Receiving Auth Failure

[Agitated-Junk]

I am using NordVPN and have tried with my username and password and also with username and password for manual setup, but in both case i am receiving SIGTERM[soft,auth-failure] received, process exiting. Have tried it with different configurations also. VPN is working perfectly fine within their apps for windows and Android. Don't know what is going wrong here.

Here's Docker Inspect

    "AppArmorProfile": "unconfined",
    "Args": [
        "/etc/openvpn/start.sh"
    ],
    "Config": {
        "AttachStderr": false,
        "AttachStdin": false,
        "AttachStdout": false,
        "Cmd": [
            "/bin/bash",
            "/etc/openvpn/start.sh"
        ],
        "Domainname": "",
        "Entrypoint": null,
        "Env": [
            "PUID=1000",
            "PGID=1000",
            "TZ=Asia/Kolkata",
            "VPN_ENABLED=yes",
            "VPN_USERNAME=Nord-UsernameForManualSetup",
            "VPN_PASSWORD=Nord-PasswordForManualSetup",
            "LAN_NETWORK=192.168.1.0/24",
            "NAME_SERVERS=1.1.1.1,1.0.0.1",
            "UMASK=002",
            "DISABLE_IPV6=1",
            "HEALTH_CHECK_HOST=one.one.one.one",
            "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
            "DEBIAN_FRONTEND=noninteractive",
            "XDG_DATA_HOME=/config",
            "XDG_CONFIG_HOME=/config"
        ],
        "ExposedPorts": {
            "9117/tcp": {}
        },
        "Hostname": "b2a76e0e4e7f",
        "Image": "dyonr/jackettvpn",
        "Labels": {
            "com.docker.compose.config-hash": "4cbe2ca4bbf8edaa3f594267382c803f56e6752f",
            "com.docker.compose.container-number": "1",
            "com.docker.compose.oneoff": "False",
            "com.docker.compose.project": "mediaserver",
            "com.docker.compose.service": "jackettvpn",
            "com.docker.compose.version": "1.5.0"
        },
        "OnBuild": null,
        "OpenStdin": false,
        "StdinOnce": false,
        "Tty": false,
        "User": "",
        "Volumes": {
            "/blackhole": {},
            "/config": {}
        },
        "WorkingDir": "/opt"
    },
    "Created": "2020-08-21T14:05:30.41296543Z",
    "Driver": "overlay2",
    "ExecIDs": null,
    "GraphDriver": {
        "Data": {
            "LowerDir": "/var/lib/docker/overlay2/ca75fa70134ef73ef5c9e4172b5af1bd5cf12e09a953b319a84b57407d63284f-init/diff:/var/lib/docker/overlay2/e93aad3e8d1a93277b4cda7ab84f9c0c91b14e054dfba684642b564df232e926/diff:/var/lib/docker/overlay2/116890dc095c76bb8aee9e8208086bf427666df052ed8fea623c787576d55d33/diff:/var/lib/docker/overlay2/00d36218c5480cab56d59c1efaba065405e9f1032b281bfe7ef445e53d3ee49e/diff:/var/lib/docker/overlay2/9f5cee9fd89e45b0c4dc537b3b1776e76d553075d9d240c183e11fdc00399e82/diff:/var/lib/docker/overlay2/6749fd7da25d41fc96f3aef0f2ae98aa269420a75e7f722872d7ff44017601a6/diff:/var/lib/docker/overlay2/b003e234c5da73b942de6dab42adc3b08fda2972d4ade82a9d9520c6711f2917/diff:/var/lib/docker/overlay2/71e463413a358f84b2532c33121054e5dc31d31b9561f72ba282a8af1565c07f/diff:/var/lib/docker/overlay2/a3f179a2866fe4f300d31b0cc2ed6f6ae828b98d8640d0a9a1b16d169f235bfa/diff:/var/lib/docker/overlay2/b49aed53def1fc9d9e3974c1c0bb69c1ec1e3f309380821deb58384be77df881/diff:/var/lib/docker/overlay2/cd13bae7ebe6087bb0dce5b8ae2bb6a2aea67ac3349154df7d0481b3dea06747/diff:/var/lib/docker/overlay2/f16e7812c10b3bc57f86306ff119c13dcfc2386aee079623f9b10d302fa99aa3/diff",
