[Support] binhex - DelugeVPN


Recommended Posts

Hi,

 

I'm having terrible issues with slow speeds using Deluge, peaking at 2,5-3MiB/s. I've tried increasing the cache to 65536 KiB, opening ports etc. I did not have this issue with rTorrent, and I'm not using a VPN. What more info do you need to assist? :)

Oh yeah, I got 500/50.

 

Link to comment
17 minutes ago, Tyrrandion said:

Hi,

 

I'm having terrible issues with slow speeds using Deluge, peaking at 2,5-3MiB/s. I've tried increasing the cache to 65536 KiB, opening ports etc. I did not have this issue with rTorrent, and I'm not using a VPN. What more info do you need to assist? :)

Oh yeah, I got 500/50.

 

 

see Q5. ignore the vpn related parts:-

https://lime-technology.com/forums/topic/44108-support-binhex-general/?tab=comments#comment-433613

 

Link to comment
25 minutes ago, Tyrrandion said:

Sorry, totally for got to add that one, I've tried it all. Still getting terribly slow speeds.

 

so im assuming you are an unraid user right?, are you writing to the cache drive?, do download speeds yo-yo or are they constantly low?. have you confirmed its not the swarm, try downloading a popular linux distro torrent, what is your upload rate and what limit have you set?.

Link to comment

Hi, so trying to reset this up again after a new install (from an upgrade gone bad) and having trouble logging into the webui. It won't accept the default password "deluge", and can't get it to open. Am I missing something? Really wish this wouldn't have a webui password (or an option to turn it off).

Link to comment

To maybe help someone.. and me when I run into this again.. this is if this error is coming up - neither stdin nor stderr are a tty device and you have neither a controlling tty nor systemd - can't ask for 'Enter Private Key Password:'. If you used --daemon, you need to use --askpass to make passphrase-protected keys work, and you can not use --auth-nocache.

 

If I tried added --askpass /path/to/file to the VPN_OPTIONS variable, it would enclose it with single quotes  when it tried to start openvpn -

/usr/bin/openvpn --daemon --reneg-sec 0 --mute-replay-warnings --auth-nocache --setenv VPN_PROV 'custom' --setenv DEBUG 'true' --setenv VPN_DEVICE_TYPE 'tun0' --setenv VPN_REMOTE 'vpn.vpnservicer.com' --script-security 2 --up /root/openvpnup.sh --up-delay --up-restart --writepid /root/openvpn.pid --remap-usr1 SIGHUP --log-append /dev/stdout --pull-filter ignore 'up' --pull-filter ignore 'down' --pull-filter ignore 'route-ipv6' --pull-filter ignore 'ifconfig-ipv6' --pull-filter ignore 'tun-ipv6' --pull-filter ignore 'persist-tun' --pull-filter ignore 'reneg-sec' --remote 52.75.25.76 1282 udp --remote-random --keepalive 10 60 --auth-user-pass credentials.conf '--askpath /path/to/file' --cd /config/openvpn --config '/config/openvpn/myvpn.ovpn'

If I went into the docker terminal and ran that exact command without the single quotes around askpath, it worked fine.  I struggled with how to remove those single-quotes for awhile but then found an easier way of getting it working.  

Use the terminal and navigate to where your cert files are

Run the command:  openssl rsa -in yourkey.key -out yourkey_withoutpass.key

It will ask you for your passpharse, you enter it in and it will generate a new certificate without the passphrase.  Then you just edit your .ovpn file with the new key and it should work.

 

 

 

 

Link to comment

Hello,

 

I can't seem to get Deluge webUI working with VPN on. I checked it with VPN off and it works fine.

 

My setup has Dynamic DNS working from my Netgear Nighthawk router (via No-IP) and VPN also working from my router (OpenVPN). I downloaded the certs/ovpn files from my router, and dragged them into the appdata/config/binhex-delugevpn/openvpn folder, then restarted the container. I'm getting an odd output from the log -- just the letter "W". Please find attached the supervisord.log file.

