[Support] Linuxserver.io - OpenVPN AS


Recommended Posts

On 5/7/2019 at 1:39 PM, dbinott said:

To get the opvn  files, go to the root, remove admin

I am sorry can you elaborate on this?  I deleted the admin account and edited the .conf to make it not come back.  But when I login from unraid docker GUI it doesn’t give me a drop down to choose login style.

Edited by sittingmongoose
Link to comment

Hey guys, trying to setup an OpenVPN server and running into an issue getting the client connected. Web GUI works fine, updated the hostname to point to my dynamic dns (DuckDNS) which works with my other dockers already so I know that isn't the problem. Forwarded port 1194 on my router and set connection type to UDP. When I try to connect, I'm getting this error in my client log:

2019-05-08 16:40:24: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
2019-05-08 16:40:24: TLS Error: TLS handshake failed
2019-05-08 16:40:24: SIGUSR1[soft,tls-error] received, process restarting

Anyone have any ideas?

Edited by dmeadows013
Link to comment
3 hours ago, sittingmongoose said:

I am sorry can you elaborate on this?  I deleted the admin account and edited the .conf to make it not come back.  But when I login from unraid docker GUI it doesn’t give me a drop down to choose login style.

Go to the address https://serverip:port for the client interface. Without "/admin" at the end. That interface is set up in the admin gui and is enabled by default. More info on openvpn-as website

Link to comment
1 hour ago, aptalca said:

Go to the address https://serverip:port for the client interface. Without "/admin" at the end. That interface is set up in the admin gui and is enabled by default. More info on openvpn-as website

Thanks got it.  Grabbed the file and was able to “connect” but it doesn’t seem like it’s working correctly.  After it connects, I go to my browser and typed the ip of my unraid server and nothing happens, doesn’t load.

Link to comment

Hi, I've setup OpenVPN and I can connect externally to the webui but I can't connect to any internal docker services like Sonarr, qBittorentVPN etc... these all have a custom static internal IP address assigned and the stange thing is I can ping them ok but I just can't browse to them. I can also ping websites like Google but I can't browse to them when the VPN is connected.

 

Anyone got any ideas?

 

Edit:

If I change the docker container network from a static IP to a bridge I can see my Unraid server but I still can't see any other docker containers which also have static IP's set.... sorry newb to Unraid and docker and already done soooo much reading that I just want it to work now.

 

Edit 2:

Do I need to add an entry into the routing table? 172.27.240.0/24 < > 192.168.1.1

 

Edit 3:

The following link explains my issue better and basically I can't do what I want with my current setup.

 

Edited by jaminben
More information
Link to comment
On 5/9/2019 at 4:56 AM, sittingmongoose said:

Thanks got it.  Grabbed the file and was able to “connect” but it doesn’t seem like it’s working correctly.  After it connects, I go to my browser and typed the ip of my unraid server and nothing happens, doesn’t load.

!Not Recommended or Approved!

Hey,

 

my solution was to start the docker container and run the Default Openvpn setup script.

goto your Unraid Docker Tab and click on the Openvpn-as Container -> Edit

Change Network to "Host" and enable privilege.

 

then open the Bash/Shell Console from the Doker Container.

 

Then run the following:

cd /usr/local/openvpn_as/bin/
./ovpn-init

Define your Ports in the Script like done in the Docker and choose the main Ethernet adapter. Its called somthing like "eth0". (don't know if brige works)

 

Now you must change the password from the defalt user account for openvpn:

passwd openvpn

After that login to your admin webinterface with "Username: openvpn" and "Password:<yourpassword>".

 

Note: My english is not the best, fell free to write it down in Proper english.

Edited by RevLaw
Link to comment
4 hours ago, RevLaw said:

Hey,

 

my solution was to start the docker container and run the Default Openvpn setup script.

goto your Unraid Docker Tab and click on the Openvpn-as Container -> Edit

Change Network to "Host" and enable privilege.

 

then open the Bash/Shell Console from the Doker Container.

 

Then run the following:


cd /usr/local/openvpn_as/bin/

./ovpn-init

Define your Ports in the Script like done in the Docker and choose the main Ethernet adapter. Its called somthing like "eth0". (don't know if brige works)

 

Now you must change the password from the defalt user account for openvpn:


passwd openvpn

After that login to your admin webinterface with "Username: openvpn" and "Password:<yourpassword>".

