Can't access WebUI, through portainer in OMV

[Rufus13apostol]

Hi there,

I change markusMcnugen image for this one because I started to have problems accesing the webUI. Logs show nothing of importance: _qbittorrentvpndyonr_logs.txt

This is my yml config : qbittorrentvpn: image: dyonr/qbittorrentvpn container_name: qbittorrentvpndyonr privileged: true environment:

• VPN_USERNAME=**
• VPN_PASSWORD=**
• PUID=998
• PGID=100
• VPN_ENABLED=yes
• VPN_TYPE=openvpn
• HEALTH_CHECK_HOST=local-ip
• HEALTH_CHECK_INTERVAL=300
• INSTALL_PYTHON3=yes
• ADDITIONAL_PORTS=8282
• LAN_NETWORK=192.168.50.0/24 #adjust this to YOUR network settings
• NAME_SERVERS=8.8.8.8 #you can use whatever DNS provider you want ports:
• 8282:8282
• 8999:8999
• 8999:8999/udp volumes:
• /localpath/Configs/QBittorrentVPN:/config
• /localpath/Torrents:/downloads
• /etc/timezone:/etc/timezone:ro #This is for TimeZone restart: unless-stopped

And this is the openvpn file: es-vlc.prod.vpnopenvpn.zip

[DyonR]

The log of the container starting does seem normal. Don't see anything that seems bad.
Can you check /localpath/Configs/QBittorrentVPN/qBittorrent/data/logs and send me the qbittorrent.log file, if it even exists?
Warning: The .log file can contain a list of torrents in your torrent client and also your external IP
External IP line example (so you can use CTRL+F; Detected external IP: 123.123.123.123.

Example of torrent list in .log:
(N) 2021-08-03T14:10:12 - '64a980abe6e448226bb930ba061592e44c3781a1' restored.

[Rufus13apostol]

The only error I can see is this one: "Couldn't load Web UI translation for selected locale (en)", quick search takes me to this : https://github.com/qbittorrent/qBittorrent/issues/9978

Pretty much everything is like this:

(I) 2021-07-22T21:03:14 - Detected external IP: **+ (N) 2021-07-22T21:03:30 - qBittorrent v4.3.5 started (N) 2021-07-22T21:03:30 - Using config directory: /config/qBittorrent/config/ (I) 2021-07-22T21:03:30 - Trying to listen on: 0.0.0.0:32898,[::]:32898 (N) 2021-07-22T21:03:30 - Peer ID: -qB4350- (N) 2021-07-22T21:03:30 - HTTP User-Agent is 'qBittorrent/4.3.5' (I) 2021-07-22T21:03:30 - DHT support [ON] (I) 2021-07-22T21:03:30 - Local Peer Discovery support [ON] (I) 2021-07-22T21:03:30 - PeX support [ON] (I) 2021-07-22T21:03:30 - Anonymous mode [OFF] (I) 2021-07-22T21:03:30 - Encryption support [ON] (I) 2021-07-22T21:03:31 - IP geolocation database loaded. Type: DBIP-Country-Lite. Build time: Thu Jul 1 00:05:12 2021. (N) 2021-07-22T21:03:31 - Using built-in Web UI. (W) 2021-07-22T21:03:31 - Couldn't load Web UI translation for selected locale (en). (N) 2021-07-22T21:03:31 - Web UI: Now listening on IP: *, port: 8080 (I) 2021-07-22T21:03:31 - Successfully listening on IP: 127.0.0.1, port: TCP/32898 (I) 2021-07-22T21:03:31 - Successfully listening on IP: 127.0.0.1, port: UDP/32898 (I) 2021-07-22T21:03:31 - Successfully listening on IP: 10.8.8.6, port: TCP/32898 (I) 2021-07-22T21:03:31 - Successfully listening on IP: 10.8.8.6, port: UDP/32898 (I) 2021-07-22T21:03:31 - Successfully listening on IP: 172.18.0.8, port: TCP/32898 (I) 2021-07-22T21:03:31 - Successfully listening on IP: 172.18.0.8, port: UDP/32898

[Rufus13apostol]

Any ideas?