 

Thanks!

supervisord.log

Link to comment
5 hours ago, illusaen said:

I downloaded the certs/ovpn files from my router,

 

you are misunderstanding what this docker image does, its used to connect to a commercial vpn provider such as PIA, it is not to allow you to vpn to your router, even if this were possible (which it isnt) this would grant you zero protection, as the ip address would still be your isp's ip address.

Link to comment

For some reason Sonarr/and Radarr cannot label my downloads once they are initiated and I seem to be getting a pipeline error. 

I've tried restarting the dockers including deluge VPN and making sure all my IP's are connected. When I test deluge in Sonarr it says the test succeeded. 

 

Below is my error log:

 

Quote

NzbDrone.Core.Download.Clients.DownloadClientUnavailableException: Unable to connect to Deluge, please check your settings ---> System.Net.WebException: The operation has timed out.: 'http://172.17.0.2:8112/json' ---> System.Net.WebException: The operation has timed out.
  at System.Net.HttpWebRequest+<RunWithTimeoutWorker>d__244`1[T].MoveNext () [0x000ba] in <fc308f916aec4e4283e0c1d4b761760a>:0 
--- End of stack trace from previous location where exception was thrown ---
  at System.Net.HttpWebRequest.GetResponse () [0x00013] in <fc308f916aec4e4283e0c1d4b761760a>:0 
  at NzbDrone.Common.Http.Dispatchers.ManagedHttpDispatcher.GetResponse (NzbDrone.Common.Http.HttpRequest request, System.Net.CookieContainer cookies) [0x000f6] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Common\Http\Dispatchers\ManagedHttpDispatcher.cs:63 
   --- End of inner exception stack trace ---
  at NzbDrone.Common.Http.Dispatchers.ManagedHttpDispatcher.GetResponse (NzbDrone.Common.Http.HttpRequest request, System.Net.CookieContainer cookies) [0x0019e] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Common\Http\Dispatchers\ManagedHttpDispatcher.cs:91 
  at NzbDrone.Common.Http.Dispatchers.FallbackHttpDispatcher.GetResponse (NzbDrone.Common.Http.HttpRequest request, System.Net.CookieContainer cookies) [0x000b5] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Common\Http\Dispatchers\FallbackHttpDispatcher.cs:53 
  at NzbDrone.Common.Http.HttpClient.ExecuteRequest (NzbDrone.Common.Http.HttpRequest request, System.Net.CookieContainer cookieContainer) [0x0007e] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Common\Http\HttpClient.cs:121 
  at NzbDrone.Common.Http.HttpClient.Execute (NzbDrone.Common.Http.HttpRequest request) [0x00008] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Common\Http\HttpClient.cs:57 
  at NzbDrone.Core.Download.Clients.Deluge.DelugeProxy.ExecuteRequest[TResult] (NzbDrone.Common.Http.JsonRpcRequestBuilder requestBuilder, System.String method, System.Object[] arguments) [0x0000e] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\Clients\Deluge\DelugeProxy.cs:229 
   --- End of inner exception stack trace ---
  at NzbDrone.Core.Download.Clients.Deluge.DelugeProxy.ExecuteRequest[TResult] (NzbDrone.Common.Http.JsonRpcRequestBuilder requestBuilder, System.String method, System.Object[] arguments) [0x0006f] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\Clients\Deluge\DelugeProxy.cs:250 
  at NzbDrone.Core.Download.Clients.Deluge.DelugeProxy.ProcessRequest[TResult] (NzbDrone.Core.Download.Clients.Deluge.DelugeSettings settings, System.String method, System.Object[] arguments) [0x00008] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\Clients\Deluge\DelugeProxy.cs:196 
  at NzbDrone.Core.Download.Clients.Deluge.DelugeProxy.AddTorrentFromFile (System.String filename, System.Byte[] fileContent, NzbDrone.Core.Download.Clients.Deluge.DelugeSettings settings) [0x0000d] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\Clients\Deluge\DelugeProxy.cs:106 
  at NzbDrone.Core.Download.Clients.Deluge.Deluge.AddFromTorrentFile (NzbDrone.Core.Parser.Model.RemoteEpisode remoteEpisode, System.String hash, System.String filename, System.Byte[] fileContent) [0x00000] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\Clients\Deluge\Deluge.cs:63 
  at NzbDrone.Core.Download.TorrentClientBase`1[TSettings].DownloadFromWebUrl (NzbDrone.Core.Parser.Model.RemoteEpisode remoteEpisode, System.String torrentUrl) [0x00208] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\TorrentClientBase.cs:189 
  at NzbDrone.Core.Download.TorrentClientBase`1[TSettings].Download (NzbDrone.Core.Parser.Model.RemoteEpisode remoteEpisode) [0x00148] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\TorrentClientBase.cs:117 
  at NzbDrone.Core.Download.DownloadService.DownloadReport (NzbDrone.Core.Parser.Model.RemoteEpisode remoteEpisode) [0x00191] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Core\Download\DownloadService.cs:76 
  at NzbDrone.Api.Indexers.ReleaseModule.DownloadRelease (NzbDrone.Api.Indexers.ReleaseResource release) [0x0002d] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Api\Indexers\ReleaseModule.cs:67 
  at NzbDrone.Api.Indexers.ReleaseModule.<.ctor>b__7_0 (System.Object x) [0x00000] in C:\BuildAgent\work\5d7581516c0ee5b3\src\NzbDrone.Api\Indexers\ReleaseModule.cs:46 
  at (wrapper dynamic-method) System.Object.CallSite.Target(System.Runtime.CompilerServices.Closure,System.Runtime.CompilerServices.CallSite,System.Func`2<object, object>,object)
  at Nancy.Routing.Route+<>c__DisplayClass4.<Wrap>b__3 (System.Object parameters, System.Threading.CancellationToken context) [0x00049] in <63c44d6f8d7e4f339a987bf9eb94d931>:0 