            "MergedDir": "/var/lib/docker/overlay2/ca75fa70134ef73ef5c9e4172b5af1bd5cf12e09a953b319a84b57407d63284f/merged",
            "UpperDir": "/var/lib/docker/overlay2/ca75fa70134ef73ef5c9e4172b5af1bd5cf12e09a953b319a84b57407d63284f/diff",
            "WorkDir": "/var/lib/docker/overlay2/ca75fa70134ef73ef5c9e4172b5af1bd5cf12e09a953b319a84b57407d63284f/work"
        },
        "Name": "overlay2"
    },
    "HostConfig": {
        "AutoRemove": false,
        "Binds": [
            "/mnt/DV/volumes/JackettOVPN/_data:/config",
            "/mnt/DV/volumes/Torrent-downloads/_data:/blackhole"
        ],
        "BlkioDeviceReadBps": null,
        "BlkioDeviceReadIOps": null,
        "BlkioDeviceWriteBps": null,
        "BlkioDeviceWriteIOps": null,
        "BlkioWeight": 0,
        "BlkioWeightDevice": null,
        "CapAdd": null,
        "CapDrop": null,
        "Capabilities": null,
        "Cgroup": "",
        "CgroupParent": "",
        "ConsoleSize": [
            0,
            0
        ],
        "ContainerIDFile": "",
        "CpuCount": 0,
        "CpuPercent": 0,
        "CpuPeriod": 0,
        "CpuQuota": 0,
        "CpuRealtimePeriod": 0,
        "CpuRealtimeRuntime": 0,
        "CpuShares": 0,
        "CpusetCpus": "",
        "CpusetMems": "",
        "DeviceCgroupRules": null,
        "DeviceRequests": null,
        "Devices": [],
        "Dns": [],
        "DnsOptions": [],
        "DnsSearch": [],
        "ExtraHosts": null,
        "GroupAdd": null,
        "IOMaximumBandwidth": 0,
        "IOMaximumIOps": 0,
        "IpcMode": "shareable",
        "Isolation": "",
        "KernelMemory": 0,
        "KernelMemoryTCP": 0,
        "Links": null,
        "LogConfig": {
            "Config": {},
            "Type": "json-file"
        },
        "MaskedPaths": null,
        "Memory": 0,
        "MemoryReservation": 0,
        "MemorySwap": 0,
        "MemorySwappiness": 0,
        "NanoCpus": 0,
        "NetworkMode": "mediaserver_default",
        "OomKillDisable": false,
        "OomScoreAdj": 0,
        "PidMode": "",
        "PidsLimit": null,
        "PortBindings": {
            "9117/tcp": [
                {
                    "HostIp": "",
                    "HostPort": "9992"
                }
            ]
        },
        "Privileged": true,
        "PublishAllPorts": false,
        "ReadonlyPaths": null,
        "ReadonlyRootfs": false,
        "RestartPolicy": {
            "MaximumRetryCount": 0,
            "Name": "unless-stopped"
        },
        "Runtime": "runc",
        "SecurityOpt": [
            "label=disable"
        ],
        "ShmSize": 67108864,
        "UTSMode": "",
        "Ulimits": [],
        "UsernsMode": "",
        "VolumeDriver": "",
        "VolumesFrom": null
    },
    "HostnamePath": "/var/lib/docker/containers/b2a76e0e4e7f4aaceacd774aab5fadfa71f4558bcf35b37008653a14a0b3e7e9/hostname",
