Jump to content
binhex

[Support] binhex - DelugeVPN

3908 posts in this topic Last Reply

Recommended Posts

I have a question about using PIA. (ordered it to test with unRAID and DelugeVPN)

 

I setup the docker in unRAID server just fine and dandy and it's working everything is good to go and it's doing just that. However I was curious about the regular software that PIA has for windows machines and other platforms so I downloaded the windows client and connected to the Netherlands and checked my IP and it was showing up as a Netherlands IP address. I then did a DNS leak test and it showed up as a google IP out of Michigan, which are the same IP's that I get when I'm not on the VPN.

 

That peaked my interest so I went onto the PIA site and looked around and found their Q&A for DNS Leak Protection https://www.privateinternetaccess.com/pages/client-support/#eighth if you open up the application in windows and go into settings then connection you will find that you can tick the box for "DNS leak protection Prevent leaking DNS queries while on the VPN" I enabled that and did the DNS Leak test again and I only got back 1 IP out of the Netherlands.

 

I'm wondering if there is a value within DelugeVPN that we can enable which does the same thing as in the windows client after all a VPN to the Netherlands or where ever should only show that VPN IP.

 

Also I was wondering if there is anyway for DelugeVPN to use magnet links that would be sent to it from Media Center Master? I found a site that was talking about a PHP file but the github it resided on has been removed.

 

One more thing, I downloaded the checkMyTorrentIp.png and it shows the Netherlands IP as well.

 

Tracker Status:

checkmytorrentip.net: Error: Success, Your torrent client IP is: 46.166.188.223

Share this post


Link to post

I have a question about using PIA. (ordered it to test with unRAID and DelugeVPN)

 

I setup the docker in unRAID server just fine and dandy and it's working everything is good to go and it's doing just that. However I was curious about the regular software that PIA has for windows machines and other platforms so I downloaded the windows client and connected to the Netherlands and checked my IP and it was showing up as a Netherlands IP address. I then did a DNS leak test and it showed up as a google IP out of Michigan, which are the same IP's that I get when I'm not on the VPN.

 

That peaked my interest so I went onto the PIA site and looked around and found their Q&A for DNS Leak Protection https://www.privateinternetaccess.com/pages/client-support/#eighth if you open up the application in windows and go into settings then connection you will find that you can tick the box for "DNS leak protection Prevent leaking DNS queries while on the VPN" I enabled that and did the DNS Leak test again and I only got back 1 IP out of the Netherlands.

 

I'm wondering if there is a value within DelugeVPN that we can enable which does the same thing as in the windows client after all a VPN to the Netherlands or where ever should only show that VPN IP.

 

Also I was wondering if there is anyway for DelugeVPN to use magnet links that would be sent to it from Media Center Master? I found a site that was talking about a PHP file but the github it resided on has been removed.

 

One more thing, I downloaded the checkMyTorrentIp.png and it shows the Netherlands IP as well.

 

Tracker Status:

checkmytorrentip.net: Error: Success, Your torrent client IP is: 46.166.188.223

 

ok so when using DelugeVPN you can set which name servers you wish to use, by default this is set to use Google DNS, you can define which name servers you want my changing the value for key NAME_SERVERS. So to answer your question, no there is no built in "dns leak protection switch" but you can control which name servers you want, the PIA name servers are as follows:-

 

209.222.18.222

209.222.18.218

 

So you could use these for name resolution if you concerned. Just to add a bit more info to this, the risks of DNS leakage are minimised for this docker container, as we aren't routing all of your LAN traffic through this, it is used to purely route torrent traffic and possibly index site hits via privoxy, so information that could be gathered from your name server lookups wouldn't  be very specific to you as a individual, unlike when using the traditional Windows PIA client where ALL traffic is routed through for the host once the VPN is up, including websites you surf such as social sites etc, although even this is small/no risk as PIA do not log anything.

Share this post


Link to post

# accept input from local lan to docker network (any port)
iptables -A INPUT -i eth0 -p tcp -s 192.168.1.0/24 -d 172.17.0.0/16 -j ACCEPT

# accept output from docker network to local lan (any port)
iptables -A OUTPUT -o eth0 -p tcp -s 172.17.0.0/16 -d 192.168.1.0/24 -j ACCEPT

 

I don't want to pester you binhex but it's there any chance of getting this included in the docker?

 

I'm having to reboot rather regularly at the moment due to VM issues and having to go in and reapply it every time is starting  to get old ;D

It will be included in the next build, I've got more than just that to include so it will require some testing, hope to have it done by next Friday latest.

 

Sent from my SM-G900F using Tapatalk

 

This is now done, please pull down the latest image and give it a whirl.

 

note:- i have seen a couple of people reporting an issue where openvpn doesn't start correctly, this maybe due to a stale openvpn docker image being used, so if you see issues it might be wise to delete the docker image and re-pull from fresh to force the pull down of the newer intermediate image.

 

edit - bug in incoming port for build 1.3.13-32, fixed up and currently building again, please update in approx 10 mins from now.

Share this post


Link to post

Upgraded last night and openVPN stopped initializing.

 

The key line in the logs: Options error: Unrecognized option or missing or extra parameter(s) in #####.ovpn:20: script-security (2.4.0)

 

Turns out my provider included this line in the .ovpn file: "script-security 3 system"

 

And "system" is now deprecated.

 

They released new versions of their .ovpn files some time ago with that correction, I just had to find out the hard way...

Share this post


Link to post

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Share this post


Link to post

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

 

Share this post


Link to post

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

 

 

supervisor.txt

Share this post


Link to post

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

 

Share this post


Link to post

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

Here are the contents of the file, changing the port did not seem to make a difference.

 

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1198 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

Share this post


Link to post

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

Here are the contents of the file, changing the port did not seem to make a difference.

 

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1198 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

1198 looks correct according to the ovpn file, I'm assuming you also have downloaded the ca.crt file and put it in the same folder yes?

 

Sent from my SM-G900F using Tapatalk

 

 

Share this post


Link to post

Hi there, hopefully I am asking for help in the right place, I think my issue is something small I am missing.

 

I cannot access the DelugeVPN web UI. I have installed and reinstalled the docker container, and after looking in the logs, I can see that the container does connect to my VPN service, so it seems like it's mostly working.

