dyonr / docker-passthroughvpn Goto Github PK

I tried following the guide for setting up the passthroughvpn. I am trying to get a mysterium node docker up which uses webui-port 4449.
I have added --net=container:passthroughvpn to the extra options in the mysterium container. But if I also change the network to None it will not start.
I also created the port 4449:4449 and added 4449 to the additional port settings in passthrougvpn.
But I cant reach the webui of the mysterium container. Have I missed something ?

It's not the best to have the instructions in the Readme.md, I should look into Wiki pages on GitHub and move the instructions to there.

2023-01-18 00:24:22.499933 [INFO] VPN_ENABLED defined as 'yes'
2023-01-18 00:24:22.550687 [INFO] VPN_TYPE defined as 'openvpn'
2023-01-18 00:24:22.605017 [INFO] OpenVPN config file is found at /config/openvpn/xxxxxxxxxxxx
dos2unix: converting file /config/openvpn/de972.nordvpn.com.tcp.ovpn to Unix format...
2023-01-18 00:24:22.657180 [INFO] VPN remote line defined as 'xxxxx'
2023-01-18 00:24:22.708779 [INFO] VPN_REMOTE defined as 'xxxxxxxxxxx'
2023-01-18 00:24:22.761147 [INFO] VPN_PORT defined as '443'
2023-01-18 00:24:22.814533 [INFO] VPN_PROTOCOL defined as 'tcp'
2023-01-18 00:24:22.865591 [INFO] VPN_DEVICE_TYPE defined as 'tun0'
2023-01-18 00:24:22.987007 [INFO] LAN_NETWORK defined as '192.168.178.0/24'
2023-01-18 00:24:23.046389 [WARNING] NAME_SERVERS not defined (via -e NAME_SERVERS), defaulting to CloudFlare and Google name servers
2023-01-18 00:24:23.124705 [INFO] VPN_OPTIONS not defined (via -e VPN_OPTIONS)
2023-01-18 00:24:23.184035 [INFO] Adding 1.1.1.1 to resolv.conf
2023-01-18 00:24:23.242087 [INFO] Adding 8.8.8.8 to resolv.conf
2023-01-18 00:24:23.294184 [INFO] Adding 1.0.0.1 to resolv.conf
2023-01-18 00:24:23.345702 [INFO] Adding 8.8.4.4 to resolv.conf
2023-01-18 00:24:23.404386 [INFO] Starting OpenVPN...
2023-01-18 00:24:23 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
Options error: No client-side authentication method is specified.  You must use either --cert/--key, --pkcs12, or --auth-user-pass
Use --help for more information.

Doesn't work for other containers in this network aswell besides qbittorrentvpn which probably works on it's own.

hi,

i setup everything as shown in your repo with same jdownloader2 container. but no gui. i even tried nzbget, same issue.

please help me to solve this issue.

i have 2 VLAN:

VLAN 1 192.168.1.0/24
VLAN 2 192.168.2.0/24

passthroughvpn runs on vlan2

If i start passtroughvpn i can ping the machine from vlan2 all the time.
When my machine is connected to vlan1 i can only ping the machine when the openvpn is down.

When i remote control the docker and add this
iptables -A OUTPUT -s 192.168.2.0/24 -d 192.168.1.0/24 -j ACCEPT
iptables -A INPUT -s 192.168.1.0/24 -d 192.168.2.0/24 -j ACCEPT

i can ping the machine and connect to it.