    "HostsPath": "/var/lib/docker/containers/b2a76e0e4e7f4aaceacd774aab5fadfa71f4558bcf35b37008653a14a0b3e7e9/hosts",
    "Id": "b2a76e0e4e7f4aaceacd774aab5fadfa71f4558bcf35b37008653a14a0b3e7e9",
    "Image": "sha256:3c7ccd932dc01c8260ccfba09e57c5187bf7faffe9b89d28828ec80880904370",
    "LogPath": "/var/lib/docker/containers/b2a76e0e4e7f4aaceacd774aab5fadfa71f4558bcf35b37008653a14a0b3e7e9/b2a76e0e4e7f4aaceacd774aab5fadfa71f4558bcf35b37008653a14a0b3e7e9-json.log",
    "MountLabel": "",
    "Mounts": [
        {
            "Destination": "/blackhole",
            "Mode": "",
            "Propagation": "rprivate",
            "RW": true,
            "Source": "/mnt/DV/volumes/Torrent-downloads/_data",
            "Type": "bind"
        },
        {
            "Destination": "/config",
            "Mode": "",
            "Propagation": "rprivate",
            "RW": true,
            "Source": "/mnt/DV/volumes/JackettOVPN/_data",
            "Type": "bind"
        }
    ],
    "Name": "/JackettOVPN",
    "NetworkSettings": {
        "Bridge": "",
        "EndpointID": "",
        "Gateway": "",
        "GlobalIPv6Address": "",
        "GlobalIPv6PrefixLen": 0,
        "HairpinMode": false,
        "IPAddress": "",
        "IPPrefixLen": 0,
        "IPv6Gateway": "",
        "LinkLocalIPv6Address": "",
        "LinkLocalIPv6PrefixLen": 0,
        "MacAddress": "",
        "Networks": {
            "mediaserver_default": {
                "Aliases": [
                    "jackettvpn",
                    "b2a76e0e4e7f"
                ],
                "DriverOpts": null,
                "EndpointID": "",
                "Gateway": "",
                "GlobalIPv6Address": "",
                "GlobalIPv6PrefixLen": 0,
                "IPAMConfig": {},
                "IPAddress": "",
                "IPPrefixLen": 0,
                "IPv6Gateway": "",
                "Links": [],
                "MacAddress": "",
                "NetworkID": "5efd99e65ef62cfb144339d9b96a56cc2e731f94f62123c33079af840161d59c"
            }
        },
        "Ports": {},
        "SandboxID": "73b7c879429cd81c5cc716ab7f930eace9d21cb02a6bcc032e57c9bc04510754",
        "SandboxKey": "/var/run/docker/netns/73b7c879429c",
        "SecondaryIPAddresses": null,
        "SecondaryIPv6Addresses": null
    },
    "Path": "/bin/bash",
    "Platform": "linux",
    "Portainer": {
        "ResourceControl": {
            "Id": 194,
            "ResourceId": "mediaserver",
            "SubResourceIds": [],
            "Type": 6,
            "UserAccesses": [],
            "TeamAccesses": [],
            "Public": false,
            "AdministratorsOnly": true,
            "System": false
        }
    },
    "ProcessLabel": "",
    "ResolvConfPath": "/var/lib/docker/containers/b2a76e0e4e7f4aaceacd774aab5fadfa71f4558bcf35b37008653a14a0b3e7e9/resolv.conf",
    "RestartCount": 0,
    "State": {
        "Dead": false,
        "Error": "",
        "ExitCode": 137,
        "FinishedAt": "2020-08-21T16:55:12.048774925Z",
        "OOMKilled": false,
        "Paused": false,
        "Pid": 0,
        "Restarting": false,
        "Running": false,
        "StartedAt": "2020-08-21T15:48:52.525581412Z",
        "Status": "exited"```

