIZE rcvd: 123

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] Adding 192.168.1.0/24 as route via docker eth0

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] ip route defined as follows...

--------------------

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

default via 172.17.0.1 dev eth0

172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.3

192.168.1.0/24 via 172.17.0.1 dev eth0

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

--------------------

[debug] Modules currently loaded for kernel

 

2017-01-30 11:53:36,288 DEBG 'start-script' stdout output:

Module Size Used by

xt_CHECKSUM 1271 1

iptable_mangle 1592 1

ipt_REJECT 1457 2

nf_reject_ipv4 2419 1 ipt_REJECT

ebtable_filter 1839 0

ebtables 14232 1 ebtable_filter

vhost_net 8037 1

tun 16556 7 vhost_net

vhost 13029 1 vhost_net

macvtap 9551 1 vhost_net

macvlan 11993 1 macvtap

xt_nat 1849 8

veth 4665 0

ipt_MASQUERADE 1213 12

nf_nat_masquerade_ipv4 1865 1 ipt_MASQUERADE

iptable_nat 1831 1

nf_conntrack_ipv4 5810 8

nf_nat_ipv4 4327 1 iptable_nat

iptable_filter 1528 1

ip_tables 9422 3 iptable_filter,iptable_mangle,iptable_nat

nf_nat 9852 3 nf_nat_ipv4,xt_nat,nf_nat_masquerade_ipv4

md_mod 36275 3

coretemp 5276 0

kvm_intel 142275 4

kvm 268324 1 kvm_intel

i2c_i801 10759 0

i2c_core 18064 1 i2c_i801

r8169 57980 0

pata_jmicron 2563 0

mii 3523 1 r8169

ahci 26003 6

libahci 19067 1 ahci

acpi_cpufreq 6306 0

 

2017-01-30 11:53:36,291 DEBG 'start-script' stdout output:

[info] iptable_mangle support detected, adding fwmark for tables

 

2017-01-30 11:53:36,332 DEBG 'start-script' stdout output:

[info] iptables defined as follows...

--------------------

 

2017-01-30 11:53:36,333 DEBG 'start-script' stdout output:

-P INPUT DROP

-P FORWARD ACCEPT

-P OUTPUT DROP

-A INPUT -i tun0 -j ACCEPT

-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A INPUT -i eth0 -p udp -m udp --sport 1196 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT

-A INPUT -p udp -m udp --sport 53 -j ACCEPT

-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT

-A INPUT -i lo -j ACCEPT

-A OUTPUT -o tun0 -j ACCEPT

-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A OUTPUT -o eth0 -p udp -m udp --dport 1196 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT

-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT

-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT

-A OUTPUT -o lo -j ACCEPT

 

2017-01-30 11:53:36,334 DEBG 'start-script' stdout output:

--------------------

[info] Starting OpenVPN...

 

2017-01-30 11:53:36,356 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

2017-01-30 11:53:46,363 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:53:46,374 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:06,382 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:06,396 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:26,406 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:26,417 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

As you can see, OpenVPN restarts every 20 seconds or so. What I don't understand is that my VPN provider logs does receive these "successful" connections

They last 2 minutes each: 7,4 Kio up / 2,6 Kio down.

 

I tried removing the delugevpn image pulling it again. I also tried with a brand new config file from my vpn provider. But no success so far...

 

Any help is welcome! :)

 

ok im not sure what spec system your running on, but i have a feeling the sleep period before checking if openvpn is up may not be long enough on some lower powered systems, so ive upped the sleep period and put in a better check for initial checking of openvpn. so thats built right now, please pull down the latest image and give it a whirl.

Link to comment

Thanks for the answer. This time the start script seems to be run once:

2017-01-30 15:50:07,931 DEBG 'start-script' stdout output:

 

--------------------

[info] Starting OpenVPN...

 

2017-01-30 15:50:07,942 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

However I still can't reach the webUI (and Sonarr can't ping deluge as well).

My vpn provider only logs one connection though: 2 minutes long, 7,4 Kio up / 2,6 Kio down.

 

It's running on a core i5 750 with 16Gb of ram. Not brand new, but still somewhat capable.

Link to comment

Thanks for the answer. This time the start script seems to be run once:

2017-01-30 15:50:07,931 DEBG 'start-script' stdout output:

 

--------------------

[info] Starting OpenVPN...