 

Note: My english is not the best, fell free to write it down in Proper english.

My friend actually got it for me.  My up range wasn’t set.

 

its working now but I can’t use it on my wifi(different network than server).  My computer on ethernet works but my devices and laptops over WiFi won’t. (They is over cellular)

 

i tried entering them in the dmz zone, I set open vpn to port forward and turned off the firewall but none of it helped.

 

btw your English is very good.

Edited by sittingmongoose
Link to comment
4 hours ago, RevLaw said:

Hey,

 

my solution was to start the docker container and run the Default Openvpn setup script.

goto your Unraid Docker Tab and click on the Openvpn-as Container -> Edit

Change Network to "Host" and enable privilege.

 

then open the Bash/Shell Console from the Doker Container.

 

Then run the following:


cd /usr/local/openvpn_as/bin/

./ovpn-init

Define your Ports in the Script like done in the Docker and choose the main Ethernet adapter. Its called somthing like "eth0". (don't know if brige works)

 

Now you must change the password from the defalt user account for openvpn:


passwd openvpn

After that login to your admin webinterface with "Username: openvpn" and "Password:<yourpassword>".

 

Note: My english is not the best, fell free to write it down in Proper english.

Please don't recommend users to do that. And if you do that yourself, don't expect any support from us.

 

The container itself does all of those steps correctly and automatically.

 

Just follow the steps in the readme, set it up with bridge networking and it works.

Link to comment

I seem to be having a similar problem as far as not being able to access the WebUI. I've tried uninstalling the openvpn-as app from the docker menu, deleting the entire docker image, and restarting the server to no avail. This is both with the "/admin" and without the page cannot be reached. I've also tried chrome and firefox (both of which are up-to-date).

I've read in this thread that I might need to delete the files from the root directory of the flash drive or something similar to that. Could anyone clarify, and if so explain how to do such a thing?

I've followed the video from SpaceInvaderOne on how to set it up and I've read that the INTERFACE option is unnecessary in the newer versions. I've already set up the router in the manner he explained and was able to access the WebUI a few days ago, but I believe my tinkering messed something up and now I can't get it back. 😐

Guess it's time to start from scratch so any advice would be appreciated!! 

Link to comment
42 minutes ago, aptalca said:

Please don't recommend users to do that. And if you do that yourself, don't expect any support from us.

 

The container itself does all of those steps correctly and automatically.

 

Just follow the steps in the readme, set it up with bridge networking and it works.

My problem is when i set it up with bridge networking, how can i connect to my other Unraid Docker or Unraid itself. The Help says:

Quote

If the Bridge type is selected, the application’s network access will be restricted to only communicating on the ports specified in the port mappings section.

How can i tell the Docker "I will access any Port in my network via my openvpn tunnel" without using host mode?

Link to comment
17 hours ago, RevLaw said:

My problem is when i set it up with bridge networking, how can i connect to my other Unraid Docker or Unraid itself. The Help says:

How can i tell the Docker "I will access any Port in my network via my openvpn tunnel" without using host mode?

That help notice only applies to incoming connections to the container. So the docker container will be accessible only on the ports that you map. But outgoing connections are not restricted.

 

You will connect to openvpn-as container on port 1194 or 9443 (incoming), which you will map, and then the connection will go from openvpn-as to unraid (outgoing).

  • Like 1
Link to comment

Hi again,

 

Firstly, I'm not an expert in networking... but I know enough to be dangerous :)

 

Can I in anyway have OpenVPN as a docker or VM talk to other docker services located on a different interface?

 

This is what I've tried so far.... I've installed a second NIC and added it as a separate interface in the settings... I've also setup a new network on my UniFi USG with it's own gateway using it's second Lan\Wan port.

 

Modem > Unifi USG > Interface 1 (Unraid server)
                  > Interface 2 (Unraid server)

192.168.0.1 > 192.168.1.1\24 > 192.168.1.2 (Unraid Server)
                             > 192.168.1.14 (some docker service)
                             > 192.168.1.16 (some other docker service)
            > 192.168.2.1\24 > 192.168.2.2 (Unraid OpenVPN docker)

I can connect in ok and view other devices on my local network but not anything else on the unraid server (other dockers).