 

Link to comment

Hey all, so now I'm using PIA for my VPN and everything seems to be working great, except for the fact that downloads are really, really slow.

Please see attached screenshots of the speeds I'm getting (~1.1Mb) and the port forwarding I've set up my Netgear Nighthawk.

 

Is there anything immediately obvious I'm doing wrong without the supervisor log?

 

Thanks!

delugeSpeed.PNG

portForwarding.PNG

Edited by illusaen
Link to comment
26 minutes ago, illusaen said:

Is there anything immediately obvious I'm doing wrong without the supervisor log?

Yes, first of all, close all the ports you have opened on your router. You are connected to a server on PIA, think of it as you're sitting physically on a machine in PIA's network. So opening ports on your own router won't do anything (apart for decreasing security). You have to open a port on the VPN provider side. Luckily for you, this is done automatically for you in this container (if using PIA). All you have to do is connect to an endpoint that supports it and enable "strict port forwarding" in the container settings. For a list of endpoints that supports port forwarding see this list: https://www.privateinternetaccess.com/helpdesk/kb/articles/how-do-i-enable-port-forwarding-on-my-vpn

And for more tips on what can cause slow speed see Q5: https://lime-technology.com/forums/topic/44108-support-binhex-general/?tab=comments#comment-433613

 

Edited by strike
Link to comment

Okay, that makes sense. My ports have been closed. unfortunately, I am already using an endpoint on that list and am already using ab external HD that's not on the array. Is there some setting in Deluge I'm supposed to set? I keep trying to set my incoming port to 58846 but that doesn't seem to want to stick.

Link to comment

As I said in my previous post all the port forwarding is done automatically for you if you're using PIA. So you should NOT try to set an incoming port yourself. There's a script in place to change the port if you get a new port form PIA. So just make sure you have "strict port forwarding" enabled in the container settings and connect to an endpoint that supports port forwarding, thats' it.

 

Have you followed the other tips? Set a limit on your upload speed or try another endpoint etc..

Link to comment

Hey @binhex, first off I want to say thanks for maintaining as many Docker apps as you do, it's really awesome of you to support the unRAID community so much.

