[Support] binhex - DelugeVPN


Recommended Posts

did you check to see if deluge did indeed have a dynamically allocated incoming port?
Sorry how do I do that? I just tried rutorrentvpn that didn't even start downloading, tried activ-tranmission with PIA

My normal orignal transmission downloaded unbuntu at 28MB/s without any VPN

Im wondering if its something in my router settings I need to do

Sent from my SM-G930F using Tapatalk

Link to comment
9 minutes ago, bally12345 said:

Sorry how do I do that?

you go to the deluge ui and where you had it enabled for random port it should now show a set port number.

 

9 minutes ago, bally12345 said:

Im wondering if its something in my router settings I need to do

nope nothing to do with your router as per my link to faq q16 earlier, however it is possible your router cannot cope with encrypted traffic, comercial grade (esp isp routers) are notoriously underpowered.

Edited by binhex
Link to comment
nope nothing to do with your router as per my link to faq q16 earlier, however it is possible your router cannot cope with encrypted traffic, comercial grade (esp isp routers) are notoriously underpowered.
Asus router, I could just setup PIA on my router but I only want it for my a few dockers.



Sent from my SM-G930F using Tapatalk

Link to comment
9 minutes ago, bally12345 said:

Really simple check, disabled VPN from container settings, restarted and download at 45MB/s

enable VPN and hit 1MB/s


I deleted everything and started again, so pretty vanilla setup other than entering the PIA credentials and 3 files to the openvpn folder now using FRANCE

 

 

Screenshot 2019-02-25 15.43.23.png

screenshot for the incoming port please, obviously with vpn enabled

Edited by binhex
Link to comment
9 minutes ago, bally12345 said:

Network interface is now showing as 0.0.0.0 is that correct?

yep thats normal, looks like the incoming port is now set correctly, and you are still limited to 1MB/s ?, i see you have redone things so double check upload rate/download rate etc as per my earlier post:-

 

have a look at the link below for hints on how to fix this, Q6:-

 

https://forums.unraid.net/topic/44108-support-binhex-general/?tab=comments#comment-433613

Link to comment
9 minutes ago, binhex said:

yep thats normal, looks like the incoming port is now set correctly, and you are still limited to 1MB/s ?, i see you have redone things so double check upload rate/download rate etc as per my earlier post:-

 

have a look at the link below for hints on how to fix this, Q6:-

 

https://forums.unraid.net/topic/44108-support-binhex-general/?tab=comments#comment-433613

Still no joy even after reading everything in the post I get zero improvement,

 

***UPDATE*** 

Found the fix here

Installed itconfig Plugin and disabled enable_incoming_utp and enable_outgoing_utp 

 

Now getting 20MB/s via VPN!!!! Happy days!

 

  • Upvote 1
Link to comment
6 minutes ago, bally12345 said:

Installed itconfig Plugin and disabled enable_incoming_utp and enable_outgoing_utp 

hmm ok new one on me, fyi i did a quick torrent download of the same torrent as you, ubuntu 18.10 desktop and hit 3MB/s no probs, which is not too bad for my connection, thats without the above tweak *shrug*, glad you got something that works for you, i will add this to the faq.

  • Like 1
Link to comment
10 hours ago, binhex said:

@Rudder2 this is the issue now:-

 


2019-02-24 19:32:47,525 DEBG 'start-script' stdout output:
Sun Feb 24 19:32:47 2019 [vpn] Inactivity timeout (--ping-restart), restarting

so for some reason the tunnel is establishing BUT the built in ping functionality in openvpn is terminating as it cannot ping the other end of the tunnel, this then results in the tunnel being torn down and re-created. 

 

so the question is, why is this happening?, well my guess is out of date ovpn file, not sure where you have got this from but i would double check with the vpn provider that its up to date, if it is then try another endpoint, maybe the endpoint you are connecting to (dallas) is a bit flaky. 

 

if you want a hassle free experience then switch to PIA, it just works.

Weird, because when I ping an IP address in the tunnel I get packets.  I cannot ping web addresses as it can't resolve the DNS.  I think the problem is a DNS problem. 

 

Link to comment
15 hours ago, binhex said:

@Rudder2 this is the issue now:-

 


2019-02-24 19:32:47,525 DEBG 'start-script' stdout output:
Sun Feb 24 19:32:47 2019 [vpn] Inactivity timeout (--ping-restart), restarting

so for some reason the tunnel is establishing BUT the built in ping functionality in openvpn is terminating as it cannot ping the other end of the tunnel, this then results in the tunnel being torn down and re-created. 

