Replies: 6 comments 8 replies
-
|
You need to provide more information, there is a reason why there is a template to create tickets. |
Beta Was this translation helpful? Give feedback.
-
|
please follow the template instructions, enable DEBUG=trace, the logs provided are not enough, |
Beta Was this translation helpful? Give feedback.
-
|
doesn't look like trace is enable, also please follow the template!!! |
Beta Was this translation helpful? Give feedback.
-
|
I don't know why you closed this? |
Beta Was this translation helpful? Give feedback.
-
|
moved it to a discussion, this is not an issue with the container, is a problem at your end, here you can ask for help for your specific setup |
Beta Was this translation helpful? Give feedback.
-
|
oh okay thanks for that. Yeah it's working fine right now, but it always connects to my home country. How do I change that? Also, to be sure - does the container itself need to have any specific ports? thanks for your help much appreciated! |
Beta Was this translation helpful? Give feedback.
-
|
I have been running my container for months with little problem (every now and then it crashes). I do not check on it every day, but today I noticed the following message
I have tried connecting multiple times throughout the day, but it keeps failing. Nothing was changed on my docker-compose. $ uname -srvmo
Linux 4.19.0-16-amd64 #1 SMP Debian 4.19.181-1 (2021-03-19) x86_64 GNU/Linux
$ docker --version
Docker version 20.10.7, build f0df350
$ docker-compose --version
docker-compose version 1.28.6, build 5db8d86fDocker setup (expand to see)# docker-compose.yml
version: "3.8"
services:
vpn:
image: "bubuntux/nordvpn:latest"
network_mode: bridge
restart: unless-stopped
cap_add:
- NET_ADMIN # required
- SYS_MODULE # required for TECHNOLOGY=NordLynx
sysctls:
- net.ipv4.conf.all.rp_filter=2
devices:
- /dev/net/tun
env_file:
- ${DOCKERDIR}/vpn.env
environment:
- TZ=${TZ}
- GROUPID=${PGID}
ulimits:
memlock:
soft: -1
hard: -1
ports:
- 9040:9040
- 6881:6881
- 6881:6881/udp
watchtower:
image: "containrrr/watchtower:latest"
container_name: "watchtower"
restart: unless-stopped
command: --schedule "0 0 0 * * 0" --cleanup
volumes:
- /var/run/docker.sock:/var/run/docker.sock
environment:
- TZ=${TZ}# .env
PGID=999
TZ="<MY_TIMEZONE>"
DOCKERDIR="/home/<USERNAME>/docker"# vpn.env
USER="<USERNAME>"
PASS="<PASSWORD>"
CONNECT="ch -g p2p"
TECHNOLOGY=NordLynx
PROTOCOL=TCP
DNS=1.1.1.1,1.0.0.1,8.8.8.8
NETWORK=192.168.1.0/24
DEBUG="trace"VPN log (expand to see)$ docker-compose logs -f vpn
Attaching to docker_vpn_1
vpn_1 | ++ cat /etc/timezone
vpn_1 | + '[' /UTC '!=' <MY_TIMEZONE> ']'
vpn_1 | + '[' -d /usr/share/zoneinfo/<MY_TIMEZONE> ']'
vpn_1 | + '[' '!' -e /usr/share/zoneinfo/<MY_TIMEZONE> ']'
vpn_1 | + '[' -z <MY_TIMEZONE> ']'
vpn_1 | + ln -fs /usr/share/zoneinfo/<MY_TIMEZONE> /etc/localtime
vpn_1 | + dpkg-reconfigure -f noninteractive tzdata
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Firewall is up, everything has to go through the vpn'
vpn_1 | [2021-06-07T22:56:26-04:00] Firewall is up, everything has to go through the vpn
vpn_1 | ++ awk '$3 == "inet" {print $4}'
vpn_1 | ++ ip -o addr show dev eth0
vpn_1 | + docker_network=172.17.0.2/16
vpn_1 | ++ ip -o addr show dev eth0
vpn_1 | ++ awk '$3 == "inet6" {print $4; exit}'
vpn_1 | + docker6_network=
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Enabling connection to secure interfaces'
vpn_1 | [2021-06-07T22:56:26-04:00] Enabling connection to secure interfaces
vpn_1 | + [[ -n 172.17.0.2/16 ]]
vpn_1 | + iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
vpn_1 | + iptables -A INPUT -i lo -j ACCEPT
vpn_1 | + iptables -A FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
vpn_1 | + iptables -A FORWARD -i lo -j ACCEPT
vpn_1 | + iptables -A OUTPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
vpn_1 | + iptables -A OUTPUT -o lo -j ACCEPT