[samplethief]

Same problem here since you updated the image. Could you perhaps give us the old image?

[DyonR]

I have looked in to this but I couldn't figure out what is wrong. All the config and logs are fine.
The log of my qBittorrent is the same as yours, so the error you see isn't related to it:

(N) 2021-08-15T00:19:27 - qBittorrent v4.3.7 started
(N) 2021-08-15T00:19:27 - Using config directory: /config/qBittorrent/config/
(I) 2021-08-15T00:19:27 - Trying to listen on: 0.0.0.0:8999,[::]:8999
(N) 2021-08-15T00:19:27 - Peer ID: -qB4370-
(N) 2021-08-15T00:19:27 - HTTP User-Agent is 'qBittorrent/4.3.7'
(I) 2021-08-15T00:19:27 - DHT support [ON]
(I) 2021-08-15T00:19:27 - Local Peer Discovery support [ON]
(I) 2021-08-15T00:19:27 - PeX support [ON]
(I) 2021-08-15T00:19:27 - Anonymous mode [OFF]
(I) 2021-08-15T00:19:27 - Encryption support [ON]
(I) 2021-08-15T00:19:27 - UPnP / NAT-PMP support [ON]
(I) 2021-08-15T00:19:27 - IP geolocation database loaded. Type: DBIP-Country-Lite. Build time: Sun Aug 1 02:15:10 2021.
(N) 2021-08-15T00:19:27 - Using built-in Web UI.
(W) 2021-08-15T00:19:27 - Couldn't load Web UI translation for selected locale (C).
(N) 2021-08-15T00:19:27 - Web UI: HTTPS setup successful
(N) 2021-08-15T00:19:27 - Web UI: Now listening on IP: *, port: 8080
(I) 2021-08-15T00:19:27 - Successfully listening on IP: 127.0.0.1, port: TCP/8999
(I) 2021-08-15T00:19:27 - Successfully listening on IP: 127.0.0.1, port: UDP/8999
(I) 2021-08-15T00:19:27 - Successfully listening on IP: 100.64.64.32, port: TCP/8999
(I) 2021-08-15T00:19:27 - Successfully listening on IP: 100.64.64.32, port: UDP/8999
(I) 2021-08-15T00:19:27 - Successfully listening on IP: 172.17.0.5, port: TCP/8999
(I) 2021-08-15T00:19:27 - Successfully listening on IP: 172.17.0.5, port: UDP/8999
(I) 2021-08-15T00:19:27 - Detected external IP: 84.17.46.3

I've updated the container to qBittorrent 4.3.7. Does the issue still persist?

[cpq-sd]

Hallo, i have same problem - can't access WEB UI when connected to VPN (NORD VPN) by openvpn. When i set - VPN_ENABLED=no i can access UI normaly. I checked VPN connection by changing password for VPN and then i get info that it could not connect to VPN, so i think connection to VPN is ok and ovpn file is ok also. I also have the same issue using markusmcnugen/qbittorrentvpn since NORDVPN does not provide config file for WireGuard directly I did not tested yet. When trying to open WebUI I get timout error - looks like some firewall blocking ? some error with iptables ? When trying to telnet 192.168.7.0:8080 - I get error like port is not open, when VPN is "no" i can easily connect with telnet.

I get this using stack on OMV with docker/portainer, pasted below, i also paste my log and qbittorrent log file:

---

version: "2" services: qbittorrentvpn: image: dyonr/qbittorrentvpn container_name: qbittorrentvpn_dyonr privileged: true
environment:

• VPN_ENABLED=yes
• VPN_USERNAME=edited
• VPN_PASSWORD=edited
• VPN_TYPE=OpenVPN
• LAN_NETWORK=192.168.7.0/24 ports:
• 8080:8080
• 8999:8999
• 8999:8999/udp volumes:
• /srv/dev-disk-by-uuid-DAAA3E92AA3E6AE1/config/QBittorrentVPN_dyonr:/config
• /srv/dev-disk-by-uuid-DAAA3E92AA3E6AE1/torrent_download:/downloads restart: unless-stopped

