Jump to content

[Support] binhex - DelugeVPN

binhex

By binhex
in Docker Containers

Recommended Posts

Recommended

Posted by binhex,

There has been an issue raised on GitHub related to tracker announce request IP leakage under certain circumstances, after careful review of iptables i have tightened up the rules to prevent this. A new image has now been rolled out for all vpn enabled docker images (25th Feb 2021) i produce with the fix in place, i would encourage everyone to update to the recently created 'latest' tagged image.   You can force the upgrade by toggling 'basic view' to 'advanced view' and then clicking on
Recommended by binhex
  • Thanks
  • Like

8 reactions

Go to this post
Recommended

Posted by Ryanoc3ros,

Found the solution on reddit.   Due to the recent change in the authentication process, using your email and password for the manual connection method will no longer work. You will need to use the service credentials instead. You can find your service credentials by following these steps: Please log in to your Nord Account by following this link: https://my.nordaccount.com/dashboard/nordvpn/ Click on the NordVPN tab on the left panel which is under the Services tab.

NordVPN authentication issues - Solution

Recommended by binhex

  • Upvote
  • Thanks
  • Like

13 reactions

Go to this post
boianski Rookie

boianski

Posted
Posted (edited)

For some odd reason I can only add one torrent file at a time. When I try to bulk add more than one file and click the add button, nothing happens. But if I choose only one file, it adds it no problem. This problem has persisted for a while. The docker is up to date. The OS is latest. I've tried multiple browsers. 

 

Anyone seen this before and if so is there a fix? Thank you! 

chrome_yop0zgLsdi.png

Edited by boianski
Link to comment
  • Replies 10.5k
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

Ryanoc3ros
Ryanoc3ros

Found the solution on reddit.   Due to the recent change in the authentication process, using your email and password for the manual connection method will no longer work. You will need to u

Dad_Rage
Dad_Rage

I wanted to summarize how I got Mullvad working with DelugeVPN as I had to piece together several "solutions" from different comments in this thread and there was some incorrect info; likely old.

binhex
binhex

OK guys, multi remote endpoint support is now in for this image please pull down the new image (this change will be rolled out to all my vpn images shortly).   What this means is that the im

Posted Images

neiljones Noob

neiljones

Posted
Posted (edited)

I've been sick of my sluggish QNAP for some time so I've just moved over to unRAID and I'm loving it.

I used to run the delugevpn container on my QNAP and it worked flawlessly, however I've spent hours trying to get it to work in docker on unRAID.

It seems that DNS resolution fails once the vpn is connecting, and it fails to connect. (Although it resolves the VPN endpoint as I can see in the logs).

 

VPN config below, with endpoints removed.

I had to change the cipher as it was complaining about AES-128-CBC not being available as per your FAQ.

 

name servers were changed to my VPN providers in the config page in unRAID.

  

remote-random
remote <vpn1> 12200
remote <vpn1> 26000
remote <vpn1> 88
;comment the 3 options above and leave only port 53 for better firewall by-passing support
;remote <vpn1> 53
proto udp
dev tun
tls-client
persist-key
nobind
pull
redirect-gateway def1
;route-delay 3
verb 3
remote-cert-tls server
auth SHA256
auth-user-pass credentials.conf
cipher AES-128-GCM
mute-replay-warnings
key-direction 1
explicit-exit-notify 2
persist-remote-ip

 

Console logs showing the stalled state, which then just repeats.

  

2024-10-17 12:45:39,195 DEBG 'start-script' stdout output:
[debug] OpenVPN command line:- /usr/bin/openvpn --reneg-sec 0 --mute-replay-warnings --auth-nocache --setenv VPN_PROV 'custom' --setenv VPN_CLIENT 'openvpn' --setenv DEBUG 'true' --setenv VPN_DEVICE_TYPE 'tun0' --setenv VPN_ENABLED 'yes' --setenv VPN_REMOTE_SERVER 'vpnendpoint.123' --setenv APPLICATION 'deluge' --script-security 2 --writepid /root/openvpn.pid --remap-usr1 SIGHUP --log-append /dev/stdout --pull-filter ignore 'up' --pull-filter ignore 'down' --pull-filter ignore 'route-ipv6' --pull-filter ignore 'ifconfig-ipv6' --pull-filter ignore 'tun-ipv6' --pull-filter ignore 'dhcp-option DNS6' --pull-filter ignore 'persist-tun' --pull-filter ignore 'reneg-sec' --up /root/openvpnup.sh --up-delay --up-restart --keepalive 10 60 --auth-user-pass credentials.conf --cd /config/openvpn --config '/config/openvpn/vpnendpoint-aes128-udp.ovpn' --remote <vpn endpoint> 12200 udp --remote <vpn endpoint> 12200 udp --remote <vpn endpoint> 12200 udp --remote-random
[info] Starting OpenVPN (non daemonised)...

2024-10-17 12:45:39,544 DEBG 'start-script' stdout output:
2024-10-17 12:45:39 Note: Kernel support for ovpn-dco missing, disabling data channel offload.

2024-10-17 12:45:39,546 DEBG 'start-script' stdout output:
2024-10-17 12:45:39 WARNING: file 'credentials.conf' is group or others accessible
2024-10-17 12:45:39 OpenVPN 2.6.11 [git:makepkg/ddf6bf6d2a135835+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] built on Jun 20 2024

2024-10-17 12:45:39,547 DEBG 'start-script' stdout output:
2024-10-17 12:45:39 library versions: OpenSSL 3.3.1 4 Jun 2024, LZO 2.10
2024-10-17 12:45:39 DCO version: N/A

2024-10-17 12:45:39,550 DEBG 'start-script' stdout output:
2024-10-17 12:45:39 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2024-10-17 12:45:39,553 DEBG 'start-script' stdout output:
2024-10-17 12:45:39 TCP/UDP: Preserving recently used remote address: [AF_INET]<vpn endpoint>:12200
2024-10-17 12:45:39 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-10-17 12:45:39 UDPv4 link local: (not bound)

2024-10-17 12:45:39,554 DEBG 'start-script' stdout output:
2024-10-17 12:45:39 UDPv4 link remote: [AF_INET]<vpn endpoint>:12200

2024-10-17 12:46:39,665 DEBG 'start-script' stdout output:
2024-10-17 12:46:39 [UNDEF] Inactivity timeout (--ping-restart), restarting

2024-10-17 12:46:39,667 DEBG 'start-script' stdout output:
2024-10-17 12:46:39 SIGHUP[soft,ping-restart] received, process restarting

2024-10-17 12:46:39,677 DEBG 'start-script' stdout output:
2024-10-17 12:46:39 Note: Kernel support for ovpn-dco missing, disabling data channel offload.

2024-10-17 12:46:39,678 DEBG 'start-script' stdout output:
2024-10-17 12:46:39 WARNING: file 'credentials.conf' is group or others accessible

 

Looking at resolv.conf I can see all my vpn providers nameservers in there.

I'm beginning to think it's an iptables issue which isn't allowing outbound DNS to them as it only shows the VPN endpoint really, no nameservers listed. Perhaps I'm barking up the wrong tree.

 

I do use pihole for DNS, but it doesn't look like the container should use it. I also don't have any outbound firewall filtering going on. DNS works when I disabled the VPN in the container too.

 

Any help would be great appreciated.

 

Cheers

 

Edited by neiljones
added comment about local DNS
Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...