vpn_1 | + iptables -A OUTPUT -o tap+ -j ACCEPT
vpn_1 | + iptables -A OUTPUT -o tun+ -j ACCEPT
vpn_1 | + iptables -A OUTPUT -o nordlynx+ -j ACCEPT
vpn_1 | + iptables -t nat -A POSTROUTING -o tap+ -j MASQUERADE
vpn_1 | + iptables -t nat -A POSTROUTING -o tun+ -j MASQUERADE
vpn_1 | + iptables -t nat -A POSTROUTING -o nordlynx+ -j MASQUERADE
vpn_1 | + [[ -n '' ]]
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Enabling connection to nordvpn group'
vpn_1 | [2021-06-07T22:56:26-04:00] Enabling connection to nordvpn group
vpn_1 | + [[ -n 172.17.0.2/16 ]]
vpn_1 | + iptables -A OUTPUT -m owner --gid-owner nordvpn -j ACCEPT
vpn_1 | + [[ -n '' ]]
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Enabling connection to docker network'
vpn_1 | [2021-06-07T22:56:26-04:00] Enabling connection to docker network
vpn_1 | + [[ -n 172.17.0.2/16 ]]
vpn_1 | + iptables -A INPUT -s 172.17.0.2/16 -j ACCEPT
vpn_1 | + iptables -A FORWARD -d 172.17.0.2/16 -j ACCEPT
vpn_1 | + iptables -A FORWARD -s 172.17.0.2/16 -j ACCEPT
vpn_1 | + iptables -A OUTPUT -d 172.17.0.2/16 -j ACCEPT
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n 172.17.0.2/16 ]]
vpn_1 | + [[ -n 192.168.1.0/24 ]]
vpn_1 | ++ ip route
vpn_1 | ++ awk '/default/ {print $3}'
vpn_1 | + gw=172.17.0.1
vpn_1 | + for net in ${NETWORK//[;,]/ }
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Enabling connection to network 192.168.1.0/24'
vpn_1 | [2021-06-07T22:56:26-04:00] Enabling connection to network 192.168.1.0/24
vpn_1 | + ip route
vpn_1 | + grep -q 192.168.1.0/24
vpn_1 | + ip route add to 192.168.1.0/24 via 172.17.0.1 dev eth0
vpn_1 | + iptables -A INPUT -s 192.168.1.0/24 -j ACCEPT
vpn_1 | + iptables -A FORWARD -d 192.168.1.0/24 -j ACCEPT
vpn_1 | + iptables -A FORWARD -s 192.168.1.0/24 -j ACCEPT
vpn_1 | + iptables -A OUTPUT -d 192.168.1.0/24 -j ACCEPT
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n '' ]]
vpn_1 | + mkdir -p /dev/net
vpn_1 | + [[ -c /dev/net/tun ]]
vpn_1 | + restart_daemon
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Restarting the service'
vpn_1 | + service nordvpn stop
vpn_1 | [2021-06-07T22:56:26-04:00] Restarting the service
vpn_1 | + rm -rf /run/nordvpn/nordvpnd.sock
vpn_1 | + service nordvpn start
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Waiting for the service to start'
vpn_1 | + attempt_counter=0
vpn_1 | + max_attempts=50
vpn_1 | + '[' -S /run/nordvpn/nordvpnd.sock ']'
vpn_1 | + '[' 0 -eq 50 ']'
vpn_1 | + attempt_counter=1
vpn_1 | + sleep 0.1
vpn_1 | [2021-06-07T22:56:26-04:00] Waiting for the service to start
vpn_1 | + '[' -S /run/nordvpn/nordvpnd.sock ']'
vpn_1 | ++ date -Iseconds
vpn_1 | + echo '[2021-06-07T22:56:26-04:00] Logging in'
vpn_1 | + nordvpn logout
vpn_1 | [2021-06-07T22:56:26-04:00] Logging in
vpn_1 | + nordvpn login --username <USERNAME> --password '<PASSWORD>'
Welcome to NordVPN! You can now connect to VPN by using 'nordvpn connect'.
vpn_1 | ++ date -Iseconds
vpn_1 | ++ nordvpn -version
vpn_1 | + echo '[2021-06-07T22:56:33-04:00] Setting up NordVPN Version 3.10.0'
vpn_1 | [2021-06-07T22:56:33-04:00] Setting up NordVPN Version 3.10.0
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n 1.1.1.1,1.0.0.1,8.8.8.8 ]]
vpn_1 | + nordvpn set dns 1.1.1.1 1.0.0.1 8.8.8.8
vpn_1 | DNS is set to '1.0.0.1, 1.1.1.1, 8.8.8.8' successfully.
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n TCP ]]
vpn_1 | + nordvpn set protocol TCP
vpn_1 | Protocol is successfully set to 'TCP'.
vpn_1 | + [[ -n NordLynx ]]
vpn_1 | + nordvpn set technology NordLynx
vpn_1 | Technology is successfully set to 'NordLynx'.
vpn_1 | + [[ -n 172.17.0.2/16 ]]
vpn_1 | + nordvpn whitelist add subnet 172.17.0.2/16
vpn_1 | Subnet 172.17.0.0/16 is whitelisted successfully.
vpn_1 | + [[ -n 192.168.1.0/24 ]]
vpn_1 | + for net in ${NETWORK//[;,]/ }
vpn_1 | + nordvpn whitelist add subnet 192.168.1.0/24
vpn_1 | Subnet 192.168.1.0/24 is whitelisted successfully.
