[Support] ich777 - Application Dockers

ich777

By ich777
in Docker Containers

Recommended Posts

Recommended

Posted by ich777,

Things have changed a little bit since I'm switched to TurboVNC. Please be sure to create the password first inside the container, to do that open up a terminal from the container (click on the container icon and on 'Console' then type in the following: su $USER vncpasswd ENTER YOUR PASSWORD TWO TIMES AND PRESS ENTER   After that close the terminal and edit the template and create a variable with the Key: 'TURBOVNC_PARAMS' and leave it empty like in this ex

How to set a noVNC password

Recommended by ich777

  • Thanks
  • Like

5 reactions

Go to this post
Recommended

Posted by ich777,

If anything breaks again take a look at this: Click   Or what I would recommend: Stop the container Delete the files "Core.jar" & "JDownloader.jar" and the folders "tmp" & "update" from your jdownloader2 directory Start the container again

Fix: jDownloader2 broken after update

Recommended by ich777

  • Thanks

4 reactions

Go to this post
Recommended

Posted by ich777,

I've tested it now:   On my test server I installed luckyBackup:   Then I clicked console:   There I typed in: cat /luckybackup/.ssh/ssh_host_rsa_key.pub and got this:   There simply mark the whole lines starting from ssh all the way to the last line and click the right mouse button once and click copy from the context menu to copy the contents: Mark only until the end and then close the window.   Then open up a

Set up luckyBackup remote sync

Recommended by ich777

0 reactions

Go to this post
  • Replies 3.9k
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

ich777
ich777

Things have changed a little bit since I'm switched to TurboVNC. Please be sure to create the password first inside the container, to do that open up a terminal from the container (click on the c

ich777
ich777

If anything breaks again take a look at this: Click   Or what I would recommend: Stop the container Delete the files "Core.jar" & "JDownloader.jar" and the folders "tmp" &

ich777
ich777

Summary: Support Thread for ich777 Application Dockers (DirSyncPro, Rapid Photo Downloader,... all available Docker's in the second post) DockerHub: https://hub.docker.com/u/ich777/   P

Posted Images

Merijeek Apprentice

Merijeek

Posted
Posted
26 minutes ago, ich777 said:

Oh sorry, you actually have to execute the script too.

I‘m currently on the go and have not seen that.

Well, this is where me being totally useless in Docker and mostly useless in Linux comes in. 

 

So...I'll just watch to hear from you when you're back.

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted
7 minutes ago, ich777 said:

This should do the trick: 

curl https://raw.githubusercontent.com/macvk/dnsleaktest/master/dnsleaktest.sh | sh -

 

You'd think but nope, swing and a miss:

 

Quote

root@b43d57320d68:/# curl https://raw.githubusercontent.com/macvk/dnsleaktest/master/dnsleaktest.sh | sh -
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  3273  100  3273    0     0  15413      0 --:--:-- --:--:-- --:--:-- 15438
sh: syntax error: unexpected redirection

 

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted

And tried it without the -

 

Quote

root@b43d57320d68:/# curl https://raw.githubusercontent.com/macvk/dnsleaktest/master/dnsleaktest.sh | sh 
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  3273  100  3273    0     0  40282      0 --:--:-- --:--:-- --:--:-- 40407
sh: syntax error: unexpected redirection

 

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted

So then I tried this:

 

Quote

root@b43d57320d68:/# curl https://raw.githubusercontent.com/macvk/dnsleaktest/master/dnsleaktest.sh > dnsleaktest.sh
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  3273  100  3273    0     0  38815      0 --:--:-- --:--:-- --:--:-- 38964
root@b43d57320d68:/# sh dnsleaktest.sh 
dnsleaktest.sh: line 109: syntax error: unexpected redirection

 

With line 109 being the:

"        done <<< "$result_txt""

Link to comment
ich777 Grand Master

ich777

Posted
  • Author
Posted
16 minutes ago, Merijeek said:

So then I tried this:

Then try this (just copy paste all): 

cd /tmp
curl -s https://raw.githubusercontent.com/macvk/dnsleaktest/master/dnsleaktest.sh -o dnsleaktest.sh
chmod +x dnsleaktest.sh
./dnsleaktest.sh
rm dnsleaktest.sh

 

BTW you don't have to make a post for every command since this is bloating the thread and I believe you that it's not working.