Docker Version

```docker -v
Docker version 19.03.12, build 48a66213fe```

Logs

```2020-08-21T17:13:15.928891200Z 2020-08-21 17:13:15.928719 [INFO] VPN_ENABLED defined as 'yes',
2020-08-21T17:13:15.965665149Z 2020-08-21 17:13:15.965510 [INFO] DISABLE_IPV6 is set to '1',
2020-08-21T17:13:15.996876662Z 2020-08-21 17:13:15.996745 [INFO] Disabling IPv6 in sysctl,
2020-08-21T17:13:16.030643496Z 2020-08-21 17:13:16.030523 [WARNING] VPN_TYPE not set, defaulting to OpenVPN.,
2020-08-21T17:13:16.074023860Z 2020-08-21 17:13:16.073846 [INFO] OpenVPN config file is found at /config/openvpn/us6197.nordvpn.com.tcp443.ovpn,
2020-08-21T17:13:16.081699636Z dos2unix: converting file /config/openvpn/us6197.nordvpn.com.tcp443.ovpn to Unix format...,
2020-08-21T17:13:16.115524993Z 2020-08-21 17:13:16.115339 [INFO] VPN remote line defined as '209.58.139.50 443',
2020-08-21T17:13:16.149187610Z 2020-08-21 17:13:16.149008 [INFO] VPN_REMOTE defined as '209.58.139.50',
2020-08-21T17:13:16.186135617Z 2020-08-21 17:13:16.186011 [INFO] VPN_PORT defined as '443',
2020-08-21T17:13:16.224212219Z 2020-08-21 17:13:16.223999 [INFO] VPN_PROTOCOL defined as 'tcp',
2020-08-21T17:13:16.259589633Z 2020-08-21 17:13:16.259425 [INFO] VPN_DEVICE_TYPE defined as 'tun0',
2020-08-21T17:13:16.307422662Z 2020-08-21 17:13:16.307270 [INFO] LAN_NETWORK defined as '192.168.1.0/24',
2020-08-21T17:13:16.340480171Z 2020-08-21 17:13:16.340255 [INFO] NAME_SERVERS defined as '1.1.1.1,1.0.0.1',
2020-08-21T17:13:16.378540444Z 2020-08-21 17:13:16.378372 [INFO] VPN_OPTIONS not defined (via -e VPN_OPTIONS),
2020-08-21T17:13:16.413590735Z 2020-08-21 17:13:16.413434 [INFO] Adding 1.1.1.1 to resolv.conf,
2020-08-21T17:13:16.450072493Z 2020-08-21 17:13:16.449863 [INFO] Adding 1.0.0.1 to resolv.conf,
2020-08-21T17:13:16.482237452Z 2020-08-21 17:13:16.482032 [INFO] Starting OpenVPN...,
2020-08-21T17:13:16.488086675Z Fri Aug 21 17:13:16 2020 WARNING: file 'credentials.conf' is group or others accessible,
2020-08-21T17:13:16.488192307Z Fri Aug 21 17:13:16 2020 OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2019,
2020-08-21T17:13:16.488282332Z Fri Aug 21 17:13:16 2020 library versions: OpenSSL 1.1.1  11 Sep 2018, LZO 2.08,
2020-08-21T17:13:16.488513498Z Fri Aug 21 17:13:16 2020 WARNING: --ping should normally be used with --ping-restart or --ping-exit,
2020-08-21T17:13:16.488575330Z Fri Aug 21 17:13:16 2020 NOTE: --fast-io is disabled since we are not using UDP,
2020-08-21T17:13:16.488994286Z Fri Aug 21 17:13:16 2020 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication,
2020-08-21T17:13:16.489004737Z Fri Aug 21 17:13:16 2020 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication,
2020-08-21T17:13:16.489161289Z Fri Aug 21 17:13:16 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]209.58.139.50:443,
2020-08-21T17:13:16.489171793Z Fri Aug 21 17:13:16 2020 Socket Buffers: R=[131072->131072] S=[16384->16384],
2020-08-21T17:13:16.489239298Z Fri Aug 21 17:13:16 2020 Attempting to establish TCP connection with [AF_INET]209.58.139.50:443 [nonblock],
2020-08-21T17:13:17.489666439Z Fri Aug 21 17:13:17 2020 TCP connection established with [AF_INET]209.58.139.50:443,
2020-08-21T17:13:17.489829366Z Fri Aug 21 17:13:17 2020 TCP_CLIENT link local: (not bound),
2020-08-21T17:13:17.489966838Z Fri Aug 21 17:13:17 2020 TCP_CLIENT link remote: [AF_INET]209.58.139.50:443,
2020-08-21T17:13:17.786329629Z Fri Aug 21 17:13:17 2020 TLS: Initial packet from [AF_INET]209.58.139.50:443, sid=eb05d969 0ec1c202,
2020-08-21T17:13:17.786399594Z Fri Aug 21 17:13:17 2020 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this,
2020-08-21T17:13:18.813095691Z Fri Aug 21 17:13:18 2020 VERIFY OK: depth=2, C=PA, O=NordVPN, CN=NordVPN Root CA,
2020-08-21T17:13:18.813695190Z Fri Aug 21 17:13:18 2020 VERIFY OK: depth=1, C=PA, O=NordVPN, CN=NordVPN CA5,
2020-08-21T17:13:18.814140301Z Fri Aug 21 17:13:18 2020 VERIFY KU OK,
2020-08-21T17:13:18.814185532Z Fri Aug 21 17:13:18 2020 Validating certificate extended key usage,
2020-08-21T17:13:18.814196946Z Fri Aug 21 17:13:18 2020 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication,
2020-08-21T17:13:18.814205652Z Fri Aug 21 17:13:18 2020 VERIFY EKU OK,
2020-08-21T17:13:18.814213434Z Fri Aug 21 17:13:18 2020 VERIFY OK: depth=0, CN=us6197.nordvpn.com,
2020-08-21T17:13:21.677000070Z Fri Aug 21 17:13:21 2020 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA,
2020-08-21T17:13:21.677030309Z Fri Aug 21 17:13:21 2020 [us6197.nordvpn.com] Peer Connection Initiated with [AF_INET]209.58.139.50:443,
2020-08-21T17:13:22.911451066Z Fri Aug 21 17:13:22 2020 SENT CONTROL [us6197.nordvpn.com]: 'PUSH_REQUEST' (status=1),
2020-08-21T17:13:23.545455463Z Fri Aug 21 17:13:23 2020 AUTH: Received control message: AUTH_FAILED,
2020-08-21T17:13:23.545967431Z Fri Aug 21 17:13:23 2020 SIGTERM[soft,auth-failure] received, process exiting,```