 

OpenVPN Image.jpg

Link to comment
6 hours ago, jaminben said:

Hi again,

 

Firstly, I'm not an expert in networking... but I know enough to be dangerous :)

 

Can I in anyway have OpenVPN as a docker or VM talk to other docker services located on a different interface?

 

This is what I've tried so far.... I've installed a second NIC and added it as a separate interface in the settings... I've also setup a new network on my UniFi USG with it's own gateway using it's second Lan\Wan port.

 


Modem > Unifi USG > Interface 1 (Unraid server)
                  > Interface 2 (Unraid server)

192.168.0.1 > 192.168.1.1\24 > 192.168.1.2 (Unraid Server)
                             > 192.168.1.14 (some docker service)
                             > 192.168.1.16 (some other docker service)
            > 192.168.2.1\24 > 192.168.2.2 (Unraid OpenVPN docker)

I can connect in ok and view other devices on my local network but not anything else on the unraid server (other dockers).

 

OpenVPN Image.jpg

From a networking perspective, yes, you can access other subnets. I have devices on vlans on different subnets and I define those subnets in openvpn-as gui settings as accessible and I can access them.

 

One thing you need to keep in mind is the "security" feature of macvlan. If you used that for any containers, they won't be accessible by the host or anything that uses the host's network interface

Link to comment

After upgrading to unraid 6.7

 