2021-11-12 17:46:46.507895 [INFO] PGID not defined. Defaulting to root group 2021-11-12 17:46:46.613439 [INFO] Starting OpenVPN... 2021-11-12 17:46:46 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning. 2021-11-12 17:46:46 WARNING: file 'credentials.conf' is group or others accessible 2021-11-12 17:46:46 OpenVPN 2.5.1 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2021 2021-11-12 17:46:46 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10 2021-11-12 17:46:46 WARNING: --ping should normally be used with --ping-restart or --ping-exit 2021-11-12 17:46:46 NOTE: --fast-io is disabled since we are not using UDP 2021-11-12 17:46:46 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication 2021-11-12 17:46:46 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication 2021-11-12 17:46:46 TCP/UDP: Preserving recently used remote address: [AF_INET]194.110.114.147:443 2021-11-12 17:46:46 Socket Buffers: R=[131072->131072] S=[16384->16384] 2021-11-12 17:46:46 Attempting to establish TCP connection with [AF_INET]194.110.114.147:443 [nonblock] 2021-11-12 17:46:46 TCP connection established with [AF_INET]194.110.114.147:443 2021-11-12 17:46:46 TCP_CLIENT link local: (not bound) 2021-11-12 17:46:46 TCP_CLIENT link remote: [AF_INET]194.110.114.147:443 2021-11-12 17:46:46 TLS: Initial packet from [AF_INET]194.110.114.147:443, sid=e8b0aac8 3e74eece 2021-11-12 17:46:46 VERIFY OK: depth=2, C=PA, O=NordVPN, CN=NordVPN Root CA 2021-11-12 17:46:46 VERIFY OK: depth=1, C=PA, O=NordVPN, CN=NordVPN CA6 2021-11-12 17:46:46 VERIFY KU OK 2021-11-12 17:46:46 Validating certificate extended key usage 2021-11-12 17:46:46 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication 2021-11-12 17:46:46 VERIFY EKU OK 2021-11-12 17:46:46 VERIFY OK: depth=0, CN=pl182.nordvpn.com 2021-11-12 17:46:46 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, 4096 bit RSA 2021-11-12 17:46:46 [pl182.nordvpn.com] Peer Connection Initiated with [AF_INET]194.110.114.147:443 2021-11-12 17:46:47 SENT CONTROL [pl182.nordvpn.com]: 'PUSH_REQUEST' (status=1) 2021-11-12 17:46:47 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 103.86.96.100,dhcp-option DNS 103.86.99.100,sndbuf 524288,rcvbuf 524288,explicit-exit-notify,comp-lzo no,route-gateway 10.7.2.1,topology subnet,ping 60,ping-restart 180,ifconfig 10.7.2.3 255.255.255.0,peer-id 0,cipher AES-256-GCM' 2021-11-12 17:46:47 OPTIONS IMPORT: timers and/or timeouts modified 2021-11-12 17:46:47 OPTIONS IMPORT: --explicit-exit-notify can only be used with --proto udp 2021-11-12 17:46:47 OPTIONS IMPORT: compression parms modified 2021-11-12 17:46:47 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified 2021-11-12 17:46:47 Socket Buffers: R=[131072->425984] S=[87040->425984] 2021-11-12 17:46:47 OPTIONS IMPORT: --ifconfig/up options modified 2021-11-12 17:46:47 OPTIONS IMPORT: route options modified 2021-11-12 17:46:47 OPTIONS IMPORT: route-related options modified 2021-11-12 17:46:47 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified 2021-11-12 17:46:47 OPTIONS IMPORT: peer-id set 2021-11-12 17:46:47 OPTIONS IMPORT: adjusting link_mtu to 1659 2021-11-12 17:46:47 OPTIONS IMPORT: data channel crypto options modified 2021-11-12 17:46:47 Data Channel: using negotiated cipher 'AES-256-GCM' 2021-11-12 17:46:47 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key 2021-11-12 17:46:47 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key 2021-11-12 17:46:47 net_route_v4_best_gw query: dst 0.0.0.0 2021-11-12 17:46:47 net_route_v4_best_gw result: via 172.22.0.1 dev eth0 2021-11-12 17:46:47 ROUTE_GATEWAY 172.22.0.1/255.255.0.0 IFACE=eth0 HWADDR=02:42:ac:16:00:02 2021-11-12 17:46:47 TUN/TAP device tun0 opened 2021-11-12 17:46:47 net_iface_mtu_set: mtu 1500 for tun0 2021-11-12 17:46:47 net_iface_up: set tun0 up 2021-11-12 17:46:47 net_addr_v4_add: 10.7.2.3/24 dev tun0 2021-11-12 17:46:47 net_route_v4_add: 194.110.114.147/32 via 172.22.0.1 dev [NULL] table 0 metric -1 2021-11-12 17:46:47 net_route_v4_add: 0.0.0.0/1 via 10.7.2.1 dev [NULL] table 0 metric -1 2021-11-12 17:46:47 net_route_v4_add: 128.0.0.0/1 via 10.7.2.1 dev [NULL] table 0 metric -1 2021-11-12 17:46:47 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this 2021-11-12 17:46:47 Initialization Sequence Completed 2021-11-12 17:46:49.460191 [INFO] Docker network defined as 172.22.0.0/16 2021-11-12 17:46:49.590333 [INFO] Adding 192.168.7.0/24 as route via docker eth0 2021-11-12 17:46:49.720665 [INFO] ip route defined as follows...