 

so the question is, why is this happening?, well my guess is out of date ovpn file, not sure where you have got this from but i would double check with the vpn provider that its up to date, if it is then try another endpoint, maybe the endpoint you are connecting to (dallas) is a bit flaky. 

 

if you want a hassle free experience then switch to PIA, it just works.

I'm sorry for doubting you.  You are right!  The Dallas A02 exit node was broken!!  I changed it to the Atlanta-a01 exit node and It says I have a VPN IP and a Deluge IP but I still can't access the WebUI.  And this time when I try to go to the Proxy port it says "Invalid header received from client." instead of "This site can’t be reached ERR_CONNECTION_REFUSED"!  Things are getting better!  Here is my supervisord.log again. 

 

Hopefully it's the last time.  Your AWESOME!  Thank you for your help!

supervisord.log

Edited by Rudder2
Link to comment
1 minute ago, PeterB said:

How do you disable theses?  In ItConfig, there are three boxes on these lines.  The left-hand box is unticked. The boxes under the 'Setting' and 'Actual' columns will not change state.

 

If you check the first column, you can then uncheck the one in the middle.  I don't know if it actually is working.

Link to comment
8 hours ago, Rudder2 said:

Things are getting better!  Here is my supervisord.log again. 

ok so i agree, def progress, looks like the tunnel is established and isnt now dropping which is good. so the issue with not being able to access the web ui is normally due to one (or both) of the following issues:-

 

1. LAN_NETWORK not defined correctly - see Q4 in the following link to verify you have this defined correctly.

https://forums.unraid.net/topic/44108-support-binhex-general/?tab=comments#comment-433613

 

2. Using custom bridge - custom bridge is not currently supported and doesn't work correctly, you need to use the default bridge.

Link to comment

@PeterB @wgstarks this also might be of interest to you guys who want to eek out that last additional speed improvement from vpn tunnel:-

 

(VPN provider specific) Use GCM cipher instead of CBC - If the VPN provider you are using supports AES-128/256-GCM (PIA does support this) then by switching to GCM you can improve security (stronger cipher), reduce CPU load and potentially improve dl/ul speeds when compared to using traditional ciphers such as CBC. To achieve this you simply edit the ovpn configuration file located in /config/openvpn/ and include the following lines, once saved restart the container:-

cipher aes-128-gcm
auth sha256
ncp-disable

Note - Please ensure you remove any other existing lines that may clash with the lines above, 

Link to comment
7 hours ago, binhex said:

ok so i agree, def progress, looks like the tunnel is established and isnt now dropping which is good. so the issue with not being able to access the web ui is normally due to one (or both) of the following issues:-

 

1. LAN_NETWORK not defined correctly - see Q4 in the following link to verify you have this defined correctly.

https://forums.unraid.net/topic/44108-support-binhex-general/?tab=comments#comment-433613

 

2. Using custom bridge - custom bridge is not currently supported and doesn't work correctly, you need to use the default bridge.

I have my LAN Network set to: 192.168.2.0/24 and Network Type set to: Bridge not any of the others, tried then just for shits and giggles and they give errors.  My LAN on 192.168.2.1 as the first IP and 192.168.2.254 as the last IP. AKA 192.168.2.1 with a Subnet of 255.255.255.0

Link to comment
2 minutes ago, Rudder2 said:

I have my LAN Network set to: 192.168.2.0/24 and Network Type set to: Bridge not any of the others, tried then just for shits and giggles and they give errors.  My LAN on 192.168.2.1 as the first IP and 192.168.2.254 as the last IP. AKA 192.168.2.1 with a Subnet of 255.255.255.0

ok so that all sounds fine, can you confirm you are attempting to connect using url:-

 

http://<your unraid servers ip address>:<the host port mapping for 8112>

 

e.g. http://192.168.2.1:8112

Link to comment
25 minutes ago, binhex said:

ok so that all sounds fine, can you confirm you are attempting to connect using url:-

 

http://<your unraid servers ip address>:<the host port mapping for 8112>

 

e.g. http://192.168.2.1:8112

Port 8112 is in use so I have port 8112 mapped to 8114 threw unRAID. 