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n '' ]]
vpn_1 | + [[ -n trace ]]
vpn_1 | + nordvpn settings
Technology: NordLynx
vpn_1 | Firewall: enabled
vpn_1 | Kill Switch: disabled
vpn_1 | CyberSec: disabled
vpn_1 | Notify: disabled
vpn_1 | Auto-connect: disabled
vpn_1 | IPv6: disabled
vpn_1 | DNS: 1.0.0.1, 1.1.1.1, 8.8.8.8
vpn_1 | Whitelisted subnets:
vpn_1 | 192.168.1.0/24
vpn_1 | 172.17.0.0/16
vpn_1 | + connect
vpn_1 | ++ date -Iseconds
vpn_1 | [2021-06-07T22:56:33-04:00] Connecting...
vpn_1 | + echo '[2021-06-07T22:56:33-04:00] Connecting...'
vpn_1 | + attempt_counter=0
vpn_1 | + max_attempts=15
vpn_1 | + nordvpn connect ch -g p2p
Whoops! Something went wrong. Please try again. If the problem persists, contact our customer support.
vpn_1 | + '[' 0 -eq 15 ']'
vpn_1 | + attempt_counter=1
vpn_1 | + sleep 5
vpn_1 | + nordvpn connect ch -g p2p
Whoops! Something went wrong. Please try again. If the problem persists, contact our customer support.
vpn_1 | + '[' 1 -eq 15 ']'
vpn_1 | + attempt_counter=2
vpn_1 | + sleep 5
vpn_1 | + nordvpn connect ch -g p2p
Whoops! Something went wrong. Please try again. If the problem persists, contact our customer support.
vpn_1 | + '[' 2 -eq 15 ']'
vpn_1 | + attempt_counter=3
vpn_1 | + sleep 5
vpn_1 | + nordvpn connect ch -g p2p
Whoops! Something went wrong. Please try again. If the problem persists, contact our customer support.
vpn_1 | + '[' 3 -eq 15 ']'
vpn_1 | + attempt_counter=4
vpn_1 | + sleep 5
vpn_1 | + nordvpn connect ch -g p2p
Whoops! Something went wrong. Please try again. If the problem persists, contact our customer support.
vpn_1 | + '[' 4 -eq 15 ']'
vpn_1 | + attempt_counter=5
vpn_1 | + sleep 5
vpn_1 | + nordvpn connect ch -g p2p
Whoops! Something went wrong. Please try again. If the problem persists, contact our customer support.
vpn_1 | + '[' 5 -eq 15 ']'
vpn_1 | + attempt_counter=6
vpn_1 | + sleep 5 |
Beta Was this translation helpful? Give feedback.
-
|
I was wondering like @adgoncal why it did work perfectly until the last update and I found the problem. |
Beta Was this translation helpful? Give feedback.
-
|
Ok, after a quick talk with the NordVPN support, here is the new way : Their CLI parameters behave weirdly but this is how things are. Hope this can help ! |
Beta Was this translation helpful? Give feedback.
-
|
yes, this change was made in nordvpn, i updated the readme to reflect that, also there is discussions about it in #199 |
Beta Was this translation helpful? Give feedback.
-
|
Thank you! I will try that and report back. |
Beta Was this translation helpful? Give feedback.
-
|
Updating # vpn.env
CONNECT="--group p2p Switzerland"vpn_1 | [2021-06-08T11:25:48-04:00] Connecting...
vpn_1 | + echo '[2021-06-08T11:25:48-04:00] Connecting...'
vpn_1 | + attempt_counter=0
vpn_1 | + max_attempts=15
vpn_1 | + nordvpn connect --group p2p Switzerland
Connecting to Switzerland #305 (ch305.nordvpn.com)
You are connected to Switzerland #305 (ch305.nordvpn.com)!
vpn_1 | + trap cleanup SIGTERM SIGINT EXIT
vpn_1 | + [[ -n trace ]]
vpn_1 | + tail -n 1 -f /var/log/nordvpn/daemon.log
vpn_1 | + true
vpn_1 | + sleep 300
n_1 |
vpn_1 | 2021/06/08 11:25:53 Head "https://cdn.zwyr157wwiu6eior.com/configs/dns/cybersec.json": dial tcp: i/o timeout
vpn_1 | 2021/06/08 11:25:58 error on making client request: Head "https://downloads.nordcdn.com/configs/dns/cybersec.json": dial tcp: i/o timeout
vpn_1 | 2021/06/08 11:25:58 error on making client request: Head "https://downloads.mzhlhrfr8z.info/configs/dns/cybersec.json": dial tcp: i/o timeout
vpn_1 | ++ curl -m 30 -s https://api.nordvpn.com/v1/helpers/ips/insights
vpn_1 | ++ jq -r '.["protected"]'
vpn_1 | + '[' true '!=' true ']'
vpn_1 | + true
vpn_1 | + sleep 300 |
Beta Was this translation helpful? Give feedback.
-
Beta Was this translation helpful? Give feedback.
-
|
there is a thread for synology #202 |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Synology DSM6.2
Been running this container for many months. Cannot seem to get it to work now. I've tried CLI and regular synology GUI. neither seem to work and I get the following error on the title. Any help is appreciated
Beta Was this translation helpful? Give feedback.
All reactions