 

2017-01-30 15:50:07,942 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

However I still can't reach the webUI (and Sonarr can't ping deluge as well).

My vpn provider only logs one connection though: 2 minutes long, 7,4 Kio up / 2,6 Kio down.

 

It's running on a core i5 750 with 16Gb of ram. Not brand new, but still somewhat capable.

 

full supervisord.log file please, its located in /config/ on the host

Link to comment

Here you go  ;)

 

ok so your not getting a connection established to your vpn provider, thus its stopping at started openvpn and not progessing, you can delete everything in your /config/openvpn/ and re-download the ovpn files and cert (if its not inline) and put them in /config/openvpn and then give it a restart

Link to comment

I already did that and just tried once more. I'm still unable to access deluge UI.  :(

 

Don't know if that's related, but when I download the ovpn file from my provider, I have to comment these lines:

up /etc/openvpn/update-resolv-conf

down /etc/openvpn/update-resolv-conf

 

Otherwise I get this error:

 

[info] Starting OpenVPN...

 

2017-01-30 18:07:29,035 DEBG 'start-script' stdout output:

Options error: --up script fails with '/etc/openvpn/update-resolv-conf': No such file or directory

Options error: Please correct this error.

 

But this modification was working prior to today's update, so I don't think that's the issue.

Link to comment

I already did that and just tried once more. I'm still unable to access deluge UI.  :(

 

Don't know if that's related, but when I download the ovpn file from my provider, I have to comment these lines:

up /etc/openvpn/update-resolv-conf

down /etc/openvpn/update-resolv-conf

 

Otherwise I get this error:

 

[info] Starting OpenVPN...

 

2017-01-30 18:07:29,035 DEBG 'start-script' stdout output:

Options error: --up script fails with '/etc/openvpn/update-resolv-conf': No such file or directory

Options error: Please correct this error.

 

But this modification was working prior to today's update, so I don't think that's the issue.

 

what are you using to modify the ovpn file to remove/comment the line out?, if its not something thats aware of unix line endings then it could stuff up the line endings which could then cause the ovpn to not be read correctly. install notepad++ (or Atom if not a windows user) and then open the file and make sure the line endings are set to "unix" or "LF" and NOT "CRLF", save the file and give the container a reboot.

Link to comment

Yeah I'm using Notepad++ and just double checked: the file is Unix (LF).  ;)

I also tried to save it with vim via a ssh.

Here's the ovpn file by the way:

 

verb 4

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote **********vpn.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#up /etc/openvpn/update-resolv-conf

#down /etc/openvpn/update-resolv-conf

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

</ca>

Link to comment

Hi,

I just installed this great docker for the 1st time.

My "container Path: /data" is /mnt/user/downloads/. This share is created in a single disk (disk9) of the array.

I downloaded a torrent file and left it sharing. I observed disk9 is up, but also parity and disk1 is up all the time. Just wanted to ask what disks will spin up while sharing a torrent?

Thx in advance.

Rgds

PS: I have no vpn set up.

 

Link to comment

Hi,

I just installed this great docker for the 1st time.

My "container Path: /data" is /mnt/user/downloads/. This share is created in a single disk (disk9) of the array.

I downloaded a torrent file and left it sharing. I observed disk9 is up, but also parity and disk1 is up all the time. Just wanted to ask what disks will spin up while sharing a torrent?

Thx in advance.

Rgds

PS: I have no vpn set up.

 

when seeding it will be any disk that contains the completed download, and any disk that contains the configuration files for delugevpn, thus the recommendation to use a cache drive and store configuration and incomplete/complete downloads on there and NOT to write to the array, then use unraid mover script or the metadata downloader to move the files to the array.

Link to comment

Yeah I'm using Notepad++ and just double checked: the file is Unix (LF).  ;)

I also tried to save it with vim via a ssh.

Here's the ovpn file by the way:

 

verb 4

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote **********vpn.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#up /etc/openvpn/update-resolv-conf

#down /etc/openvpn/update-resolv-conf

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

</ca>

 

im kinda lost as to what to try next, i guess one thing we should try is to completely delete the container AND image and re-pull from scratch, you can leave your configuration in place, just to ensure you are pulling the latest down.