2019-05-11T19:54:29+0300 [stdout#info] ***** END command data
2019-05-11T19:54:29+0300 [stdout#info] *** MyError.report ***
2019-05-11T19:54:29+0300 [stdout#info] Stack Traceback
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 653, '_runCallbacks', 'current.result = callback(current.result, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 133, 'cb3', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 50, 'process_cmd_result', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/daemon.py', 28, 'twistd_with_reactor', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/daemon.py', 69, 'twistd', None)
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/application/app.py', 384, 'run', 'self.postApplication()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/scripts/_twistd_unix.py', 258, 'postApplication', 'self.startReactor(None, self.oldstdout, self.oldstderr)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/application/app.py', 396, 'startReactor', 'self.config, oldstdout, oldstderr, self.profiler, reactor)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/application/app.py', 311, 'runReactorWithLogging', 'reactor.run()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/base.py', 1243, 'run', 'self.mainLoop()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/base.py', 1255, 'mainLoop', 'self.doIteration(t)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/epollreactor.py', 235, 'doPoll', 'log.callWithLogger(selectable, _drdw, selectable, fd, event)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/log.py', 103, 'callWithLogger', 'return callWithContext({"system": lp}, func, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/log.py', 86, 'callWithContext', 'return context.call({ILogContext: newCtx}, func, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/context.py', 122, 'callWithContext', 'return self.currentContext().callWithContext(ctx, func, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/context.py', 85, 'callWithContext', 'return func(*args,**kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/posixbase.py', 627, '_doReadOrWrite', 'self._disconnectSelectable(selectable, why, inRead)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/posixbase.py', 252, '_disconnectSelectable', 'selectable.readConnectionLost(f)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/abstract.py', 313, 'readConnectionLost', 'self.connectionLost(reason)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 312, 'connectionLost', 'self.proc.childConnectionLost(self.name, reason)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 973, 'childConnectionLost', 'self.maybeCallProcessEnded()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 985, 'maybeCallProcessEnded', 'self.reapProcess()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 350, 'reapProcess', 'self.processEnded(status)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/_baseprocess.py', 52, 'processEnded', 'self.maybeCallProcessEnded()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 987, 'maybeCallProcessEnded', '_BaseProcess.maybeCallProcessEnded(self)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/_baseprocess.py', 64, 'maybeCallProcessEnded', 'proto.processEnded(Failure(reason))')
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/svc/pp.py', 142, 'processEnded', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/svc/svcnotify.py', 32, 'notify_change_state', None)
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 459, 'callback', 'self._startRunCallbacks(result)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 567, '_startRunCallbacks', 'self._runCallbacks()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 653, '_runCallbacks', 'current.result = callback(current.result, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 133, 'cb3', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 50, 'process_cmd_result', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/error.py', 66, '__init__', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/error.py', 47, '__init__', None)
2019-05-11T19:54:29+0300 [stdout#info] Service deferred error: IPTablesServiceBase: failed to run iptables-restore [status=2]: ['iptables-restore v1.6.0: Bad IP address ""', '', 'Error occurred at line: 157', "Try `iptables-restore -h' or 'iptables-restore --help' for more information."]: internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/daemon:28,util/daemon:69,application/app:384,scripts/_twistd_unix:258,application/app:396,application/app:311,internet/base:1243,internet/base:1255,internet/epollreactor:235,python/log:103,python/log:86,python/context:122,python/context:85,internet/posixbase:627,internet/posixbase:252,internet/abstract:313,internet/process:312,internet/process:973,internet/process:985,internet/process:350,internet/_baseprocess:52,internet/process:987,internet/_baseprocess:64,svc/pp:142,svc/svcnotify:32,internet/defer:459,internet/defer:567,internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/error:66,util/error:47
2019-05-11T19:54:30+0300 [stdout#info] Server Agent initialization status:
2019-05-11T19:54:30+0300 [stdout#info] {
2019-05-11T19:54:30+0300 [stdout#info]   "errors": {
2019-05-11T19:54:30+0300 [stdout#info]     "crl": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['user'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_live": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['iptables_openvpn'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_openvpn": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "Service deferred error: IPTablesServiceBase: failed to run iptables-restore [status=2]: ['iptables-restore v1.6.0: Bad IP address \"\"', '', 'Error occurred at line: 157', \"Try `iptables-restore -h' or 'iptables-restore --help' for more information.\"]: internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/daemon:28,util/daemon:69,application/app:384,scripts/_twistd_unix:258,application/app:396,application/app:311,internet/base:1243,internet/base:1255,internet/epollreactor:235,python/log:103,python/log:86,python/context:122,python/context:85,internet/posixbase:627,internet/posixbase:252,internet/abstract:313,internet/process:312,internet/process:973,internet/process:985,internet/process:350,internet/_baseprocess:52,internet/process:987,internet/_baseprocess:64,svc/pp:142,svc/svcnotify:32,internet/defer:459,internet/defer:567,internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/error:66,util/error:47"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "openvpn_0": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "user": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['iptables_live', 'iptables_openvpn'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ]
2019-05-11T19:54:30+0300 [stdout#info]   },
2019-05-11T19:54:30+0300 [stdout#info]   "last_restarted": "Sat May 11 19:54:28 2019",
2019-05-11T19:54:30+0300 [stdout#info]   "service_status": {
2019-05-11T19:54:30+0300 [stdout#info]     "api": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "auth": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "bridge": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "client_query": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "crl": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "daemon_pre": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "db_push": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "ip6tables_live": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "ip6tables_openvpn": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_live": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_openvpn": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_web": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "license": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "log": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "openvpn_0": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "user": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "web": "started"
2019-05-11T19:54:30+0300 [stdout#info]   }
2019-05-11T19:54:30+0300 [stdout#info] }
2019-05-11T19:54:30+0300 [stdout#info] Server Agent started

 

can't connect to the vpn anymore, any idea how can i fix that?

Link to comment
12 minutes ago, syniex said:

After upgrading to unraid 6.7

 