 

Unfortunately, I wish I could leave my comment there with the complement, but I've run into the first unRAID problem that I can't solve just by Google-ing around so far, and I'm kind of afraid it might be unique to my situation. I'm trying to set up Sonarr and DelugeVPN to download TV shows automatically (you know, like everyone does), but I can't connect to the WebUI of Deluge with the VPN feature active; yes, I've read the FAQ and I'm aware that means that the VPN connection is failing. I'm using VPNbook, though (it's free and I'm familiar with it), and I'm wondering if somehow that's an issue? I do have a valid certificate in the config folder (it's the euro1 tcp80 certificate, if that matters). I've also noticed, though, that according to the log file there seems to be an issue with "iptable_mangle" not existing - as in, if I try to manually start it via the terminal, it tosses back an error saying it doesn't exist, it's not just that it's not properly loading. I'll attach the entire log file below, though

Created by...
___.   .__       .__                   
\_ |__ |__| ____ |  |__   ____ ___  ___
 | __ \|  |/    \|  |  \_/ __ \\  \/  /
 | \_\ \  |   |  \   Y  \  ___/ >    < 
 |___  /__|___|  /___|  /\___  >__/\_ \
     \/        \/     \/     \/      \/
  https://hub.docker.com/u/binhex/

2018-07-25 17:39:21.571693 [info] Host is running unRAID
2018-07-25 17:39:21.607082 [info] System information Linux 316d585e8870 4.14.49-unRAID #1 SMP Mon Jun 11 16:21:07 PDT 2018 x86_64 GNU/Linux
2018-07-25 17:39:21.646732 [info] PUID defined as '99'
2018-07-25 17:39:21.688214 [info] PGID defined as '100'
2018-07-25 17:39:21.847322 [info] UMASK defined as '000'
2018-07-25 17:39:21.885516 [info] Permissions already set for volume mappings
2018-07-25 17:39:21.931079 [info] VPN_ENABLED defined as 'yes'
2018-07-25 17:39:21.980904 [info] OpenVPN config file (ovpn extension) is located at /config/openvpn/vpnbook-euro1-tcp80.ovpn
dos2unix: converting file /config/openvpn/vpnbook-euro1-tcp80.ovpn to Unix format...
2018-07-25 17:39:22.066816 [info] VPN remote line defined as 'remote 176.126.237.217 80'
2018-07-25 17:39:22.106504 [info] VPN_REMOTE defined as '176.126.237.217'
2018-07-25 17:39:22.145372 [info] VPN_PORT defined as '80'
2018-07-25 17:39:22.206195 [info] VPN_PROTOCOL defined as 'tcp-client'
2018-07-25 17:39:22.247028 [info] VPN_DEVICE_TYPE defined as 'tun0'
2018-07-25 17:39:22.285439 [info] VPN_PROV defined as 'custom'
2018-07-25 17:39:22.322226 [info] LAN_NETWORK defined as '192.168.1.0/24'
2018-07-25 17:39:22.362254 [info] NAME_SERVERS defined as '209.222.18.222,37.235.1.174,1.1.1.1,8.8.8.8,209.222.18.218,37.235.1.177,1.0.0.1,8.8.4.4'
2018-07-25 17:39:22.398356 [info] VPN_USER defined as 'vpnbook'
2018-07-25 17:39:22.434752 [info] VPN_PASS defined as 'RG3B8sh'
2018-07-25 17:39:22.474446 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS)
2018-07-25 17:39:22.514385 [info] ENABLE_PRIVOXY defined as 'no'
2018-07-25 17:39:22.553263 [info] Starting Supervisor...
2018-07-25 17:39:22,717 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing
2018-07-25 17:39:22,717 INFO Set uid to user 0 succeeded
2018-07-25 17:39:22,722 INFO supervisord started with pid 7
2018-07-25 17:39:23,725 INFO spawned: 'start-script' with pid 132
2018-07-25 17:39:23,727 INFO spawned: 'deluge-script' with pid 133
2018-07-25 17:39:23,729 INFO spawned: 'deluge-web-script' with pid 134
2018-07-25 17:39:23,731 INFO spawned: 'privoxy-script' with pid 135
2018-07-25 17:39:23,732 INFO reaped unknown pid 8
2018-07-25 17:39:23,737 DEBG 'start-script' stdout output:
[info] VPN is enabled, beginning configuration of VPN

2018-07-25 17:39:23,737 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2018-07-25 17:39:23,737 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2018-07-25 17:39:23,737 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2018-07-25 17:39:23,738 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)
2018-07-25 17:39:23,738 DEBG 'deluge-script' stdout output:
[info] Deluge config file already exists, skipping copy