 

I did set my subnet correctly in the docker template settings, (I use 10.11.12.0/24)

I also opened the core.conf file in the config folder and set remote: 'true' and checked the other settings, they all seemed fine.

I cannot access anything on the port that Deluge is supposed to be running on.

 

Any suggestions on where to start?

 

Thanks in advance.

Attach the supervisord.log located in /config/ watch out for credentials

 

Sent from my SM-G900F using Tapatalk

 

I removed all the credentials I could see that looked sensitive. If you see anything that shouldn't be there let me know, also if you need some more detail I can provide.

 

Thanks in advance, and for the fast response.

Is the port specified in the ovpn file 1198 if not then please change and try again.

 

Sent from my SM-G900F using Tapatalk

 

Here are the contents of the file, changing the port did not seem to make a difference.

 

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1198 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

1198 looks correct according to the ovpn file, I'm assuming you also have downloaded the ca.crt file and put it in the same folder yes?

 

Sent from my SM-G900F using Tapatalk

 

Yes, the certificate and other files are there.

 

Here are the contents of the core.conf file too

 

{

  "file": 1,

  "format": 1

}{

  "info_sent": 0.0,

  "lsd": true,

  "max_download_speed": -1.0,

  "send_info": false,

  "natpmp": true,

  "move_completed_path": "/home/nobody/Completed",

  "peer_tos": "0x00",

  "enc_in_policy": 1,

  "queue_new_to_top": false,

  "ignore_limits_on_local_network": true,

  "rate_limit_ip_overhead": false,

  "daemon_port": 58846,

  "torrentfiles_location": "/home/nobody/Torrents",

  "max_active_limit": 8,

  "geoip_db_location": "/usr/share/GeoIP/GeoIP.dat",

  "upnp": true,

  "utpex": true,

  "max_active_downloading": 3,

  "max_active_seeding": 5,

  "allow_remote": true,

  "outgoing_ports": [

    0,

    0

  ],

  "enabled_plugins": [

  ],

  "max_half_open_connections": 50,

  "download_location": "/home/nobody/Incompletes",

  "compact_allocation": false,

  "max_upload_speed": -1.0,

  "plugins_location": "/config/plugins",

  "max_connections_global": 200,

  "enc_prefer_rc4": true,

  "cache_expiry": 60,

  "dht": true,

  "stop_seed_at_ratio": false,

  "stop_seed_ratio": 2.0,

  "max_download_speed_per_torrent": -1,

  "prioritize_first_last_pieces": false,

  "max_upload_speed_per_torrent": -1,

  "auto_managed": true,

  "enc_level": 2,

  "copy_torrent_file": false,

  "max_connections_per_second": 20,

  "listen_ports": [

    6881,

    6891

  ],

  "max_connections_per_torrent": -1,

  "del_copy_torrent_file": false,

  "move_completed": false,

  "autoadd_enable": false,

  "proxies": {

    "peer": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    },

    "web_seed": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    },

    "tracker": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    },

    "dht": {

      "username": "",

      "password": "",

      "hostname": "",

      "type": 0,

      "port": 8080

    }

  },

  "dont_count_slow_torrents": false,

  "add_paused": false,

  "random_outgoing_ports": true,

  "max_upload_slots_per_torrent": -1,

  "new_release_check": true,

  "enc_out_policy": 1,

  "seed_time_ratio_limit": 7.0,

  "remove_seed_at_ratio": false,

  "autoadd_location": "/home/nobody/Watched",

  "max_upload_slots_global": 4,

  "seed_time_limit": 180,

  "cache_size": 512,

  "share_ratio_limit": 2.0,

  "random_port": true,

  "listen_interface": "8112"

}

Screen_Shot_2017-01-28_at_5_10.39_PM.png.255a0cca2fb9525a3add1c712d79c819.png

Share this post


Link to post

Can you please set debug to true and re run then post the log again.

 

Sent from my SM-G900F using Tapatalk

 

 

Share this post


Link to post

Can you please set debug to true and re run then post the log again.

 

Sent from my SM-G900F using Tapatalk

 

Created by...

___.  .__      .__                 

\_ |__ |__| ____ |  |__  ____ ___  ___

| __ \|  |/    \|  |  \_/ __ \\  \/  /

| \_\ \  |  |  \  Y  \  ___/ >    <

|___  /__|___|  /___|  /\___  >__/\_ \

    \/        \/    \/    \/      \/

  https://hub.docker.com/u/binhex/

 

2017-01-28 18:52:35.399268 [info] Host is running unRAID

2017-01-28 18:52:35.417848 [info] System information Linux 8a1d31e407ce 4.4.30-unRAID #2 SMP PREEMPT Sat Nov 5 12:09:05 PDT 2016 x86_64 GNU/Linux

2017-01-28 18:52:35.441026 [info] PUID defined as '99'

2017-01-28 18:52:35.465069 [info] PGID defined as '100'

2017-01-28 18:52:35.520719 [info] Permissions already set for volume mappings

2017-01-28 18:52:35.547646 [info] VPN_ENABLED defined as 'yes'

2017-01-28 18:52:35.568394 [info] VPN_PROV defined as 'custom'

2017-01-28 18:52:35.589527 [info] VPN_REMOTE defined as 'nl1-ovpn-udp.pointtoserver.com'

2017-01-28 18:52:35.608952 [info] VPN_PORT defined as '1194'

2017-01-28 18:52:35.628419 [info] VPN_PROTOCOL defined as 'udp'

2017-01-28 18:52:35.647994 [info] LAN_NETWORK defined as '10.11.12.0/24'

2017-01-28 18:52:35.667516 [info] NAME_SERVERS defined as '8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177'

2017-01-28 18:52:35.687061 [info] VPN_USER defined as ''

2017-01-28 18:52:35.706655 [info] VPN_PASS defined as ''

2017-01-28 18:52:35.726256 [info] VPN_DEVICE_TYPE defined as 'tun'

2017-01-28 18:52:35.745557 [info] STRONG_CERTS defined as 'no'

2017-01-28 18:52:35.765380 [info] ENABLE_PRIVOXY defined as 'no'

2017-01-28 18:52:35.783113 [info] Setting permissions on files/folders inside container...