Link to comment
13 hours ago, binhex said:

To achieve this you simply edit the ovpn configuration file located in /config/openvpn/ and include the following lines, once saved restart the container:-

Just wanted to confirm this is correct-

remote france.privateinternetaccess.com 1198
client
dev tun
proto udp
resolv-retry infinite
nobind
persist-key
cipher aes-128-gcm
auth sha256
ncp-disable
tls-client
remote-cert-tls server
auth-user-pass credentials.conf
comp-lzo
verb 1
crl-verify crl.rsa.2048.pem
ca ca.rsa.2048.crt
disable-occ

 

Link to comment
10 hours ago, wgstarks said:
Just wanted to confirm this is correct-

remote france.privateinternetaccess.com 1198clientdev tunproto udpresolv-retry infinitenobindpersist-keycipher aes-128-gcmauth sha256ncp-disabletls-clientremote-cert-tls serverauth-user-pass credentials.confcomp-lzoverb 1crl-verify crl.rsa.2048.pemca ca.rsa.2048.crtdisable-occ
 

 

Looks good to me dude, ive personally been using GCM for 2 months+ now with no issues whatsoever.

Sent from my EML-L29 using Tapatalk
 

Edited by binhex
Link to comment

Hey binhex

 

first of all, thank you so much for all the work you put into this and especially for answering questions here. I am using hide.me as my vpn provider and they do offer port forwarding but I can't get it to work with deluge. 

I do think that I've found the issue in the log files, but I have no idea what to do about it. It appears that deluge is ignoring the upnp answer from hide.me because it is outside the network.

[DEBUG   ] 23:45:50 alertmanager:124 portmap_log_alert: UPnP: broadcasting search for rootdevice
[DEBUG   ] 23:45:50 alertmanager:124 portmap_log_alert: UPnP: HTTP method m-search from 10.3.126.114:37520
[DEBUG   ] 23:45:50 alertmanager:124 portmap_log_alert: UPnP: HTTP method m-search from 10.3.126.114:1900
[DEBUG   ] 23:45:50 alertmanager:124 portmap_log_alert: UPnP: HTTP method m-search from 10.3.126.114:1900
[DEBUG   ] 23:45:50 alertmanager:124 portmap_log_alert: UPnP: ignoring response from: 10.255.255.250:1900. IP is not on local network. (127.0.0.1,255.0.0.0) (10.3.126.114,255.255.255.0) (172.17.0.8,255.255.0.0) 
[DEBUG   ] 23:45:50 alertmanager:124 portmap_log_alert: UPnP: ignoring response from: 10.255.255.250:1900. IP is not on local network. (127.0.0.1,255.0.0.0) (10.3.126.114,255.255.255.0) (172.17.0.8,255.255.0.0) 
[DEBUG   ] 23:45:50 alertmanager:124 portmap_log_alert: UPnP: ignoring response from: 10.255.255.250:1900. IP is not on local network. (127.0.0.1,255.0.0.0) (10.3.126.114,255.255.255.0) (172.17.0.8,255.255.0.0) 
[DEBUG   ] 23:46:12 alertmanager:124 portmap_log_alert: UPnP: broadcasting search for rootdevice
[DEBUG   ] 23:46:12 alertmanager:124 portmap_log_alert: UPnP: HTTP method m-search from 10.3.126.114:37520
[DEBUG   ] 23:46:12 alertmanager:124 portmap_log_alert: UPnP: HTTP method m-search from 10.3.126.114:1900
[DEBUG   ] 23:46:12 alertmanager:124 portmap_log_alert: UPnP: HTTP method m-search from 10.3.126.114:1900
[DEBUG   ] 23:46:12 alertmanager:124 portmap_log_alert: UPnP: ignoring response from: 10.255.255.250:1900. IP is not on local network. (127.0.0.1,255.0.0.0) (10.3.126.114,255.255.255.0) (172.17.0.8,255.255.0.0) 
[DEBUG   ] 23:46:12 alertmanager:124 portmap_log_alert: UPnP: ignoring response from: 10.255.255.250:1900. IP is not on local network. (127.0.0.1,255.0.0.0) (10.3.126.114,255.255.255.0) (172.17.0.8,255.255.0.0) 
[DEBUG   ] 23:46:12 alertmanager:124 portmap_log_alert: UPnP: ignoring response from: 10.255.255.250:1900. IP is not on local network. (127.0.0.1,255.0.0.0) (10.3.126.114,255.255.255.0) (172.17.0.8,255.255.0.0) 
[DEBUG   ] 23:46:35 alertmanager:124 portmap_error_alert: could not map port using UPnP: no router found
[DEBUG   ] 23:46:35 alertmanager:124 portmap_error_alert: could not map port using UPnP: no router found
[DEBUG   ] 23:46:35 alertmanager:124 portmap_error_alert: could not map port using UPnP: no router found
[DEBUG   ] 23:47:10 alertmanager:124 save_resume_data_alert: KNOPPIX_V8.1-2017-09-05-EN resume data generated

Maybe you have an idea how to fix this, because rn I'm not getting any incoming connections. 

Thanks so much!

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.