Link to comment

I already did that and just tried once more. I'm still unable to access deluge UI.  :(

 

Don't know if that's related, but when I download the ovpn file from my provider, I have to comment these lines:

up /etc/openvpn/update-resolv-conf

down /etc/openvpn/update-resolv-conf

 

Otherwise I get this error:

 

[info] Starting OpenVPN...

 

2017-01-30 18:07:29,035 DEBG 'start-script' stdout output:

Options error: --up script fails with '/etc/openvpn/update-resolv-conf': No such file or directory

Options error: Please correct this error.

 

But this modification was working prior to today's update, so I don't think that's the issue.

 

My provider uses the same method.  They include update-resolv script is in the same tarball as all the ovpn files.  Here is mine

 

#!/bin/bash
#
# Parses DHCP options from openvpn to update resolv.conf
# To use set as 'up' and 'down' script in your openvpn *.conf:
# up /etc/openvpn/update-resolv-conf
# down /etc/openvpn/update-resolv-conf
#
# Used snippets of resolvconf script by Thomas Hood <[email protected]>
# and Chris Hanson
# Licensed under the GNU GPL.  See /usr/share/common-licenses/GPL.
# 07/2013 [email protected] Fixed intet name
# 05/2006 [email protected]
#
# Example envs set from openvpn:
# foreign_option_1='dhcp-option DNS 193.43.27.132'
# foreign_option_2='dhcp-option DNS 193.43.27.133'
# foreign_option_3='dhcp-option DOMAIN be.bnc.ch'
# foreign_option_4='dhcp-option DOMAIN-SEARCH bnc.local'

## You might need to set the path manually here, i.e.
RESOLVCONF=$(which resolvconf)

case $script_type in

up)
  for optionname in ${!foreign_option_*} ; do
    option="${!optionname}"
    echo $option
    part1=$(echo "$option" | cut -d " " -f 1)
    if [ "$part1" == "dhcp-option" ] ; then
      part2=$(echo "$option" | cut -d " " -f 2)
      part3=$(echo "$option" | cut -d " " -f 3)
      if [ "$part2" == "DNS" ] ; then
        IF_DNS_NAMESERVERS="$IF_DNS_NAMESERVERS $part3"
      fi
      if [[ "$part2" == "DOMAIN" || "$part2" == "DOMAIN-SEARCH" ]] ; then
        IF_DNS_SEARCH="$IF_DNS_SEARCH $part3"
      fi
    fi
  done
  R=""
  if [ "$IF_DNS_SEARCH" ]; then
    R="search "
    for DS in $IF_DNS_SEARCH ; do
      R="${R} $DS"
    done
  R="${R}
"
  fi

  for NS in $IF_DNS_NAMESERVERS ; do
    R="${R}nameserver $NS
"
  done
  #echo -n "$R" | $RESOLVCONF -x -p -a "${dev}"
  echo -n "$R" | $RESOLVCONF -a "${dev}.inet"
  ;;
down)
  $RESOLVCONF -d "${dev}.inet"
  ;;
esac

# Workaround / [email protected] 
# force exit with no errors. Due to an apparent conflict with the Network Manager
# $RESOLVCONF sometimes exits with error code 6 even though it has performed the
# action correctly and OpenVPN shuts down.
exit 0

 

Link to comment

To debug my last problem, I ran the openvpn manually mith the same parameters as the delugeVPN init script to see the details of the error message like so:

 

docker exec -it binhex-delugevpn bash

/usr/bin/openvpn --cd /config/openvpn --config XXX.ovpn --dev tap0 --remote XXX.XXX.com 1194 --proto tcp --reneg-sec 0 --mute-replay-warnings --auth-nocache --keepalive 10 60

 

Link to comment

Yeah I'm using Notepad++ and just double checked: the file is Unix (LF).  ;)

I also tried to save it with vim via a ssh.

Here's the ovpn file by the way:

 

verb 4

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote **********vpn.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#up /etc/openvpn/update-resolv-conf

#down /etc/openvpn/update-resolv-conf

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

</ca>

 

im kinda lost as to what to try next, i guess one thing we should try is to completely delete the container AND image and re-pull from scratch, you can leave your configuration in place, just to ensure you are pulling the latest down.

 

one thing to try, can you try removing these two lines from your ovpn file:-

 

script-security 2
redirect-gateway def1

 

save and restart the container.

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.