2017-01-28 18:52:36,039 CRIT Set uid to user 0

2017-01-28 18:52:36,039 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing

2017-01-28 18:52:36,041 INFO supervisord started with pid 8

2017-01-28 18:52:37,043 INFO spawned: 'checkproc-script' with pid 105

2017-01-28 18:52:37,044 INFO spawned: 'start-script' with pid 106

2017-01-28 18:52:37,045 INFO spawned: 'deluge-script' with pid 107

2017-01-28 18:52:37,046 INFO spawned: 'deluge-web-script' with pid 108

2017-01-28 18:52:37,047 INFO spawned: 'privoxy-script' with pid 109

2017-01-28 18:52:37,057 DEBG 'start-script' stdout output:

[info] VPN is enabled, beginning configuration of VPN

 

2017-01-28 18:52:37,057 INFO success: checkproc-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,057 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-28 18:52:37,058 DEBG 'deluge-script' stdout output:

[info] Deluge config file already exists, skipping copy

 

2017-01-28 18:52:37,058 DEBG 'deluge-script' stdout output:

[info] VPN is enabled, checking VPN tunnel local ip is valid

 

2017-01-28 18:52:37,060 DEBG 'privoxy-script' stdout output:

[info] Privoxy set to disabled

 

2017-01-28 18:52:37,061 DEBG fd 31 closed, stopped monitoring <POutputDispatcher at 47617205265976 for <Subprocess at 47617205251392 with name privoxy-script in state RUNNING> (stderr)>

2017-01-28 18:52:37,061 DEBG fd 27 closed, stopped monitoring <POutputDispatcher at 47617205268424 for <Subprocess at 47617205251392 with name privoxy-script in state RUNNING> (stdout)>

2017-01-28 18:52:37,061 INFO exited: privoxy-script (exit status 0; expected)

2017-01-28 18:52:37,061 DEBG received SIGCLD indicating a child quit

2017-01-28 18:52:37,069 DEBG 'start-script' stdout output:

[debug] Environment variables defined as follows

BASH=/bin/bash

BASHOPTS=cmdhist:complete_fullquote:extquote:force_fignore:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath

BASH_ALIASES=()

BASH_ARGC=()

BASH_ARGV=()

BASH_CMDS=()

BASH_LINENO=([0]="0")

BASH_SOURCE=([0]="/root/start.sh")

BASH_VERSINFO=([0]="4" [1]="4" [2]="5" [3]="1" [4]="release" [5]="x86_64-unknown-linux-gnu")

BASH_VERSION='4.4.5(1)-release'

DEBUG=true

DIRSTACK=()

ENABLE_PRIVOXY=no

EUID=0

GROUPS=()

HOME=/home/nobody

HOSTNAME=8a1d31e407ce

HOSTTYPE=x86_64

HOST_OS=unRAID

IFS=$' \t\n'

LANG=en_GB.UTF-8

LAN_NETWORK=10.11.12.0/24

MACHTYPE=x86_64-unknown-linux-gnu

 

2017-01-28 18:52:37,069 DEBG 'start-script' stdout output:

NAME_SERVERS=8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177

OPTERR=1

OPTIND=1

OSTYPE=linux-gnu

PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

PGID=100

PIPESTATUS=([0]="0")

PPID=8

PS4='+ '

PUID=99

PWD=/

SHELL=/bin/bash

SHELLOPTS=braceexpand:hashall:interactive-comments

SHLVL=1

STRONG_CERTS=no

SUPERVISOR_ENABLED=1

SUPERVISOR_GROUP_NAME=start-script

SUPERVISOR_PROCESS_NAME=start-script

TERM=xterm

TZ=America/New_York

UID=0

VPN_CONFIG=/config/openvpn/Netherlands1-udp.ovpn

VPN_DEVICE_TYPE=tun

VPN_ENABLED=yes

VPN_PASS=

VPN_PORT=1194

VPN_PROTOCOL=udp

VPN_PROV=custom

VPN_REMOTE=nl1-ovpn-udp.pointtoserver.com

VPN_USER=

_='[debug] Environment variables defined as follows'

exit_code_chmod=0

exit_code_chown=0

[debug] Directory listing of files in /config/openvpn as follows

 

2017-01-28 18:52:37,073 DEBG 'start-script' stdout output:

total 36

drwxrwxrwx 1 nobody users  157 Jan 28 17:11 .

drwxrwxr-x 1 nobody users  114 Jan 28 16:31 ..

-rwxrwxrwx 1 nobody users 4096 Jan 27 15:45 ._ca.crt

-rwxrwxrwx 1 nobody users 1667 Apr 10  2014 ca.crt

-rwxrwxrwx 1 nobody users  26 Jan 28 17:11 credentials.conf

-rwxrwxrwx 1 nobody users 4096 Jan 27 15:43 ._.DS_Store

-rwxrwxrwx 1 nobody users 6148 Jan 28 16:31 .DS_Store

-rwxrwxrwx 1 nobody users  399 Jan 28 17:11 Netherlands1-udp.ovpn

-rwxrwxrwx 1 nobody users 4096 Jan 27 15:45 ._Wdc.key

-rwxrwxrwx 1 nobody users  657 Nov  3  2012 Wdc.key

 

2017-01-28 18:52:37,073 DEBG 'start-script' stdout output:

[debug] Contents of ovpn file /config/openvpn/Netherlands1-udp.ovpn as follows...

 

2017-01-28 18:52:37,074 DEBG 'start-script' stdout output:

client

# Disabled, as we pass this value via env var

;dev tun

# Disabled, as we pass this value via env var

;remote nl1-ovpn-udp.pointtoserver.com 1194 udp

persist-key

ca ca.crt

tls-auth Wdc.key 1

cipher AES-256-CBC

comp-lzo

verb 1

mute 20

route-method exe

route-delay 2

route 0.0.0.0 0.0.0.0

auth-user-pass credentials.conf

auth-retry interact

explicit-exit-notify 2

ifconfig-nowarn

auth-nocache

 

 

2017-01-28 18:52:37,074 DEBG 'start-script' stdout output:

[info] VPN config file (ovpn extension) is located at /config/openvpn/Netherlands1-udp.ovpn

 

2017-01-28 18:52:37,100 DEBG 'start-script' stdout output:

[info] Default route for container is 172.17.0.1

 

2017-01-28 18:52:37,102 DEBG 'start-script' stdout output:

[info] Adding 8.8.8.8 to /etc/resolv.conf

 

2017-01-28 18:52:37,105 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.174 to /etc/resolv.conf

 