[xontik]

For nord vpn, you need special login/password for using with openVPN, you can't use the email/password.

[DyonR]

@xontik is correct. Did you use the service credentials as provided at your Nord Account > Dashboard > NordVPN > 'Advanced configuration'?
Edit: Refer to step 12 here
Edit 2: based on your comment you did. but as far as I know that should work.

[Agitated-Junk]

Don't know what's happening. Sometimes it connects and works well and sometime it refuses to connect. I've tried with different server configurations but got same results.

[xontik]

@Agitated-Junk I have the same problem too, and since @DyonR implemented the health check differently than docker one, now my container just stop openVPN without exiting so it does not restart automatically, pain with nordVPN constantly crashing ...

For now i just use jackett without vpn or i use the Image in this commit with correct healthcheck : commit

[Agitated-Junk]

@xontik problem with me is i can't run jackett without a VPN. My ISP blocks an access to torrents websites that's is the only reason why i am paying for nord.

[xontik]

then use the commit i gave you

[goldenpipes]

I just ran into this, after running perfectly for many months, @xontik is your commit still up? how do i pull that commit?

[xontik]

Hi, You wont be able to pull directly that, commit either fork it, tag it and push it on your docker hub, or just clone the repo and checkout at that commit.

[goldenpipes]

Hi, You wont be able to pull directly that, commit either fork it, tag it and push it on your docker hub, or just clone the repo and checkout at that commit.

I have no idea how to do that lol. guess its time to learn. Thanks!

[goldenpipes]

hmm i actually dug in further and i have a different issue altogether.

[xontik]

Tell me, I'll try to guide you