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted (edited)

OK well, some progress!

Quote

root@b43d57320d68:/# cd /tmp
root@b43d57320d68:/tmp# curl -s https://raw.githubusercontent.com/macvk/dnsleaktest/master/dnsleaktest.sh -o dnsleaktest.sh
root@b43d57320d68:/tmp# chmod +x dnsleaktest.sh
./dnsleaktest.sh
Your IP:
181.214.153.146 [Canada, AS174 Cogent Communications]

You use 1 DNS server:
162.158.145.99 [Canada, AS13335 CloudFlare Inc.]

Conclusion:
DNS may be leaking.
root@b43d57320d68:/tmp# rm dnsleaktest.sh
root@b43d57320d68:/tmp# 

 

Note: The above was actually from the OpenVPN container itself. 

 

I had to add some packages to get it working from another container, but finally got there:

 

Quote

root@b43d57320d68:/tmp# curl -s https://raw.githubusercontent.com/macvk/dnsleaktest/master/dnsleaktest.sh -o dnsleaktest.sh
root@b43d57320d68:/tmp# chmod +x dnsleaktest.sh
./dnsleaktest.sh
Your IP:
181.214.153.146 [Canada, AS174 Cogent Communications]

You use 1 DNS server:
162.158.145.99 [Canada, AS13335 CloudFlare Inc.]

Conclusion:
DNS may be leaking.

 

Edited by Merijeek
Link to comment
ich777 Grand Master

ich777

Posted
  • Author
Posted
10 minutes ago, Merijeek said:

OK well, some progress!

I can't reproduce this with privado.io 

  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  3273  100  3273    0     0   3561      0 --:--:-- --:--:-- --:--:--  3557
# chmod +x dnsleaktest.sh
# ./dnsleaktest.sh
Your IP:
<REMOVED> [Switzerland, Swiss Confederation, AS9009 M247 Europe SRL]

You use 1 DNS server:
<REMOVED> [Switzerland, Swiss Confederation, AS9009 M247 Europe SRL]

Conclusion:
DNS is not leaking.

 

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted (edited)

Well, that's not great. Any thoughts? Or maybe just something not great with PIA?

 

I grabbed a Privado accound, and am seeing the same thing:

Quote

Your IP:
104.255.228.132 [United States of America, AS397423 Tier.Net Technologies LLC]

You use 1 DNS server:
85.12.32.49 [Netherlands, AS34305 Base IP B.V.]

Conclusion:
DNS may be leaking.
root@662e7bc91623:/# rm dnsleaktest.sh~
rm: cannot remove 'dnsleaktest.sh~': No such file or directory
root@662e7bc91623:/# rm dnsleaktest.sh
root@662e7bc91623:/# 
root@662e7bc91623:/# 

 

I swapped to a Netherlands server and I get the same thing more or less

 

Quote

Your IP:
91.148.224.13 [Netherlands, AS34343 Eweka Internet Services B.V.]

You use 1 DNS server:
85.12.32.49 [Netherlands, AS34305 Base IP B.V.]

Conclusion:
DNS may be leaking.

 

I'm even using the Privado VN DNS and getting that. 

Edited by Merijeek
Link to comment
ich777 Grand Master

ich777

Posted
  • Author
Posted
11 hours ago, Merijeek said:

Well, that's not great. Any thoughts? Or maybe just something not great with PIA?

Is it possible for you to create a free account on privado.io and try it with their .ovpn files and see if it's the same?

 

Privado supports free accounts to AFAIK.