2017-01-28 18:52:37,107 DEBG 'start-script' stdout output:

[info] Adding 8.8.4.4 to /etc/resolv.conf

 

2017-01-28 18:52:37,110 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.177 to /etc/resolv.conf

 

2017-01-28 18:52:37,110 DEBG 'start-script' stdout output:

[debug] Show name servers defined for container

 

2017-01-28 18:52:37,112 DEBG 'start-script' stdout output:

nameserver 8.8.8.8

nameserver 37.235.1.174

nameserver 8.8.4.4

nameserver 37.235.1.177

[debug] Show name resolution for VPN endpoint nl1-ovpn-udp.pointtoserver.com

 

2017-01-28 18:52:37,157 DEBG 'start-script' stdout output:

;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 48887

;; flags: qr rd ra ; QUERY: 1, ANSWER: 9, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:

;; nl1-ovpn-udp.pointtoserver.com. IN A

 

;; ANSWER SECTION:

nl1-ovpn-udp.pointtoserver.com. 99 IN CNAME nl-ovpn-udp.pointtoserver.com.

nl-ovpn-udp.pointtoserver.com. 99 IN A 206.123.147.2

nl-ovpn-udp.pointtoserver.com. 99 IN A 213.5.64.37

nl-ovpn-udp.pointtoserver.com. 99 IN A 138.99.211.130

nl-ovpn-udp.pointtoserver.com. 99 IN A 213.5.69.62

nl-ovpn-udp.pointtoserver.com. 99 IN A 213.5.64.38

nl-ovpn-udp.pointtoserver.com. 99 IN A 79.142.68.125

nl-ovpn-udp.pointtoserver.com. 99 IN A 185.2.29.191

nl-ovpn-udp.pointtoserver.com. 99 IN A 188.72.98.130

 

;; AUTHORITY SECTION:

 

;; ADDITIONAL SECTION:

 

;; Query time: 42 msec

;; SERVER: 8.8.8.8

;; WHEN: Sat Jan 28 18:52:37 2017

;; MSG SIZE  rcvd: 202

 

2017-01-28 18:52:37,162 DEBG 'start-script' stdout output:

[info] Adding 10.11.12.0/24 as route via docker eth0

 

2017-01-28 18:52:37,163 DEBG 'start-script' stdout output:

[info] ip route defined as follows...

--------------------

 

2017-01-28 18:52:37,164 DEBG 'start-script' stdout output:

default via 172.17.0.1 dev eth0

 

2017-01-28 18:52:37,164 DEBG 'start-script' stdout output:

10.11.12.0/24 via 172.17.0.1 dev eth0

172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.5

 

2017-01-28 18:52:37,165 DEBG 'start-script' stdout output:

--------------------

[debug] Modules currently loaded for kernel

 

2017-01-28 18:52:37,171 DEBG 'start-script' stdout output:

Module                  Size  Used by

xt_nat                  1849  6

veth                    4665  0

ipt_MASQUERADE          1213  7

nf_nat_masquerade_ipv4    1865  1 ipt_MASQUERADE

iptable_nat            1831  1

nf_conntrack_ipv4      5810  2

nf_nat_ipv4            4327  1 iptable_nat

iptable_filter          1528  1

ip_tables              9422  2 iptable_filter,iptable_nat

nf_nat                  9852  3 nf_nat_ipv4,xt_nat,nf_nat_masquerade_ipv4

md_mod                36275  4

nct6775                35316  0

hwmon_vid              2212  1 nct6775

bonding                90588  0

igb                  124436  0

ptp                    8988  1 igb

pps_core                5864  1 ptp

i2c_algo_bit            4624  1 igb

x86_pkg_temp_thermal    4669  0

coretemp                5276  0

kvm_intel            142275  0

kvm                  268324  1 kvm_intel

i2c_i801              10759  0

ahci                  26003  6

i2c_core              18064  3 igb,i2c_i801,i2c_algo_bit

libahci                19067  1 ahci

 

2017-01-28 18:52:37,173 DEBG 'start-script' stdout output:

[warn] iptable_mangle module not supported, you will not be able to connect to ruTorrent or Privoxy outside of your LAN

[info] Please attempt to load the module by executing the following on your host:- '/sbin/modprobe iptable_mangle'

 

2017-01-28 18:52:37,196 DEBG 'start-script' stdout output:

[info] iptables defined as follows...

--------------------

 

2017-01-28 18:52:37,197 DEBG 'start-script' stdout output:

-P INPUT DROP

-P FORWARD ACCEPT

-P OUTPUT DROP

-A INPUT -i tun0 -j ACCEPT

-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A INPUT -i eth0 -p udp -m udp --sport 1194 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A INPUT -s 10.11.12.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT

-A INPUT -p udp -m udp --sport 53 -j ACCEPT

-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT

-A INPUT -i lo -j ACCEPT

-A OUTPUT -o tun0 -j ACCEPT

-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A OUTPUT -o eth0 -p udp -m udp --dport 1194 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A OUTPUT -d 10.11.12.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT

-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT

-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT

-A OUTPUT -o lo -j ACCEPT

 

2017-01-28 18:52:37,197 DEBG 'start-script' stdout output:

--------------------

[info] Starting OpenVPN...

 

2017-01-28 18:52:37,229 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

 

Share this post


Link to post

# accept input from local lan to docker network (any port)
iptables -A INPUT -i eth0 -p tcp -s 192.168.1.0/24 -d 172.17.0.0/16 -j ACCEPT

# accept output from docker network to local lan (any port)
iptables -A OUTPUT -o eth0 -p tcp -s 172.17.0.0/16 -d 192.168.1.0/24 -j ACCEPT

 

I don't want to pester you binhex but it's there any chance of getting this included in the docker?

 

I'm having to reboot rather regularly at the moment due to VM issues and having to go in and reapply it every time is starting  to get old ;D

It will be included in the next build, I've got more than just that to include so it will require some testing, hope to have it done by next Friday latest.

 

Sent from my SM-G900F using Tapatalk

 

This is now done, please pull down the latest image and give it a whirl.

 

note:- i have seen a couple of people reporting an issue where openvpn doesn't start correctly, this maybe due to a stale openvpn docker image being used, so if you see issues it might be wise to delete the docker image and re-pull from fresh to force the pull down of the newer intermediate image.