2019-05-11T19:54:29+0300 [stdout#info] ***** END command data
2019-05-11T19:54:29+0300 [stdout#info] *** MyError.report ***
2019-05-11T19:54:29+0300 [stdout#info] Stack Traceback
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 653, '_runCallbacks', 'current.result = callback(current.result, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 133, 'cb3', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 50, 'process_cmd_result', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/daemon.py', 28, 'twistd_with_reactor', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/daemon.py', 69, 'twistd', None)
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/application/app.py', 384, 'run', 'self.postApplication()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/scripts/_twistd_unix.py', 258, 'postApplication', 'self.startReactor(None, self.oldstdout, self.oldstderr)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/application/app.py', 396, 'startReactor', 'self.config, oldstdout, oldstderr, self.profiler, reactor)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/application/app.py', 311, 'runReactorWithLogging', 'reactor.run()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/base.py', 1243, 'run', 'self.mainLoop()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/base.py', 1255, 'mainLoop', 'self.doIteration(t)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/epollreactor.py', 235, 'doPoll', 'log.callWithLogger(selectable, _drdw, selectable, fd, event)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/log.py', 103, 'callWithLogger', 'return callWithContext({"system": lp}, func, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/log.py', 86, 'callWithContext', 'return context.call({ILogContext: newCtx}, func, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/context.py', 122, 'callWithContext', 'return self.currentContext().callWithContext(ctx, func, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/python/context.py', 85, 'callWithContext', 'return func(*args,**kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/posixbase.py', 627, '_doReadOrWrite', 'self._disconnectSelectable(selectable, why, inRead)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/posixbase.py', 252, '_disconnectSelectable', 'selectable.readConnectionLost(f)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/abstract.py', 313, 'readConnectionLost', 'self.connectionLost(reason)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 312, 'connectionLost', 'self.proc.childConnectionLost(self.name, reason)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 973, 'childConnectionLost', 'self.maybeCallProcessEnded()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 985, 'maybeCallProcessEnded', 'self.reapProcess()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 350, 'reapProcess', 'self.processEnded(status)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/_baseprocess.py', 52, 'processEnded', 'self.maybeCallProcessEnded()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/process.py', 987, 'maybeCallProcessEnded', '_BaseProcess.maybeCallProcessEnded(self)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/_baseprocess.py', 64, 'maybeCallProcessEnded', 'proto.processEnded(Failure(reason))')
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/svc/pp.py', 142, 'processEnded', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/svc/svcnotify.py', 32, 'notify_change_state', None)
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 459, 'callback', 'self._startRunCallbacks(result)')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 567, '_startRunCallbacks', 'self._runCallbacks()')
2019-05-11T19:54:29+0300 [stdout#info] ('/usr/local/openvpn_as/lib/python2.7/site-packages/Twisted-17.9.0-py2.7-linux-x86_64.egg/twisted/internet/defer.py', 653, '_runCallbacks', 'current.result = callback(current.result, *args, **kw)')
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 133, 'cb3', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/ipts.py', 50, 'process_cmd_result', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/error.py', 66, '__init__', None)
2019-05-11T19:54:29+0300 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/util/error.py', 47, '__init__', None)
2019-05-11T19:54:29+0300 [stdout#info] Service deferred error: IPTablesServiceBase: failed to run iptables-restore [status=2]: ['iptables-restore v1.6.0: Bad IP address ""', '', 'Error occurred at line: 157', "Try `iptables-restore -h' or 'iptables-restore --help' for more information."]: internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/daemon:28,util/daemon:69,application/app:384,scripts/_twistd_unix:258,application/app:396,application/app:311,internet/base:1243,internet/base:1255,internet/epollreactor:235,python/log:103,python/log:86,python/context:122,python/context:85,internet/posixbase:627,internet/posixbase:252,internet/abstract:313,internet/process:312,internet/process:973,internet/process:985,internet/process:350,internet/_baseprocess:52,internet/process:987,internet/_baseprocess:64,svc/pp:142,svc/svcnotify:32,internet/defer:459,internet/defer:567,internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/error:66,util/error:47
2019-05-11T19:54:30+0300 [stdout#info] Server Agent initialization status:
2019-05-11T19:54:30+0300 [stdout#info] {
2019-05-11T19:54:30+0300 [stdout#info]   "errors": {
2019-05-11T19:54:30+0300 [stdout#info]     "crl": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['user'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_live": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['iptables_openvpn'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_openvpn": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "Service deferred error: IPTablesServiceBase: failed to run iptables-restore [status=2]: ['iptables-restore v1.6.0: Bad IP address \"\"', '', 'Error occurred at line: 157', \"Try `iptables-restore -h' or 'iptables-restore --help' for more information.\"]: internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/daemon:28,util/daemon:69,application/app:384,scripts/_twistd_unix:258,application/app:396,application/app:311,internet/base:1243,internet/base:1255,internet/epollreactor:235,python/log:103,python/log:86,python/context:122,python/context:85,internet/posixbase:627,internet/posixbase:252,internet/abstract:313,internet/process:312,internet/process:973,internet/process:985,internet/process:350,internet/_baseprocess:52,internet/process:987,internet/_baseprocess:64,svc/pp:142,svc/svcnotify:32,internet/defer:459,internet/defer:567,internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/error:66,util/error:47"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "openvpn_0": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ],
2019-05-11T19:54:30+0300 [stdout#info]     "user": [
2019-05-11T19:54:30+0300 [stdout#info]       [
2019-05-11T19:54:30+0300 [stdout#info]         "error",
2019-05-11T19:54:30+0300 [stdout#info]         "service failed to start due to unresolved dependencies: set(['iptables_live', 'iptables_openvpn'])"
2019-05-11T19:54:30+0300 [stdout#info]       ]
2019-05-11T19:54:30+0300 [stdout#info]     ]
2019-05-11T19:54:30+0300 [stdout#info]   },
2019-05-11T19:54:30+0300 [stdout#info]   "last_restarted": "Sat May 11 19:54:28 2019",
2019-05-11T19:54:30+0300 [stdout#info]   "service_status": {
2019-05-11T19:54:30+0300 [stdout#info]     "api": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "auth": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "bridge": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "client_query": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "crl": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "daemon_pre": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "db_push": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "ip6tables_live": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "ip6tables_openvpn": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_live": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_openvpn": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "iptables_web": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "license": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "log": "started",
2019-05-11T19:54:30+0300 [stdout#info]     "openvpn_0": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "user": "off",
2019-05-11T19:54:30+0300 [stdout#info]     "web": "started"
2019-05-11T19:54:30+0300 [stdout#info]   }
2019-05-11T19:54:30+0300 [stdout#info] }
2019-05-11T19:54:30+0300 [stdout#info] Server Agent started