2018-07-25 17:39:23,738 DEBG 'deluge-script' stdout output:
[info] VPN is enabled, checking VPN tunnel local ip is valid

2018-07-25 17:39:23,740 DEBG 'privoxy-script' stdout output:
[info] Privoxy set to disabled

2018-07-25 17:39:23,740 DEBG fd 26 closed, stopped monitoring <POutputDispatcher at 22371738077088 for <Subprocess at 22371740650600 with name privoxy-script in state RUNNING> (stderr)>
2018-07-25 17:39:23,741 DEBG fd 22 closed, stopped monitoring <POutputDispatcher at 22371738076656 for <Subprocess at 22371740650600 with name privoxy-script in state RUNNING> (stdout)>
2018-07-25 17:39:23,741 INFO exited: privoxy-script (exit status 0; expected)
2018-07-25 17:39:23,741 DEBG received SIGCLD indicating a child quit
2018-07-25 17:39:23,920 DEBG 'start-script' stdout output:
[info] Default route for container is 172.17.0.1

2018-07-25 17:39:23,926 DEBG 'start-script' stdout output:
[info] Adding 209.222.18.222 to /etc/resolv.conf

2018-07-25 17:39:23,931 DEBG 'start-script' stdout output:
[info] Adding 37.235.1.174 to /etc/resolv.conf

2018-07-25 17:39:23,935 DEBG 'start-script' stdout output:
[info] Adding 1.1.1.1 to /etc/resolv.conf

2018-07-25 17:39:23,941 DEBG 'start-script' stdout output:
[info] Adding 8.8.8.8 to /etc/resolv.conf

2018-07-25 17:39:23,946 DEBG 'start-script' stdout output:
[info] Adding 209.222.18.218 to /etc/resolv.conf

2018-07-25 17:39:23,951 DEBG 'start-script' stdout output:
[info] Adding 37.235.1.177 to /etc/resolv.conf

2018-07-25 17:39:23,955 DEBG 'start-script' stdout output:
[info] Adding 1.0.0.1 to /etc/resolv.conf

2018-07-25 17:39:23,960 DEBG 'start-script' stdout output:
[info] Adding 8.8.4.4 to /etc/resolv.conf

2018-07-25 17:39:23,965 DEBG 'start-script' stdout output:
176.126.237.217

2018-07-25 17:39:23,977 DEBG 'start-script' stdout output:
[info] Attempting to load iptable_mangle module...

2018-07-25 17:39:23,978 DEBG 'start-script' stderr output:
modprobe: FATAL: Module iptable_mangle not found in directory /lib/modules/4.14.49-unRAID

2018-07-25 17:39:23,978 DEBG 'start-script' stdout output:
[warn] Unable to load iptable_mangle module using modprobe, trying insmod...

2018-07-25 17:39:23,979 DEBG 'start-script' stderr output:
insmod: ERROR: could not load module /lib/modules/iptable_mangle.ko: No such file or directory

2018-07-25 17:39:23,979 DEBG 'start-script' stdout output:
[warn] Unable to load iptable_mangle module, you will not be able to connect to the applications Web UI or Privoxy outside of your LAN
[info] unRAID/Ubuntu users: Please attempt to load the module by executing the following on your host: '/sbin/modprobe iptable_mangle'
[info] Synology users: Please attempt to load the module by executing the following on your host: 'insmod /lib/modules/iptable_mangle.ko'

2018-07-25 17:39:23,985 DEBG 'start-script' stdout output:
[info] Adding 192.168.1.0/24 as route via docker eth0

2018-07-25 17:39:23,986 DEBG 'start-script' stdout output:
[info] ip route defined as follows...
--------------------

2018-07-25 17:39:23,987 DEBG 'start-script' stdout output:
default via 172.17.0.1 dev eth0 
172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.3 

2018-07-25 17:39:23,988 DEBG 'start-script' stdout output:
192.168.1.0/24 via 172.17.0.1 dev eth0 
--------------------

2018-07-25 17:39:24,019 DEBG 'start-script' stdout output:
[info] Docker network defined as    172.17.0.0/16