0.0.0.0/1 via 10.7.2.1 dev tun0 default via 172.22.0.1 dev eth0 10.7.2.0/24 dev tun0 proto kernel scope link src 10.7.2.3 128.0.0.0/1 via 10.7.2.1 dev tun0 172.22.0.0/16 dev eth0 proto kernel scope link src 172.22.0.2 192.168.7.0/24 via 172.22.0.1 dev eth0 194.110.114.147 via 172.22.0.1 dev eth0

2021-11-12 17:46:50.034359 [INFO] iptables defined as follows...

-P INPUT DROP -P FORWARD ACCEPT -P OUTPUT DROP -A INPUT -i tun0 -j ACCEPT -A INPUT -s 172.22.0.0/16 -d 172.22.0.0/16 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --sport 443 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --dport 8080 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --sport 8080 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT -A INPUT -i lo -j ACCEPT -A OUTPUT -o tun0 -j ACCEPT -A OUTPUT -s 172.22.0.0/16 -d 172.22.0.0/16 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --dport 443 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --dport 8080 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --sport 8080 -j ACCEPT -A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT -A OUTPUT -o lo -j ACCEPT

2021-11-12 17:46:50.193699 [WARNING] ENABLE_SSL is set to , SSL is not enabled. This could cause issues with logging if other apps use the same Cookie name (SID). 2021-11-12 17:46:50.318318 [WARNING] If you manage the SSL config yourself, you can ignore this. 2021-11-12 17:46:50.427970 [INFO] A group with PGID root already exists in /etc/group, nothing to do. 2021-11-12 17:46:50.553191 [INFO] An user with PUID root already exists in /etc/passwd, nothing to do. 2021-11-12 17:46:50.674230 [WARNING] UMASK not defined (via -e UMASK), defaulting to '002' 2021-11-12 17:46:50.799708 [INFO] Starting qBittorrent daemon... Logging to /config/qBittorrent/data/logs/qbittorrent.log. 2021-11-12 17:46:51.945333 [INFO] qBittorrent PID: 208 2021-11-12 17:46:51.950110 [INFO] Started qBittorrent daemon successfully... 2021-11-12 17:46:52.045657 [INFO] HEALTH_CHECK_HOST is not set. For now using default host one.one.one.one 2021-11-12 17:46:52.173704 [INFO] HEALTH_CHECK_INTERVAL is not set. For now using default interval of 300 2021-11-12 17:46:52.298262 [INFO] HEALTH_CHECK_SILENT is not set. Because this variable is not set, it will be supressed by default 2021-11-12 17:46:57.512243 [INFO] Network is up

(N) 2021-11-12T17:46:51 - qBittorrent v4.3.9 started (N) 2021-11-12T17:46:51 - Using config directory: /config/qBittorrent/config/ (I) 2021-11-12T17:46:51 - Trying to listen on: 0.0.0.0:8999,[::]:8999 (N) 2021-11-12T17:46:51 - Peer ID: -qB4390- (N) 2021-11-12T17:46:51 - HTTP User-Agent is 'qBittorrent/4.3.9' (I) 2021-11-12T17:46:51 - DHT support [ON] (I) 2021-11-12T17:46:51 - Local Peer Discovery support [ON] (I) 2021-11-12T17:46:51 - PeX support [ON] (I) 2021-11-12T17:46:51 - Anonymous mode [OFF] (I) 2021-11-12T17:46:51 - Encryption support [ON] (I) 2021-11-12T17:46:51 - UPnP / NAT-PMP support [ON] (I) 2021-11-12T17:46:51 - IP geolocation database loaded. Type: DBIP-Country-Lite. Build time: Mon Nov 1 01:07:55 2021. (N) 2021-11-12T17:46:51 - Using built-in Web UI. (W) 2021-11-12T17:46:51 - Couldn't load Web UI translation for selected locale (C). (N) 2021-11-12T17:46:51 - Web UI: Now listening on IP: *, port: 8080 (I) 2021-11-12T17:46:51 - Successfully listening on IP: 127.0.0.1, port: TCP/8999 (I) 2021-11-12T17:46:51 - Successfully listening on IP: 127.0.0.1, port: UDP/8999 (I) 2021-11-12T17:46:51 - Successfully listening on IP: 10.7.2.3, port: TCP/8999 (I) 2021-11-12T17:46:51 - Successfully listening on IP: 10.7.2.3, port: UDP/8999 (I) 2021-11-12T17:46:51 - Successfully listening on IP: 172.22.0.2, port: TCP/8999 (I) 2021-11-12T17:46:51 - Successfully listening on IP: 172.22.0.2, port: UDP/8999 (I) 2021-11-12T17:47:16 - Detected external IP: edited (C) 2021-11-12T17:49:27 - UPnP/NAT-PMP: Port mapping failure, message: could not map port using UPnP: no router found (C) 2021-11-12T17:49:27 - UPnP/NAT-PMP: Port mapping failure, message: could not map port using UPnP: no router found (C) 2021-11-12T17:49:27 - UPnP/NAT-PMP: Port mapping failure, message: could not map port using UPnP: no router found

[Rufus13apostol]

Hi,

I change to transmission and it work flawlessly. Use this yml:

transmission-openvpn: image: haugene/transmission-openvpn:latest container_name: transmission-openvpn-syno restart: always cap_add:

• NET_ADMIN # This runs the container with raised privileges devices:
• /dev/net/tun # This creates a tunnel for Transmission volumes:
• /local-path/Torrents:/data
• /local-path/Configs/Transmission/openvpn:/config environment:
• OPENVPN_PROVIDER=*** # Or other compatible OpenVPN provider
• OPENVPN_CONFIG=*** # Or other region that supports port forwarding. Check with your VPN provider
• OPENVPN_USERNAME=*** # VPN provider username
• OPENVPN_PASSWORD=*** # VPN provider password
• LOCAL_NETWORK=192.168.50.0/24 # If your server's IP address is 192.168.1.x, then use this. If your server's IP address is 192.168.0.x, then change to 192.168.0.0/24
• OPENVPN_OPTS=--inactive 3600 --ping 10 --ping-exit 60 # Leave this as is
• PUID=998 #Change to your PUID
• PGID=100 #Change to your PGID ports:
• 9091:9091 #GUI Port
• 8888:8888 #Transmission Port dns:
• 8.8.8.8 #Use whatever DNS provider you want. This is Google.
• 8.8.4.4 #Use whatever DNS provider you want. This is Google.

[yacob841]

Same issue using wireguard, it was working about a week ago, then tried to access today and could not. Finally tried disabling VPN and I can access it fine now. Enabled, and it fails again. And again, the same settings were working 1-2 weeks ago, so not sure what happened....