 

can't connect to the vpn anymore, any idea how can i fix that?

Bridge networking? Post your container settings

Link to comment
4 minutes ago, aptalca said:

Bridge networking? Post your container settings

it's on host,

 

i tried to run it using cli using bridge mode also , didn't work either

 

Quote

/usr/local/emhttp/plugins/dynamix.docker.manager/scripts/docker run -d --name="openvpn-as-fix" --net="bridge" --privileged="true" -e TZ="America/Los_Angeles" -e HOST_OS="unRAID" -e "TCP_PORT_943"="943" -e "TCP_PORT_9443"="9443" -e "UDP_PORT_1194"="1194" -e "INTERFACE"="bond0" -e "PGID"="100" -e "PUID"="99" -v "/mnt/user":"/unraid":rw -v "/mnt/user/appdata/openvpn-as":"/config":rw linuxserver/openvpn-as

 

 

when i try it it gives me the following error

 

2019-05-11T10:13:52-0700 [stdout#info] *** MyError.report ***
2019-05-11T10:13:52-0700 [stdout#info] Stack Traceback
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/svc/svc.py', 636, '_walk', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnsvc.py', 454, 'start', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnsvc.py', 83, 'parse_validate', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnconfig.py', 258, 'daemon_dict_port_forward_log_info', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnconfig.py', 253, 'daemon_dict_port_forward', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnconfig.py', 246, 'fw', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnconfig.py', 241, 'fw_proto', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnconfig.py', 237, 'fw_dest', None)
2019-05-11T10:13:52-0700 [stdout#info] ('build/bdist.linux-x86_64/egg/pyovpn/sagent/vpnconfig.py', 226, 'dest_addr_mod', None)
2019-05-11T10:13:52-0700 [stdout#info] 'ip_address': svc/svc:636,sagent/vpnsvc:454,sagent/vpnsvc:83,sagent/vpnconfig:258,sagent/vpnconfig:253,sagent/vpnconfig:246,sagent/vpnconfig:241,sagent/vpnconfig:237,sagent/vpnconfig:226 (exceptions.KeyError)
2019-05-11T10:13:52-0700 [stdout#info] Server agent initialization failed (2/6 attempts) because the following network resources are unavailable: set(['bond0'])

 

Edited by syniex
Link to comment

I also upgraded to 6.7 and cannot start server

Edit template to Bridge mode and docker command fails

switch back to Host mode and docker starts, log into container to try and start server and it fails with:

 

Error:

service failed to start due to unresolved dependencies: set(['user'])

service failed to start due to unresolved dependencies: set(['iptables_openvpn'])