 

edit - bug in incoming port for build 1.3.13-32, fixed up and currently building again, please update in approx 10 mins from now.

 

Updated, all seems good. Thanks.

Share this post


Link to post

Can you please set debug to true and re run then post the log again.

 

Sent from my SM-G900F using Tapatalk

 

in the docker config you have the port as 1194, change it to 1198 which matches your ovpn file.

Share this post


Link to post

Just as an update, I fixed my issue.

 

It seems to be a problem with the ovpn files I was using. I re-downloaded them from PureVPN and selected "router" as my device. In the zip I downloaded I used new ovpn files and certs and I was able to connect.

 

Thanks for helping me out!

Share this post


Link to post

Hi there!

 

I updated my delugevpn this morning and I can't reach the webGUI.

Logs:

2017-01-30 11:53:34.534371 [info] Starting Supervisor...

2017-01-30 11:53:35,053 CRIT Set uid to user 0

2017-01-30 11:53:35,054 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing

2017-01-30 11:53:35,058 INFO supervisord started with pid 9

2017-01-30 11:53:36,061 INFO spawned: 'checkproc-script' with pid 106

2017-01-30 11:53:36,063 INFO spawned: 'start-script' with pid 107

2017-01-30 11:53:36,065 INFO spawned: 'deluge-script' with pid 108

2017-01-30 11:53:36,066 INFO spawned: 'deluge-web-script' with pid 109

2017-01-30 11:53:36,067 INFO spawned: 'privoxy-script' with pid 110

2017-01-30 11:53:36,074 DEBG 'start-script' stdout output:

[info] VPN is enabled, beginning configuration of VPN

 

2017-01-30 11:53:36,074 INFO success: checkproc-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,078 DEBG 'deluge-script' stdout output:

[info] Deluge config file already exists, skipping copy

 

2017-01-30 11:53:36,079 DEBG 'deluge-script' stdout output:

[info] VPN is enabled, checking VPN tunnel local ip is valid

 

2017-01-30 11:53:36,086 DEBG 'privoxy-script' stdout output:

[info] Privoxy set to disabled

 

2017-01-30 11:53:36,086 DEBG fd 31 closed, stopped monitoring <POutputDispatcher at 47550195628008 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stderr)>

2017-01-30 11:53:36,086 DEBG fd 27 closed, stopped monitoring <POutputDispatcher at 47550195628152 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stdout)>

2017-01-30 11:53:36,086 INFO exited: privoxy-script (exit status 0; expected)

2017-01-30 11:53:36,087 DEBG received SIGCLD indicating a child quit

2017-01-30 11:53:36,087 DEBG 'start-script' stdout output:

[debug] Environment variables defined as follows

 

2017-01-30 11:53:36,088 DEBG 'start-script' stdout output:

BASH=/bin/bash

BASHOPTS=cmdhist:complete_fullquote:extquote:force_fignore:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath

BASH_ALIASES=()

BASH_ARGC=()

BASH_ARGV=()

BASH_CMDS=()

BASH_LINENO=([0]="0")

BASH_SOURCE=([0]="/root/start.sh")

BASH_VERSINFO=([0]="4" [1]="4" [2]="5" [3]="1" [4]="release" [5]="x86_64-unknown-linux-gnu")

BASH_VERSION='4.4.5(1)-release'

DEBUG=true

DIRSTACK=()

ENABLE_PRIVOXY=no

EUID=0

 

)

HOME=/home/nobody

HOSTNAME=c15b3aae8ecd

HOSTTYPE=x86_64

HOST_OS=unRAID

IFS=$' \t\n'

LANG=en_GB.UTF-8

LAN_NETWORK=192.168.1.0/24

MACHTYPE=x86_64-unknown-linux-gnu

NAME_SERVERS=8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177

OPTERR=1

OPTIND=1

OSTYPE=linux-gnu

PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

PGID=100

PIPESTATUS=([0]="0")

PPID=9

PS4='+ '

PUID=99

PWD=/

SHELL=/bin/bash

SHELLOPTS=braceexpand:hashall:interactive-comments

SHLVL=1

STRONG_CERTS=no

SUPERVISOR_ENABLED=1

SUPERVISOR_GROUP_NAME=start-script

SUPERVISOR_PROCESS_NAME=start-script

TERM=xterm

TZ=Europe/Paris

UID=0

VPN_CONFIG=/config/openvpn/***vpn***-udp.ovpn.ovpn

VPN_DEVICE_TYPE=tun

VPN_ENABLED=yes

VPN_PASS=***password***

VPN_PORT=1196

VPN_PROTOCOL=udp

VPN_PROV=custom

VPN_REMOTE=***vpndns***.net

VPN_USER=***username***

_='[debug] Environment variables defined as follows'

exit_code_chmod=0

exit_code_chown=0

[debug] Directory listing of files in /config/openvpn as follows

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

total 8

drwxrwxrwx 1 nobody users 10 Jan 30 11:49 .

drwxrwxr-x 1 nobody users 87 Jan 30 10:12 ..

-rwxrwxrwx 1 nobody users 2876 Jan 30 11:49 ***vpn***-udp.ovpn.ovpn

-rwxrwxrwx 1 nobody users 30 Jan 30 11:49 credentials.conf

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

[debug] Contents of ovpn file /config/openvpn/***vpn***-udp.ovpn.ovpn as follows...

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

verb 9

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote ***vpndns***.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#register-dns

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

 

</ca>

2017-01-30 11:53:36,093 DEBG 'start-script' stdout output:

[info] VPN config file (ovpn extension) is located at /config/openvpn/***vpn***-udp.ovpn.ovpn

 

2017-01-30 11:53:36,162 DEBG 'start-script' stdout output:

[info] Default route for container is 172.17.0.1

 

2017-01-30 11:53:36,167 DEBG 'start-script' stdout output:

[info] Adding 8.8.8.8 to /etc/resolv.conf

 

2017-01-30 11:53:36,172 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.174 to /etc/resolv.conf

 

2017-01-30 11:53:36,177 DEBG 'start-script' stdout output:

[info] Adding 8.8.4.4 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.177 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[debug] Show name servers defined for container

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

nameserver 8.8.8.8

nameserver 37.235.1.174

nameserver 8.8.4.4

nameserver 37.235.1.177

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

[debug] Show name resolution for VPN endpoint ***vpndns***.net

 

2017-01-30 11:53:36,278 DEBG 'start-script' stdout output:

;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 61185

;; flags: qr rd ra ; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 0

;; QUESTION SECTION:

;; ***vpndns***.net. IN A

 

;; ANSWER SECTION:

***vpndns***.net. 9 IN A ***ip***

***vpndns***.net. 9 IN A ***ip***

 

;; AUTHORITY SECTION:

***vpndns*** 3599 IN NS ***vpndns***

***vpndns*** 3599 IN NS ***vpndns***

 

;; ADDITIONAL SECTION:

 

;; Query time: 93 msec

;; SERVER: 8.8.8.8

;; WHEN: Mon Jan 30 11:53:36 2017

;; MSG SIZE rcvd: 123

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] Adding 192.168.1.0/24 as route via docker eth0

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] ip route defined as follows...