Link to comment
ich777 Grand Master

ich777

Posted
  • Author
Posted
1 minute ago, curtis-bob said:

if i had a question about routing while using the Open-VPN client where would you like my question to go. I have an existing post on this forum  -- 

I've done a quick read on the other thread but the OpenVPN client is not designed what you want to do here.

 

It is designed to connect to a OpenVPN server which then can be shared with other containers so that they can use the VPN connection but not a site to site connection.

 

However what you can try is that you install a Firefox container along side with the OpenVPN container and share the network from the OpenVPN container with the Firefox container and connect through to the Firefox browser with the remote Unraid system.

 

Please keep in mind that you may have to set up proper routes so that your remote server can communicate with your local network which can be complicated and I can't help with that.

Do you have a second Unraid machine at home? If yes, why not create a site-to-site connection with the built in Wireguard Tunnel.

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted
11 hours ago, ich777 said:

Is it possible for you to create a free account on privado.io and try it with their .ovpn files and see if it's the same?

 

Privado supports free accounts to AFAIK.

As you can see above, I did. 

 

However, while doing all my screwing around, I can't even route through the OVPN container. Just not sure it's worth the effort. I've been trying to get everything off a windows box by shifting all this stuff to docker containers on the Unraid server. But it's turning out to be quite the headache. 

 

I'll start over one more time with the Privado setup through this container and see what we see.

Link to comment
ich777 Grand Master

ich777

Posted
  • Author
Posted
7 minutes ago, Merijeek said:

I'll start over one more time with the Privado setup through this container and see what we see.

I think you are doing something differently because I asked a second user and he also had no issues at all.

 

7 minutes ago, Merijeek said:

I can't even route through the OVPN container.

Why? This is pretty easy if you follow the steps from the description.

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted
1 hour ago, ich777 said:

I think you are doing something differently because I asked a second user and he also had no issues at all.

 

Why? This is pretty easy if you follow the steps from the description.

 

I don't know. I appear to have broken it via all the experimenting I was going. 

 

As far as me doing something differently, anything is possible, but I don't know how. So this is from scratch

 

Completely basic setup:

 

Quote

docker run
  -d
  --name='OpenVPN-Client'
  --net='bridge'
  -e TZ="America/Los_Angeles"
  -e HOST_OS="Unraid"
  -e HOST_HOSTNAME="UnRAID"
  -e HOST_CONTAINERNAME="OpenVPN-Client"
  -l net.unraid.docker.managed=dockerman
  -l net.unraid.docker.icon='https://raw.githubusercontent.com/ich777/docker-templates/master/ich777/images/openvpn-client.png'
  -v '/mnt/user/dockerprod/openvpn-client':'/vpn':'rw'
  -v '/mnt/user':'/unraid':'rw'
  --device='/dev/net/tun'
  --cap-add=NET_ADMIN
  --dns=8.8.8.8
  --sysctl net.ipv6.conf.all.disable_ipv6=1 'ich777/openvpn-client'

3e6f00443e5eb78367d475fc7c85ac77abce767e3cec71323b901fe137c34c64

The command finished successfully!

 

Created an OVPN file over at PIA, then put it and creds in the right spot:

 

image.png.b9c5e6b427301fb95e429b1c14fdba91.png

 

And it looks like it's up after a restart:

 

image.thumb.png.927b89080a62a680bd46b2df96f88074.png

 

My QBT and OVPN containers can both ping the outside world via DNS. 

 

I've got this happy and good and completely legal torrent that finished a few minutes ago:

image.thumb.png.0395741409313bd8bbeb0677b6b71f33.png

 

And I go and visit this site: https://ipleak.net/ and choose the "Torrent Address Detection" button, and then grab the magnet link and pop it into QBT:

 

image.thumb.png.60ddcb5e85af1cd9dcb9f720e2df8e50.png

 

And when I go back to ipleak, I see:

 

image.png.3036ce5293f12a199f3eec26276f0eed.png

 

The top one being the VPN address, the bottom one being my own public IP. 

 

 

....so then he goes ahead and does the same thing. Shuts down all dockers and changes the ovpn.vpn and auth.vpn files to the Privado versions. 