2018-07-25 17:39:24,114 DEBG 'start-script' stdout output:
[info] iptables defined as follows...
--------------------

2018-07-25 17:39:24,117 DEBG 'start-script' stdout output:
-P INPUT DROP
-P FORWARD ACCEPT
-P OUTPUT DROP
-A INPUT -i tun0 -j ACCEPT
-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --sport 80 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT
-A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT
-A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A OUTPUT -o tun0 -j ACCEPT
-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --dport 80 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT
-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT
-A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT

2018-07-25 17:39:24,117 DEBG 'start-script' stdout output:
--------------------

2018-07-25 17:39:24,118 DEBG 'start-script' stdout output:
[info] Starting OpenVPN...

2018-07-25 17:39:24,129 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:24 2018 WARNING: file 'credentials.conf' is group or others accessible
Wed Jul 25 17:39:24 2018 OpenVPN 2.4.5 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Mar  1 2018
Wed Jul 25 17:39:24 2018 library versions: OpenSSL 1.1.0g  2 Nov 2017, LZO 2.10

2018-07-25 17:39:24,129 DEBG 'start-script' stdout output:
[info] OpenVPN started

2018-07-25 17:39:24,130 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:24 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Wed Jul 25 17:39:24 2018 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Wed Jul 25 17:39:24 2018 NOTE: --fast-io is disabled since we are not using UDP

2018-07-25 17:39:24,130 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:24 2018 TCP/UDP: Preserving recently used remote address: [AF_INET]176.126.237.217:80

2018-07-25 17:39:24,130 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:24 2018 Socket Buffers: R=[87380->87380] S=[65536->65536]
Wed Jul 25 17:39:24 2018 Attempting to establish TCP connection with [AF_INET]176.126.237.217:80 [nonblock]

2018-07-25 17:39:25,131 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:25 2018 TCP connection established with [AF_INET]176.126.237.217:80
Wed Jul 25 17:39:25 2018 TCP_CLIENT link local: (not bound)
Wed Jul 25 17:39:25 2018 TCP_CLIENT link remote: [AF_INET]176.126.237.217:80

2018-07-25 17:39:25,547 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:25 2018 TLS: Initial packet from [AF_INET]176.126.237.217:80, sid=45f0347f 4d386b72

2018-07-25 17:39:26,019 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:26 2018 VERIFY OK: depth=1, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, [email protected]

2018-07-25 17:39:26,020 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:26 2018 VERIFY OK: depth=0, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, [email protected]

2018-07-25 17:39:26,542 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:26 2018 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Wed Jul 25 17:39:26 2018 [vpnbook.com] Peer Connection Initiated with [AF_INET]176.126.237.217:80

2018-07-25 17:39:27,695 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:27 2018 SENT CONTROL [vpnbook.com]: 'PUSH_REQUEST' (status=1)

2018-07-25 17:39:28,799 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:28 2018 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS  8.8.4.4,dhcp-option DNS  91.239.100.100,route 10.12.0.1,topology net30,ping 5,ping-restart 30,ifconfig 10.12.0.42 10.12.0.41,peer-id 0,cipher AES-256-GCM'

2018-07-25 17:39:28,799 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:28 2018 OPTIONS IMPORT: timers and/or timeouts modified
Wed Jul 25 17:39:28 2018 OPTIONS IMPORT: --ifconfig/up options modified
Wed Jul 25 17:39:28 2018 OPTIONS IMPORT: route options modified
Wed Jul 25 17:39:28 2018 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Wed Jul 25 17:39:28 2018 OPTIONS IMPORT: peer-id set
Wed Jul 25 17:39:28 2018 OPTIONS IMPORT: adjusting link_mtu to 1627
Wed Jul 25 17:39:28 2018 OPTIONS IMPORT: data channel crypto options modified
Wed Jul 25 17:39:28 2018 Data Channel: using negotiated cipher 'AES-256-GCM'
Wed Jul 25 17:39:28 2018 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Wed Jul 25 17:39:28 2018 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Wed Jul 25 17:39:28 2018 ROUTE_GATEWAY 172.17.0.1/255.255.0.0 IFACE=eth0 HWADDR=02:42:ac:11:00:03
Wed Jul 25 17:39:28 2018 TUN/TAP device tun3 opened
Wed Jul 25 17:39:28 2018 TUN/TAP TX queue length set to 100
Wed Jul 25 17:39:28 2018 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Wed Jul 25 17:39:28 2018 /usr/bin/ip link set dev tun3 up mtu 1500