--------------------

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

default via 172.17.0.1 dev eth0

172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.3

192.168.1.0/24 via 172.17.0.1 dev eth0

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

--------------------

[debug] Modules currently loaded for kernel

 

2017-01-30 11:53:36,288 DEBG 'start-script' stdout output:

Module Size Used by

xt_CHECKSUM 1271 1

iptable_mangle 1592 1

ipt_REJECT 1457 2

nf_reject_ipv4 2419 1 ipt_REJECT

ebtable_filter 1839 0

ebtables 14232 1 ebtable_filter

vhost_net 8037 1

tun 16556 7 vhost_net

vhost 13029 1 vhost_net

macvtap 9551 1 vhost_net

macvlan 11993 1 macvtap

xt_nat 1849 8

veth 4665 0

ipt_MASQUERADE 1213 12

nf_nat_masquerade_ipv4 1865 1 ipt_MASQUERADE

iptable_nat 1831 1

nf_conntrack_ipv4 5810 8

nf_nat_ipv4 4327 1 iptable_nat

iptable_filter 1528 1

ip_tables 9422 3 iptable_filter,iptable_mangle,iptable_nat

nf_nat 9852 3 nf_nat_ipv4,xt_nat,nf_nat_masquerade_ipv4

md_mod 36275 3

coretemp 5276 0

kvm_intel 142275 4

kvm 268324 1 kvm_intel

i2c_i801 10759 0

i2c_core 18064 1 i2c_i801

r8169 57980 0

pata_jmicron 2563 0

mii 3523 1 r8169

ahci 26003 6

libahci 19067 1 ahci

acpi_cpufreq 6306 0

 

2017-01-30 11:53:36,291 DEBG 'start-script' stdout output:

[info] iptable_mangle support detected, adding fwmark for tables

 

2017-01-30 11:53:36,332 DEBG 'start-script' stdout output:

[info] iptables defined as follows...

--------------------

 

2017-01-30 11:53:36,333 DEBG 'start-script' stdout output:

-P INPUT DROP

-P FORWARD ACCEPT

-P OUTPUT DROP

-A INPUT -i tun0 -j ACCEPT

-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A INPUT -i eth0 -p udp -m udp --sport 1196 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT

-A INPUT -p udp -m udp --sport 53 -j ACCEPT

-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT

-A INPUT -i lo -j ACCEPT

-A OUTPUT -o tun0 -j ACCEPT

-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A OUTPUT -o eth0 -p udp -m udp --dport 1196 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT

-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT

-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT

-A OUTPUT -o lo -j ACCEPT

 

2017-01-30 11:53:36,334 DEBG 'start-script' stdout output:

--------------------

[info] Starting OpenVPN...

 

2017-01-30 11:53:36,356 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

2017-01-30 11:53:46,363 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:53:46,374 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:06,382 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:06,396 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:26,406 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:26,417 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

As you can see, OpenVPN restarts every 20 seconds or so. What I don't understand is that my VPN provider logs does receive these "successful" connections

They last 2 minutes each: 7,4 Kio up / 2,6 Kio down.

 

I tried removing the delugevpn image pulling it again. I also tried with a brand new config file from my vpn provider. But no success so far...

 

Any help is welcome! :)

Share this post


Link to post

Hi there!

 

I updated my delugevpn this morning and I can't reach the webGUI.

Logs:

2017-01-30 11:53:34.534371 [info] Starting Supervisor...

2017-01-30 11:53:35,053 CRIT Set uid to user 0

2017-01-30 11:53:35,054 INFO Included extra file "/etc/supervisor/conf.d/delugevpn.conf" during parsing

2017-01-30 11:53:35,058 INFO supervisord started with pid 9

2017-01-30 11:53:36,061 INFO spawned: 'checkproc-script' with pid 106

2017-01-30 11:53:36,063 INFO spawned: 'start-script' with pid 107

2017-01-30 11:53:36,065 INFO spawned: 'deluge-script' with pid 108

2017-01-30 11:53:36,066 INFO spawned: 'deluge-web-script' with pid 109

2017-01-30 11:53:36,067 INFO spawned: 'privoxy-script' with pid 110

2017-01-30 11:53:36,074 DEBG 'start-script' stdout output:

[info] VPN is enabled, beginning configuration of VPN

 

2017-01-30 11:53:36,074 INFO success: checkproc-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: deluge-web-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,074 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs)

2017-01-30 11:53:36,078 DEBG 'deluge-script' stdout output:

[info] Deluge config file already exists, skipping copy

 

2017-01-30 11:53:36,079 DEBG 'deluge-script' stdout output:

[info] VPN is enabled, checking VPN tunnel local ip is valid

 

2017-01-30 11:53:36,086 DEBG 'privoxy-script' stdout output:

[info] Privoxy set to disabled

 

2017-01-30 11:53:36,086 DEBG fd 31 closed, stopped monitoring <POutputDispatcher at 47550195628008 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stderr)>

2017-01-30 11:53:36,086 DEBG fd 27 closed, stopped monitoring <POutputDispatcher at 47550195628152 for <Subprocess at 47550196391232 with name privoxy-script in state RUNNING> (stdout)>

2017-01-30 11:53:36,086 INFO exited: privoxy-script (exit status 0; expected)

2017-01-30 11:53:36,087 DEBG received SIGCLD indicating a child quit

2017-01-30 11:53:36,087 DEBG 'start-script' stdout output:

[debug] Environment variables defined as follows

 

2017-01-30 11:53:36,088 DEBG 'start-script' stdout output:

BASH=/bin/bash

BASHOPTS=cmdhist:complete_fullquote:extquote:force_fignore:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath

BASH_ALIASES=()

BASH_ARGC=()

BASH_ARGV=()

BASH_CMDS=()

BASH_LINENO=([0]="0")

BASH_SOURCE=([0]="/root/start.sh")

BASH_VERSINFO=([0]="4" [1]="4" [2]="5" [3]="1" [4]="release" [5]="x86_64-unknown-linux-gnu")

BASH_VERSION='4.4.5(1)-release'

DEBUG=true

DIRSTACK=()

ENABLE_PRIVOXY=no

EUID=0

 

)

HOME=/home/nobody

HOSTNAME=c15b3aae8ecd

HOSTTYPE=x86_64

HOST_OS=unRAID

IFS=$' \t\n'

LANG=en_GB.UTF-8

LAN_NETWORK=192.168.1.0/24

MACHTYPE=x86_64-unknown-linux-gnu

NAME_SERVERS=8.8.8.8,37.235.1.174,8.8.4.4,37.235.1.177

OPTERR=1

OPTIND=1

OSTYPE=linux-gnu

PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

PGID=100

PIPESTATUS=([0]="0")

PPID=9

PS4='+ '

PUID=99

PWD=/

SHELL=/bin/bash

SHELLOPTS=braceexpand:hashall:interactive-comments

SHLVL=1

STRONG_CERTS=no

SUPERVISOR_ENABLED=1

SUPERVISOR_GROUP_NAME=start-script

SUPERVISOR_PROCESS_NAME=start-script

TERM=xterm

TZ=Europe/Paris

UID=0

VPN_CONFIG=/config/openvpn/***vpn***-udp.ovpn.ovpn

VPN_DEVICE_TYPE=tun

VPN_ENABLED=yes

VPN_PASS=***password***

VPN_PORT=1196

VPN_PROTOCOL=udp

VPN_PROV=custom

VPN_REMOTE=***vpndns***.net

VPN_USER=***username***

_='[debug] Environment variables defined as follows'

exit_code_chmod=0

exit_code_chown=0

[debug] Directory listing of files in /config/openvpn as follows

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

total 8

drwxrwxrwx 1 nobody users 10 Jan 30 11:49 .

drwxrwxr-x 1 nobody users 87 Jan 30 10:12 ..

-rwxrwxrwx 1 nobody users 2876 Jan 30 11:49 ***vpn***-udp.ovpn.ovpn

-rwxrwxrwx 1 nobody users 30 Jan 30 11:49 credentials.conf

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

[debug] Contents of ovpn file /config/openvpn/***vpn***-udp.ovpn.ovpn as follows...

 

2017-01-30 11:53:36,092 DEBG 'start-script' stdout output:

verb 9

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote ***vpndns***.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#register-dns

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

 

</ca>

2017-01-30 11:53:36,093 DEBG 'start-script' stdout output:

[info] VPN config file (ovpn extension) is located at /config/openvpn/***vpn***-udp.ovpn.ovpn

 

2017-01-30 11:53:36,162 DEBG 'start-script' stdout output:

[info] Default route for container is 172.17.0.1

 

2017-01-30 11:53:36,167 DEBG 'start-script' stdout output:

[info] Adding 8.8.8.8 to /etc/resolv.conf

 

2017-01-30 11:53:36,172 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.174 to /etc/resolv.conf

 

2017-01-30 11:53:36,177 DEBG 'start-script' stdout output:

[info] Adding 8.8.4.4 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[info] Adding 37.235.1.177 to /etc/resolv.conf

 

2017-01-30 11:53:36,182 DEBG 'start-script' stdout output:

[debug] Show name servers defined for container

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

nameserver 8.8.8.8

nameserver 37.235.1.174

nameserver 8.8.4.4

nameserver 37.235.1.177

 

2017-01-30 11:53:36,183 DEBG 'start-script' stdout output:

[debug] Show name resolution for VPN endpoint ***vpndns***.net

 

2017-01-30 11:53:36,278 DEBG 'start-script' stdout output:

;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 61185

;; flags: qr rd ra ; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 0

;; QUESTION SECTION:

;; ***vpndns***.net. IN A

 

;; ANSWER SECTION:

***vpndns***.net. 9 IN A ***ip***

***vpndns***.net. 9 IN A ***ip***

 

;; AUTHORITY SECTION:

***vpndns*** 3599 IN NS ***vpndns***

***vpndns*** 3599 IN NS ***vpndns***

 

;; ADDITIONAL SECTION:

 

;; Query time: 93 msec

;; SERVER: 8.8.8.8

;; WHEN: Mon Jan 30 11:53:36 2017

;; MSG SIZE rcvd: 123

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] Adding 192.168.1.0/24 as route via docker eth0

 

2017-01-30 11:53:36,285 DEBG 'start-script' stdout output:

[info] ip route defined as follows...

--------------------

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

default via 172.17.0.1 dev eth0

172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.3

192.168.1.0/24 via 172.17.0.1 dev eth0

 

2017-01-30 11:53:36,286 DEBG 'start-script' stdout output:

--------------------

[debug] Modules currently loaded for kernel

 

2017-01-30 11:53:36,288 DEBG 'start-script' stdout output:

Module Size Used by

xt_CHECKSUM 1271 1

iptable_mangle 1592 1

ipt_REJECT 1457 2

nf_reject_ipv4 2419 1 ipt_REJECT

ebtable_filter 1839 0

ebtables 14232 1 ebtable_filter

vhost_net 8037 1

tun 16556 7 vhost_net

vhost 13029 1 vhost_net

macvtap 9551 1 vhost_net

macvlan 11993 1 macvtap

xt_nat 1849 8

veth 4665 0

ipt_MASQUERADE 1213 12

nf_nat_masquerade_ipv4 1865 1 ipt_MASQUERADE

iptable_nat 1831 1

nf_conntrack_ipv4 5810 8

nf_nat_ipv4 4327 1 iptable_nat

iptable_filter 1528 1

ip_tables 9422 3 iptable_filter,iptable_mangle,iptable_nat

nf_nat 9852 3 nf_nat_ipv4,xt_nat,nf_nat_masquerade_ipv4

md_mod 36275 3

coretemp 5276 0

kvm_intel 142275 4

kvm 268324 1 kvm_intel

i2c_i801 10759 0

i2c_core 18064 1 i2c_i801

r8169 57980 0

pata_jmicron 2563 0

mii 3523 1 r8169

ahci 26003 6

libahci 19067 1 ahci

acpi_cpufreq 6306 0

 

2017-01-30 11:53:36,291 DEBG 'start-script' stdout output:

[info] iptable_mangle support detected, adding fwmark for tables

 

2017-01-30 11:53:36,332 DEBG 'start-script' stdout output:

[info] iptables defined as follows...