Service deferred error: IPTablesServiceBase: failed to run iptables-restore [status=2]: ['iptables-restore v1.6.0: Bad IP address ""', '', 'Error occurred at line: 140', "Try `iptables-restore -h' or 'iptables-restore --help' for more information."]: internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/daemon:28,util/daemon:69,application/app:384,scripts/_twistd_unix:258,application/app:396,application/app:311,internet/base:1243,internet/base:1255,internet/epollreactor:235,python/log:103,python/log:86,python/context:122,python/context:85,internet/posixbase:627,internet/posixbase:252,internet/abstract:313,internet/process:312,internet/process:973,internet/process:985,internet/process:350,internet/_baseprocess:52,internet/process:987,internet/_baseprocess:64,svc/pp:142,svc/svcnotify:32,internet/defer:459,internet/defer:567,internet/defer:653,sagent/ipts:133,sagent/ipts:50,util/error:66,util/error:47

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['user', 'iptables_live', 'iptables_openvpn'])

service failed to start due to unresolved dependencies: set(['iptables_live', 'iptables_openvpn'])

Link to comment
3 hours ago, syniex said:

it's on host,

 

i tried to run it using cli using bridge mode also , didn't work either

 

49 minutes ago, wirenut said:

I also upgraded to 6.7 and cannot start server

Edit template to Bridge mode and docker command fails

switch back to Host mode and docker starts, log into container to try and start server and it fails with:

Upgrade will not work with existing config folder. What I did was take a screen shot of all my settings, set up a new container from the app store with different name and config folder, and just went through the screen shots and copied all my settings across. Took less than 10 min. 

 

You will also need to import a new ovpn file.

Link to comment
1 minute ago, werfsd said:

 

Upgrade will not work with existing config folder. What I did was take a screen shot of all my settings, set up a new container from the app store with different name and config folder, and just went through the screen shots and copied all my settings across. Took less than 10 min. 

 

You will also need to import a new ovpn file.

i am trying to resetup my openvpn, but seems like i miss something on the admin setup

Link to comment

 

1 hour ago, werfsd said:

 

Upgrade will not work with existing config folder. What I did was take a screen shot of all my settings, set up a new container from the app store with different name and config folder, and just went through the screen shots and copied all my settings across. Took less than 10 min. 

 

You will also need to import a new ovpn file.

ok tried this and am in the same spot. same errors as earlier post,  docker command fails in bridge, server wont start in host. any help showing me what i am doing incorrectly?

in the meantime ill keep searching thread...

Link to comment

Guys, it's all in the official readme on GitHub and docker hub.

 

Use bridge networking, don't set the interface variable, make sure your port mapping is correct (@syniex yours is not) and add the cap-add statement.

 

The unraid template was updated a long time ago but you may have to update it manually for existing setups. Or, you can remove the container (keep the appdata config folder) and recreate from a fresh new template from the community apps with the same appdata folder.

Edited by aptalca
  • Like 1
Link to comment

@aptalca thank you very much! Almost got it working - I would like to mention that the README.md (github link) wasn't specific enough for me to follow. I'm sorry! I'm not the sharpest tool in the shed for sure. I need more concise instructions for unRaid. The Spaceinvader video is great, but it's got old info now. But thank you thank you again for all your work here - and answering the same questions again and again. I'm definitely guilty of that! I donated $5 to you guys.

 

1. use bridge networking

2. don't set interface variable (like Spaceinvaderone video)

3. make sure correct ports are forwarded and mapped

4. add the cap-add statement

 

looks like the cap_add statement is already in the command

root@localhost:# /usr/local/emhttp/plugins/dynamix.docker.manager/scripts/docker run -d --name='openvpn-as' --net='bridge' --log-opt max-size='20m' --log-opt max-file='1' --privileged=true -e TZ="America/Los_Angeles" -e HOST_OS="Unraid" -e 'PGID'='100' -e 'PUID'='99' -p '943:943/tcp' -p '9443:9443/tcp' -p '1194:1194/udp' -v '/mnt/user/appdata/openvpn-as':'/config':'rw' --cap-add=NET_ADMIN 'linuxserver/openvpn-as'

 

Edited by dkerlee
Link to comment

Ok so I have finally had a chance to setup openvpn-as and everything is working fine.
I have installed openvpn connect on my iPhone and connected to the openvpn server just fine. So here is a stupid question as I set this up thinking I will be able to VPN to my unraid server. So it that possible from an iPhone? Sorry I’m a openvpn noob.