 

OVPN file is Privado's: ams-001.default (renamed, of course)

 

Connected:

 

image.thumb.png.7c17e4fcf59f2827f883a1e224cefb12.png

 

Go back to IPLeak, grab  a new magnet and put it into QBT:

 

image.thumb.png.e23a79beaf43ab0176aef48492329aa8.png

 

...and poof, pretty much instantly

 

image.png.7c37c901707792cec7e23975fb86da46.png

 

Finally, lacking any better ideas, I change the DNS that the OVPN container is using.

 

....and boom, same as above. 

 

Meanwhile, on my extra Windows machine running the PIA client, I go through the same tests, and only my PIA VPN IP ever shows up in the ipleak site. 

 

I'm not saying I'm not possibly doing something wrong here, but I don't see how I can be. 

 

 

Link to comment
sonic6 Enthusiast

sonic6

Posted
Posted (edited)
7 hours ago, Merijeek said:

 

I don't know. I appear to have broken it via all the experimenting I was going. 

 

As far as me doing something differently, anything is possible, but I don't know how. So this is from scratch

 

Completely basic setup:

 

 

Created an OVPN file over at PIA, then put it and creds in the right spot:

 

image.png.b9c5e6b427301fb95e429b1c14fdba91.png

 

And it looks like it's up after a restart:

 

image.thumb.png.927b89080a62a680bd46b2df96f88074.png

 

My QBT and OVPN containers can both ping the outside world via DNS. 

 

I've got this happy and good and completely legal torrent that finished a few minutes ago:

image.thumb.png.0395741409313bd8bbeb0677b6b71f33.png

 

And I go and visit this site: https://ipleak.net/ and choose the "Torrent Address Detection" button, and then grab the magnet link and pop it into QBT:

 

image.thumb.png.60ddcb5e85af1cd9dcb9f720e2df8e50.png

 

And when I go back to ipleak, I see:

 

image.png.3036ce5293f12a199f3eec26276f0eed.png

 

The top one being the VPN address, the bottom one being my own public IP. 

 

 

....so then he goes ahead and does the same thing. Shuts down all dockers and changes the ovpn.vpn and auth.vpn files to the Privado versions. 

 

OVPN file is Privado's: ams-001.default (renamed, of course)

 

Connected:

 

image.thumb.png.7c17e4fcf59f2827f883a1e224cefb12.png

 

Go back to IPLeak, grab  a new magnet and put it into QBT:

 

image.thumb.png.e23a79beaf43ab0176aef48492329aa8.png

 

...and poof, pretty much instantly

 

image.png.7c37c901707792cec7e23975fb86da46.png

 

Finally, lacking any better ideas, I change the DNS that the OVPN container is using.

 

....and boom, same as above. 

 

Meanwhile, on my extra Windows machine running the PIA client, I go through the same tests, and only my PIA VPN IP ever shows up in the ipleak site. 

 

I'm not saying I'm not possibly doing something wrong here, but I don't see how I can be. 

 

 

i added LSIO's qbitorrent just for testing... can't reproduce it. it isn't the ovpn-client client. it must be you setup.

 

 

image.png

 

image.thumb.png.944bf18375600808e474b5bd6acd0bf1.png

Edited by sonic6
  • Like 1
Link to comment
sonic6 Enthusiast

sonic6

Posted
Posted
7 hours ago, Merijeek said:

Completely basic setup:

 

Quote

docker run
  -d
  --name='OpenVPN-Client'
  --net='bridge'
  -e TZ="America/Los_Angeles"
  -e HOST_OS="Unraid"
  -e HOST_HOSTNAME="UnRAID"
  -e HOST_CONTAINERNAME="OpenVPN-Client"
  -l net.unraid.docker.managed=dockerman
  -l net.unraid.docker.icon='https://raw.githubusercontent.com/ich777/docker-templates/master/ich777/images/openvpn-client.png'
  -v '/mnt/user/dockerprod/openvpn-client':'/vpn':'rw'
  -v '/mnt/user':'/unraid':'rw'
  --device='/dev/net/tun'
  --cap-add=NET_ADMIN
  --dns=8.8.8.8
  --sysctl net.ipv6.conf.all.disable_ipv6=1 'ich777/openvpn-client'

3e6f00443e5eb78367d475fc7c85ac77abce767e3cec71323b901fe137c34c64

The command finished successfully!