LAN_NETWORK: 192.168.2.0/24,192.168.1.0/24

Please help

[#] ip link add wg0 type wireguard
[#] wg setconf wg0 /dev/fd/63
[#] ip -4 address add 10.xx.xx.131/32 dev wg0
[#] ip -6 address add fc00:bbbb:xxxx:xxxx::0:xxxx/128 dev wg0
RTNETLINK answers: Permission denied
[#] ip link delete dev wg0
2021-03-22 10:39:49.130124 [INFO] VPN_ENABLED defined as 'yes'
2021-03-22 10:39:49.150408 [INFO] VPN_TYPE defined as 'wireguard'
2021-03-22 10:39:49.181265 [INFO] WireGuard config file is found at /config/wireguard/wg0.conf
dos2unix: converting file /config/wireguard/wg0.conf to Unix format...
2021-03-22 10:39:49.204315 [INFO] VPN remote line defined as '185.xxx.xxx.70:51820'
2021-03-22 10:39:49.226832 [INFO] VPN_REMOTE defined as '185.xxx.xxx.70'
2021-03-22 10:39:49.249201 [INFO] VPN_PORT defined as '51820'
2021-03-22 10:39:49.270035 [INFO] VPN_PROTOCOL set as 'udp', since WireGuard is always udp.
2021-03-22 10:39:49.130124 [INFO] VPN_ENABLED defined as 'yes'
2021-03-22 10:39:49.150408 [INFO] VPN_TYPE defined as 'wireguard'
2021-03-22 10:39:49.181265 [INFO] WireGuard config file is found at /config/wireguard/wg0.conf
dos2unix: converting file /config/wireguard/wg0.conf to Unix format...
2021-03-22 10:39:49.204315 [INFO] VPN remote line defined as '185.xxx.xxx.70:51820'
2021-03-22 10:39:49.226832 [INFO] VPN_REMOTE defined as '185.xxx.xxx.70'
2021-03-22 10:39:49.249201 [INFO] VPN_PORT defined as '51820'
2021-03-22 10:39:49.270035 [INFO] VPN_PROTOCOL set as 'udp', since WireGuard is always udp.
2021-03-22 10:39:49.295977 [INFO] VPN_DEVICE_TYPE set as 'wg0', since WireGuard will always be wg0.
2021-03-22 10:39:49.322001 [INFO] LAN_NETWORK defined as '192.168.178.0/24'
2021-03-22 10:39:49.344897 [INFO] NAME_SERVERS defined as '1.1.1.1,1.0.0.1'
2021-03-22 10:39:49.369305 [INFO] Adding 1.1.1.1 to resolv.conf
2021-03-22 10:39:49.392650 [INFO] Adding 1.0.0.1 to resolv.conf
2021-03-22 10:39:49.414332 [INFO] Starting WireGuard...
Warning: `/config/wireguard/wg0.conf' is world accessible
[#] ip link add wg0 type wireguard
[#] wg setconf wg0 /dev/fd/63
[#] ip -4 address add 10.xx.xx.131/32 dev wg0
[#] ip -6 address add fc00:xxxx:xxxx:xxxx::0:5a82/128 dev wg0
RTNETLINK answers: Permission denied
[#] ip link delete dev wg0

Hi, I am always getting this error message running it on unraid:

dos2unix: converting file /config/wireguard/wg0.conf to Unix format...
Warning: `/config/wireguard/wg0.conf' is world accessible
[#] ip link add wg0 type wireguard
[#] wg setconf wg0 /dev/fd/63
[#] ip -4 address add 10.66.66.2/32 dev wg0
[#] ip link set mtu 1420 up dev wg0
[#] resolvconf -a wg0 -m 0 -x
[#] wg set wg0 fwmark 51820
[#] ip -6 route add ::/0 dev wg0 table 51820
Error: IPv6 is disabled on nexthop device.
[#] resolvconf -d wg0 -f
[#] ip link delete dev wg0
2022-08-31 09:34:13.134446 [INFO] VPN_ENABLED defined as 'yes'
2022-08-31 09:34:13.173903 [INFO] VPN_TYPE defined as 'wireguard'
2022-08-31 09:34:13.233716 [INFO] WireGuard config file is found at /config/wireguard/._wg0.conf
2022-08-31 09:34:13.273229 [ERROR] WireGuard config filename is not 'wg0.conf'
2022-08-31 09:34:13.311136 [ERROR] Rename /config/wireguard/._wg0.conf to 'wg0.conf'
2022-08-31 09:34:24.521653 [INFO] VPN_ENABLED defined as 'yes'
2022-08-31 09:34:24.560908 [INFO] VPN_TYPE defined as 'wireguard'
2022-08-31 09:34:24.611684 [INFO] WireGuard config file is found at /config/wireguard/._wg0.conf
2022-08-31 09:34:24.649773 [ERROR] WireGuard config filename is not 'wg0.conf'
2022-08-31 09:34:24.686862 [ERROR] Rename /config/wireguard/._wg0.conf to 'wg0.conf'

The config is named correctly. It seems like the container is modifying the name to "._wg0.conf" and can't read it then anymore...

What can I do?

can this container be used as a router for LAN devices.

For example to configure this docker with host networking in some way, and configure my TV's GW to IP of this container, so traffic goes through vpn tunnel?

Thanks

Hey!

So lately i've been having a few issues with this docker container.
Pretty much every day I get the following error.
[ERROR] Network is possibly down.
And with restart container enabled it ends up in a infinite loop until it gives up also resulting in my containers running through this never starting again.

I have checked the ip within the container, and it is still connected to the VPN.
Even though it says [ERROR] Network is possibly down.

Kind regards