2018-07-25 17:39:28,801 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:28 2018 /usr/bin/ip addr add dev tun3 local 10.12.0.42 peer 10.12.0.41

2018-07-25 17:39:28,803 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:28 2018 /root/openvpnup.sh tun3 1500 1555 10.12.0.42 10.12.0.41 init

2018-07-25 17:39:30,961 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:30 2018 /usr/bin/ip route add 176.126.237.217/32 via 172.17.0.1

2018-07-25 17:39:30,963 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:30 2018 /usr/bin/ip route add 0.0.0.0/1 via 10.12.0.41

2018-07-25 17:39:30,964 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:30 2018 /usr/bin/ip route add 128.0.0.0/1 via 10.12.0.41

2018-07-25 17:39:30,966 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:30 2018 /usr/bin/ip route add 10.12.0.1/32 via 10.12.0.41

2018-07-25 17:39:30,968 DEBG 'start-script' stdout output:
Wed Jul 25 17:39:30 2018 Initialization Sequence Completed

Thank you in advance for your help!

Edited by TotalInsanity4
Link to comment
46 minutes ago, TotalInsanity4 said:

I'm using VPNbook, though (it's free and I'm familiar with it), and I'm wondering if somehow that's an issue?

 

Even if you do get it to work, vpnbook doesn't support port forwarding through their endpoints, so torrents will be slow if they work at all, and you will not be able to seed.

 

You would be much better off getting a subscription to PIA.

Link to comment

Is there a way to set which ovpn file to use in the docker settings? My VPN provider has multiple servers i.e. lax1.vpn.com and lax2.vpn.com and I have saved a few of them to the deluge/openvpn folder. Would just like to specify which one to use when starting the docker. Thanks in advance!

Link to comment
Is there a way to set which ovpn file to use in the docker settings? My VPN provider has multiple servers i.e. lax1.vpn.com and lax2.vpn.com and I have saved a few of them to the deluge/openvpn folder. Would just like to specify which one to use when starting the docker. Thanks in advance!
Nope, it uses the first one it finds

Sent from my SM-G935F using Tapatalk

Link to comment

Hi,

 

great job. Everything working fine with Nordvpn. .

 

Binhex, One security  question. I find my VPN user and password in plain text in credentials.conf and supervisord.log. Is it ok? 

 

I attach my supervisord.log (I remove partial text in user/pass). Only FYI, I can connect to nordvpn only with the ovpn file, without .crt or .key. After a while I attach both extra files; still working fine.

 

Now to more steps:

1.- kill switch (howto)

2.- deluge ports (now my tracker show me limited)

 

Thanks again for your work and your help.

supervisord.log

 

--

EDIT: Should I fill VPN_options with ovpn name or similar?

 

(2018-07-29 20:21:53.119937 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS))

Edited by garion
extra question.
Link to comment
2 hours ago, remati said:

 

Can I request that feature? ?

 

This wont get done, i am trying to keep the configuration as minimal as possible, i also dont really see how configuring the ovpn file you want to use (and thus the endpoint you want to connect to) via the unraid web ui (open browser, go to unraid, go to docker tab, edit docker, restart container), is easier than simply dropping a ovpn file over the top and restarting?.

 

Also keep in mind it certainly is a LOT more hassle for non unraid users, who need to stop container, delete container, re-define the run command with this new parameter and then create the container, thus it wont get used by them either.

 

1 hour ago, Gog said:

If you are going to go there, why not a rolling rule to switch to the next one line if you disconnect emoji56.png

Sent from my SM-G930W8 using Tapatalk
 

 

this is already done automatically if you use a decent vpn provider, such as PIA, the endpoint is resolved to ip and then each connection is randomised on tunnel init, obviously all the resolved ip's are for the same country.

Edited by binhex
Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.