Sent from my iPhone using Tapatalk

Link to comment
8 hours ago, aptalca said:

Guys, it's all in the official readme on GitHub and docker hub.

 

Use bridge networking, don't set the interface variable, make sure your port mapping is correct (@syniex yours is not) and add the cap-add statement.

 

The unraid template was updated a long time ago but you may have to update it manually for existing setups. Or, you can remove the container (keep the appdata config folder) and recreate from a fresh new template from the community apps with the same appdata folder.

 

7 hours ago, dkerlee said:

@aptalca thank you very much! Almost got it working - I would like to mention that the README.md (github link) wasn't specific enough for me to follow. I'm sorry! I'm not the sharpest tool in the shed for sure. I need more concise instructions for unRaid. The Spaceinvader video is great, but it's got old info now. But thank you thank you again for all your work here - and answering the same questions again and again. I'm definitely guilty of that! I donated $5 to you guys.

 

1. use bridge networking

2. don't set interface variable (like Spaceinvaderone video)

3. make sure correct ports are forwarded and mapped

4. add the cap-add statement

 

looks like the cap_add statement is already in the command

root@localhost:# /usr/local/emhttp/plugins/dynamix.docker.manager/scripts/docker run -d --name='openvpn-as' --net='bridge' --log-opt max-size='20m' --log-opt max-file='1' --privileged=true -e TZ="America/Los_Angeles" -e HOST_OS="Unraid" -e 'PGID'='100' -e 'PUID'='99' -p '943:943/tcp' -p '9443:9443/tcp' -p '1194:1194/udp' -v '/mnt/user/appdata/openvpn-as':'/config':'rw' --cap-add=NET_ADMIN 'linuxserver/openvpn-as'

 

Ok, I used to be able to connect to Host network with this before the update....that allowed me to be assigned an IP on my WiFi subnet, which then allowed me to access the UnRAID GUI interface.

 

NOW, instructions make us connect to Bridge network......so how do we access the UnRAID GUI interface if we are on the bridge network? OpenVPN dished me out a 172.27.xxx.xxx address (docker subnet).

 

Update:
Figured out how to access UnRAID GUI. Did NOT figure out how to be assigned a local address on my primary WiFi subnet though.

In Admin Page ----> VPN Settings go to Routing section and add a line for the subnet you want your clients to have access to (for example, I added 192.168.1.0/24 which is my primary WiFi subnet and where I can access my UnRAID GUI locally)

Edited by Stupifier
  • Like 3
  • Upvote 1
Link to comment

After deleting openvpn-as from appdata and reinstall it seems to work,

but i can't seems to configure it so i can connect remotely,

 

anyone got a good new guide? with the new settings?

 

seems like MTU problem?

2019-05-12T18:00:27+0300 [stdout#info] [OVPN 0] OUT: 'Sun May 12 18:00:27 2019 TCP connection established with [AF_INET]ip.ip.ip.ip:63189'
2019-05-12T18:00:27+0300 [stdout#info] [OVPN 0] OUT: 'Sun May 12 18:00:27 2019 Socket flags: TCP_NODELAY=1 succeeded'
2019-05-12T18:00:27+0300 [stdout#info] [OVPN 0] OUT: 'Sun May 12 18:00:27 2019 ip.ip.ip.ip:63189 WARNING: Bad encapsulated packet length from peer (5635), which must be > 0 and <= 1627 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link -- [Attempting restart...]'
2019-05-12T18:00:27+0300 [stdout#info] [OVPN 0] OUT: 'Sun May 12 18:00:27 2019 ip.ip.ip.ip:63189 Connection reset, restarting [0]'
2019-05-12T18:00:27+0300 [stdout#info] [OVPN 0] OUT: 'Sun May 12 18:00:27 2019 ip.ip.ip.ip:63189 SIGUSR1[soft,connection-reset] received, client-instance restarting'

Update: Upgrading the client fix the issue with TCP connections but UDP still didn't work.

 

How you guys protect your VPN server?

 

Edited by syniex
  • Like 1
Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.