--------------------

 

2017-01-30 11:53:36,333 DEBG 'start-script' stdout output:

-P INPUT DROP

-P FORWARD ACCEPT

-P OUTPUT DROP

-A INPUT -i tun0 -j ACCEPT

-A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A INPUT -i eth0 -p udp -m udp --sport 1196 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A INPUT -i eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 58846 -j ACCEPT

-A INPUT -p udp -m udp --sport 53 -j ACCEPT

-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT

-A INPUT -i lo -j ACCEPT

-A OUTPUT -o tun0 -j ACCEPT

-A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT

-A OUTPUT -o eth0 -p udp -m udp --dport 1196 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --dport 8112 -j ACCEPT

-A OUTPUT -o eth0 -p tcp -m tcp --sport 8112 -j ACCEPT

-A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 58846 -j ACCEPT

-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT

-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT

-A OUTPUT -o lo -j ACCEPT

 

2017-01-30 11:53:36,334 DEBG 'start-script' stdout output:

--------------------

[info] Starting OpenVPN...

 

2017-01-30 11:53:36,356 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

2017-01-30 11:53:46,363 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:53:46,374 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:06,382 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:06,396 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

2017-01-30 11:54:26,406 DEBG 'start-script' stdout output:

[warn] OpenVPN process terminated, restarting OpenVPN...

 

2017-01-30 11:54:26,417 DEBG 'start-script' stdout output:

[info] OpenVPN restarted

 

As you can see, OpenVPN restarts every 20 seconds or so. What I don't understand is that my VPN provider logs does receive these "successful" connections

They last 2 minutes each: 7,4 Kio up / 2,6 Kio down.

 

I tried removing the delugevpn image pulling it again. I also tried with a brand new config file from my vpn provider. But no success so far...

 

Any help is welcome! :)

 

ok im not sure what spec system your running on, but i have a feeling the sleep period before checking if openvpn is up may not be long enough on some lower powered systems, so ive upped the sleep period and put in a better check for initial checking of openvpn. so thats built right now, please pull down the latest image and give it a whirl.

Share this post


Link to post

Thanks for the answer. This time the start script seems to be run once:

2017-01-30 15:50:07,931 DEBG 'start-script' stdout output:

 

--------------------

[info] Starting OpenVPN...

 

2017-01-30 15:50:07,942 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

However I still can't reach the webUI (and Sonarr can't ping deluge as well).

My vpn provider only logs one connection though: 2 minutes long, 7,4 Kio up / 2,6 Kio down.

 

It's running on a core i5 750 with 16Gb of ram. Not brand new, but still somewhat capable.

Share this post


Link to post

Thanks for the answer. This time the start script seems to be run once:

2017-01-30 15:50:07,931 DEBG 'start-script' stdout output:

 

--------------------

[info] Starting OpenVPN...

 

2017-01-30 15:50:07,942 DEBG 'start-script' stdout output:

[info] OpenVPN started

 

However I still can't reach the webUI (and Sonarr can't ping deluge as well).

My vpn provider only logs one connection though: 2 minutes long, 7,4 Kio up / 2,6 Kio down.

 

It's running on a core i5 750 with 16Gb of ram. Not brand new, but still somewhat capable.

 

full supervisord.log file please, its located in /config/ on the host

Share this post


Link to post

Here you go  ;)

 

ok so your not getting a connection established to your vpn provider, thus its stopping at started openvpn and not progessing, you can delete everything in your /config/openvpn/ and re-download the ovpn files and cert (if its not inline) and put them in /config/openvpn and then give it a restart

Share this post


Link to post

I already did that and just tried once more. I'm still unable to access deluge UI.  :(

 

Don't know if that's related, but when I download the ovpn file from my provider, I have to comment these lines:

up /etc/openvpn/update-resolv-conf

down /etc/openvpn/update-resolv-conf

 

Otherwise I get this error:

 

[info] Starting OpenVPN...

 

2017-01-30 18:07:29,035 DEBG 'start-script' stdout output:

Options error: --up script fails with '/etc/openvpn/update-resolv-conf': No such file or directory

Options error: Please correct this error.

 

But this modification was working prior to today's update, so I don't think that's the issue.

Share this post


Link to post

I already did that and just tried once more. I'm still unable to access deluge UI.  :(

 

Don't know if that's related, but when I download the ovpn file from my provider, I have to comment these lines:

up /etc/openvpn/update-resolv-conf

down /etc/openvpn/update-resolv-conf

 

Otherwise I get this error:

 

[info] Starting OpenVPN...

 

2017-01-30 18:07:29,035 DEBG 'start-script' stdout output:

Options error: --up script fails with '/etc/openvpn/update-resolv-conf': No such file or directory

Options error: Please correct this error.

 

But this modification was working prior to today's update, so I don't think that's the issue.

 

what are you using to modify the ovpn file to remove/comment the line out?, if its not something thats aware of unix line endings then it could stuff up the line endings which could then cause the ovpn to not be read correctly. install notepad++ (or Atom if not a windows user) and then open the file and make sure the line endings are set to "unix" or "LF" and NOT "CRLF", save the file and give the container a reboot.

Share this post


Link to post

Yeah I'm using Notepad++ and just double checked: the file is Unix (LF).  ;)

I also tried to save it with vim via a ssh.

Here's the ovpn file by the way:

 

verb 4

client

tls-client

script-security 2

remote-cert-tls server

# Disabled, as we pass this value via env var

;dev tun

nobind

persist-key

comp-lzo yes

 

# Disabled, as we pass this value via env var

;remote **********vpn.net 1196 udp

 

auth-user-pass credentials.conf

 

redirect-gateway def1

#up /etc/openvpn/update-resolv-conf

#down /etc/openvpn/update-resolv-conf

 

<ca>

-----BEGIN CERTIFICATE-----

***

-----END CERTIFICATE-----

</ca>

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now