 

there are no ports or the firewall, which is needed in bridge mode, or i am wrong?

  • Like 1
Link to comment
ich777 Grand Master

ich777

Posted
  • Author
Posted
8 hours ago, Merijeek said:

I don't know. I appear to have broken it via all the experimenting I was going. 

As @sonic6 said, something seems off, can you please also post a screenshot from your torrent container with the Advanced View enabled?

I think there is a general configuration issue.

 

 

I've now also tried it with the ams-001.default file (@iviv this is maybe also interesting for you) :

 

First I've created the OpenVPN-Client container (this is a completely fresh installation) :

grafik.thumb.png.fa3867618a65f08d9d969258276f4e61.png

 

Then I clicked this button in the OpenVPN-Client template to add a variable and a new port entry:

grafik.png.33cbfa0d1b52354db9b5e6fd6e80517f.png

 

This is the variable (this will ensure that no outgoing traffic is possible when the VPN connection is not established, strictly speaking you don't have to create that variable but I recommend it) :

grafik.png.11320469b3241339bcf0c20db31b57d3.png

 

This port is necessary because you route the traffic from the torrent client through the OpenVPN-Client and the torrent client has strictly speaking no own network anymore and you have to create all ports that you want to be reachable from outside the torrent container in the OpenVPN-Client template:

grafik.png.125e6c8881b2365b923e35ba1b27eb8e.png

 

Then I ensured that the container doesn't leak by opening the console:

grafik.png.700026b46a3684e0d790a79808fcff11.png

 

And issuing the command that I've provided (a bit modified, but it does the same) :

grafik.thumb.png.7193ece2239f22ed6df52b8c4f1b5a42.png

 

Then I created the torrent container and changing the Network Type to None and in the Extra Parameters you have to tell the torrent container that it uses the container network from OpenVPN-Client:

grafik.png.c13e0c2dc77acb8c8563f8a708e5812e.png

 

Then I ensured that there is no leak in the torrent container by opening up the console (please note that the WebUI button in the torrent container is not working anymore because it has no network anymore, you have to type in the IP:PORT manually in the address bar like 192.168.0.10:8080 to open the WebUI from the torrent client) :

grafik.png.9a70b32e12844ed043bef82ab1a925c0.png

 

I issued the command again:

grafik.thumb.png.1b04e3f0df428672956849a70d251f4b.png

 

Then I went over to the leak testing thing and this is my real IP (I removed basically everything except for the last digit but you should see that the IPs are different) :

grafik.png.4add3a9d685ca0a907f0ee7941de4641.png

 

Then I copied the Magnet Link and pasted it into the torrent client (you have to open up a browser and enter the IP followed by the port manually because the WebUI button doesn't work anymore as explained above) :

grafik.thumb.png.efa8b23f2000d1c0c921ecafb46c8cc1.png

 

And back to the leak tester you can see that there is only one IP (from the VPN) :

grafik.png.1f17868a0c605db21b32bd8cd793419a.png

 

 

Hope that makes sense.

Link to comment
Merijeek Apprentice

Merijeek

Posted
Posted

Here's some shots of my advanced QBT setup:

 

image.thumb.png.358e5ea24c5ce84d761747ebc4b3c0cd.png

 

image.thumb.png.4d4326d1c936df2ce731cd458698b7fe.png

 

As you can see, not much to it. 

 

However, I did add the FIREWALL variable to the OpenVPN container and so far I seem to be showing good:

 

image.png.bda5f183e304d22c89a781f1e7873ec7.png

 

So...I'll throw a few more things in there and check back and see what I can see. 

 

  • Like 1
Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing