Open ko6en opened 2 years ago
What is in your ovpn config file?
this
client ;explicit-exit-notify proto tcp remote de2-ovpn-tcp.pointtoserver.com 80 dev tun auth-user-pass credentials.conf
persist-key persist-tun nobind ;block-outside-dns
key-direction 1 remote-cert-tls server cipher AES-256-CBC route-nopull script-security 2
Sent with ProtonMail Secure Email.
------- Original Message ------- D. torsdag den 6. januar 2022 kl. 22:06, MurderHobo-svg skrev @.***>:
What is in your ovpn config file?
— Reply to this email directly, view it on GitHub, or unsubscribe. Triage notifications on the go with GitHub Mobile for iOS or Android. You are receiving this because you authored the thread.Message ID: @.***>
I can see the warnings, i tried google im but dosent make senses running win10 host with docker.
log- 2021-09-30 08:39:02.193312 [info] VPN_ENABLED defined as 'yes', 2021-09-30 08:39:02.251925 [info] OpenVPN config file (ovpn extension) is located at /config/openvpn/de2-ovpn-tcp.ovpn, dos2unix: converting file /config/openvpn/de2-ovpn-tcp.ovpn to Unix format..., 2021-09-30 08:39:02.348057 [info] VPN remote line defined as 'de2-ovpn-tcp.pointtoserver.com 80', 2021-09-30 08:39:02.372322 [info] VPN_REMOTE defined as 'de2-ovpn-tcp.pointtoserver.com', 2021-09-30 08:39:02.395714 [info] VPN_PORT defined as '80', 2021-09-30 08:39:02.426680 [info] VPN_PROTOCOL defined as 'tcp', 2021-09-30 08:39:02.453116 [info] VPN_DEVICE_TYPE defined as 'tun0', 2021-09-30 08:39:02.476668 [info] LAN_NETWORK defined as '192.168.1.0/24', 2021-09-30 08:39:02.501830 [info] NAME_SERVERS defined as '8.8.8.8,8.8.4.4', 2021-09-30 08:39:02.525285 [info] VPN_OPTIONS not defined (via -e VPN_OPTIONS), 2021-09-30 08:39:02.550535 [info] Adding 8.8.8.8 to resolv.conf, 2021-09-30 08:39:02.574715 [info] Adding 8.8.4.4 to resolv.conf, 2021-09-30 08:39:02.597024 [info] PUID not defined. Defaulting to root user, 2021-09-30 08:39:02.618689 [info] PGID not defined. Defaulting to root group, 2021-09-30 08:39:02.640847 [info] Starting OpenVPN..., Thu Sep 30 08:39:02 2021 WARNING: file 'credentials.conf' is group or others accessible, Thu Sep 30 08:39:02 2021 OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 19 2021, Thu Sep 30 08:39:02 2021 library versions: OpenSSL 1.1.1f 31 Mar 2020, LZO 2.10, Thu Sep 30 08:39:02 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]37.120.223.58:80, Thu Sep 30 08:39:02 2021 Attempting to establish TCP connection with [AF_INET]37.120.223.58:80 [nonblock], Thu Sep 30 08:39:03 2021 TCP connection established with [AF_INET]37.120.223.58:80, Thu Sep 30 08:39:03 2021 TCP_CLIENT link local: (not bound), Thu Sep 30 08:39:03 2021 TCP_CLIENT link remote: [AF_INET]37.120.223.58:80, Thu Sep 30 08:39:03 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this, Thu Sep 30 08:39:03 2021 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1559', remote='link-mtu 1552', Thu Sep 30 08:39:03 2021 WARNING: 'cipher' is used inconsistently, local='cipher AES-256-CBC', remote='cipher AES-256-GCM', Thu Sep 30 08:39:03 2021 WARNING: 'auth' is used inconsistently, local='auth SHA1', remote='auth [null-digest]', Thu Sep 30 08:39:03 2021 WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo', Thu Sep 30 08:39:03 2021 [Secure-Server] Peer Connection Initiated with [AF_INET]37.120.223.58:80, Thu Sep 30 08:39:05 2021 Options error: option 'redirect-gateway' cannot be used in this context ([PUSH-OPTIONS]), Thu Sep 30 08:39:05 2021 Options error: option 'dhcp-option' cannot be used in this context ([PUSH-OPTIONS]), Thu Sep 30 08:39:05 2021 Options error: option 'dhcp-option' cannot be used in this context ([PUSH-OPTIONS]), Thu Sep 30 08:39:05 2021 TUN/TAP device tun0 opened, Thu Sep 30 08:39:05 2021 /sbin/ip link set dev tun0 up mtu 1500, Thu Sep 30 08:39:05 2021 /sbin/ip addr add dev tun0 172.94.125.230/28 broadcast 172.94.125.239, Thu Sep 30 08:39:05 2021 Initialization Sequence Completed, 2021-09-30 08:39:07.723864 [info] WebUI port defined as , 2021-09-30 08:39:07.748506 [info] LAN Network defined as 192.168.1.0/24, 2021-09-30 08:39:07.773084 [info] Default gateway defined as 172.17.0.1, 2021-09-30 08:39:07.796979 [info] ip route defined as follows..., --------------------, default via 172.17.0.1 dev eth0 , 172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.3 , 172.94.125.224/28 dev tun0 proto kernel scope link src 172.94.125.230 , 192.168.1.0/24 via 172.17.0.1 dev eth0 , --------------------, 2021-09-30 08:39:07.844600 [info] Docker network defined as 172.17.0.0/16, 2021-09-30 08:39:09.100045 [info] iptables defined as follows..., --------------------, -P INPUT DROP, -P FORWARD ACCEPT, -P OUTPUT DROP, -A INPUT -i tun0 -j ACCEPT, -A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT, -A INPUT -i eth0 -p tcp -m tcp --sport 80 -j ACCEPT, -A INPUT -i eth0 -p tcp -m tcp --dport 8080 -j ACCEPT, -A INPUT -i eth0 -p tcp -m tcp --sport 8080 -j ACCEPT, -A INPUT -s 192.168.1.0/24 -i eth0 -p tcp -m tcp --dport 8999 -j ACCEPT, -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT, -A INPUT -i lo -j ACCEPT, -A OUTPUT -o tun0 -j ACCEPT, -A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT, -A OUTPUT -o eth0 -p tcp -m tcp --dport 80 -j ACCEPT, -A OUTPUT -o eth0 -p tcp -m tcp --dport 8080 -j ACCEPT, -A OUTPUT -o eth0 -p tcp -m tcp --sport 8080 -j ACCEPT, -A OUTPUT -d 192.168.1.0/24 -o eth0 -p tcp -m tcp --sport 8999 -j ACCEPT, -A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT, -A OUTPUT -o lo -j ACCEPT, --------------------, root:x:0:0:root:/root:/bin/bash, Group root exists, root:x:0:0:root:/root:/bin/bash, User root exists in /etc/passwd, 2021-09-30 08:39:09.188385 [warn] UMASK not defined (via -e UMASK), defaulting to '002', 2021-09-30 08:39:09.214535 [info] Starting qBittorrent daemon..., Logging to /config/qBittorrent/data/logs/qbittorrent-daemon.log., 2021-09-30 08:39:10.276001 [info] Started qBittorrent daemon successfully..., 2021-09-30 08:39:10.317225 [info] qBittorrent PID: 178 (18516), which must be > 0 and <= 1626 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link -- [Attempting restart...]