Open fireinice opened 4 days ago
cmj2002
commented
3 days ago You must have made a mistake. 172.35.0.37 does not belong to 172.16.0.0/12 (the subnet ends at 172.31.255.255). 172.35.0.37 is a public IP address, which appears to be a home user IP belonging to T-Mobile.
fireinice
commented
3 days ago You must have made a mistake.
172.35.0.37does not belong to172.16.0.0/12(the subnet ends at172.31.255.255).172.35.0.37is a public IP address, which appears to be a home user IP belonging to T-Mobile.
Thanks for the reply
Yes, It's my mistake, And now I change the ip to 172.28.0.37, still could not connect from host..
Any seconds?
cmj2002
commented
3 days ago Can you run docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' container_name to get the correct IP of container and retry?
I recommend setting 0.0.0.0 as gost listening IP and use docker's port forward. IP of container can change when you recreate them. Remember to change the forwarded port if you change the server_port.
Also, it seems that you commented with some additional information (I can see it in my email) but somehow it disappear on GitHub.
fireinice
commented
3 days ago Can you run
docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' container_nameto get the correct IP of container and retry?I recommend setting
0.0.0.0as gost listening IP and use docker's port forward. IP of container can change when you recreate them. Remember to change the forwarded port if you change theserver_port.Also, it seems that you commented with some additional information (I can see it in my email) but somehow it disappear on GitHub.
sudo docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' warp
172.26.0.37It seems the ip is got the correct ip addr.
and now the docker-compose is as below:
warp:
image: caomingjun/warp:latest
container_name: warp
# restart: always
ports:
- "8338:8338"
environment:
- WARP_SLEEP=2
- GOST_ARGS=-L=ss+ohttp://aes-256-gcm:passwd@:8338
- BETA_FIX_HOST_CONNECTIVITY=1
cap_add:
- NET_ADMIN
sysctls:
- net.ipv6.conf.all.disable_ipv6=0
- net.ipv4.conf.all.src_valid_mark=1
- net.ipv4.ip_forward=1
volumes:
- /srv/docker/data/warp/:/var/lib/cloudflare-warp
networks:
ss-backend:
ipv4_address: 172.26.0.37 not got lucy,
fireinice
commented
3 days ago Can you run
docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' container_nameto get the correct IP of container and retry?I recommend setting
0.0.0.0as gost listening IP and use docker's port forward. IP of container can change when you recreate them. Remember to change the forwarded port if you change theserver_port.Also, it seems that you commented with some additional information (I can see it in my email) but somehow it disappear on GitHub.
For the other gone replies. I've got connection once and I close the issue. and then I also tried to build a shadowsocks-libev service, which could not be connected outside.
after that I drawback to the original gost service, and cannot connect again.
I thought the only once 'successful connection' is caused the warp service not established on the time. if the warp not connected from time to time, the shadowsocks protocol could connect right.
cmj2002
commented
3 days ago Can you try to see if the default SOCKS5 proxy also has this issue? It’s best to run curl --socks5-hostname 127.0.0.1:1080 https://cloudflare.com/cdn-cgi/trace from the host machine for testing, as there may also be a firewall between you and the host machine (regardless of whether it is something you can control).
fireinice
commented
3 days ago Yes, the socks5 works fine. with GOST_ARGS=-L=ss+ohttp://aes-256-gcm:password@:8338 -L=socks5://:1080 and expose both 1080 and 8338
the socks service works fine on host:
fii@tc:~$ curl --socks5-hostname 127.0.0.1:1080 https://cloudflare.com/cdn-cgi/trace
fl=466f140
h=cloudflare.com
ip=104.28.217.42
ts=1727782106.888
visit_scheme=https
uag=curl/7.88.1
colo=SJC
sliver=none
http=http/2
loc=US
tls=TLSv1.3
sni=plaintext
warp=on
gateway=off
rbi=off
kex=X25519while the shadowsocks not work
fireinice
commented
3 days ago I also tried proxy mode before with run the commands below in the container
warp-cli set-proxy-port 40000
# Set the mode to proxy
warp-cli --accept-tos mode proxyand GOST_ARGS=-L=ss+ohttp://aes-256-gcm:password@:8338 -F socks://:40000
the shadowsocks services works.
cmj2002
commented
3 days ago This is very strange, I cannot understand. The SOCKS5 works indicates that the container can be accessed from the host machine, and the forwarding of SOCKS5 through shadowsocks suggests that there is no issue with GOST's shadowsocks functionality or your configuration. I can't think of what the problem could be.
fireinice
commented
3 days ago yes, that's very strange, I tried two days and try to get help here. any ideas appreciate.
I've notice the issue #23 is closed. However I still could not connect the gost exposed service from the host even with
BETA_FIX_HOST_CONNECTIVITY=1the container ip is 172.35.0.37 and the output of the dump isI think
172.35.0.37is in the range of172.16.0.0/12.and I try to expose a shadowsocks service by gost:
ss+ohttp://aes-256-gcm:password@172.35.0.37:9876any idea? thanks