search

haugene / docker-transmission-openvpn

Docker container running Transmission torrent client with WebUI over an OpenVPN tunnel
GNU General Public License v3.0
4.12k stars 1.21k forks source link

Fastestvpn failing with TLS Error: TLS handshake failed #1830

Closed sglewis100 closed 3 years ago

sglewis100 commented 3 years ago

This was working for over a year, and recently stopped working - only thing I can think of that changed on my end is I regularly update my Ubuntu OS, plus keep the docker container up to date. I know my credentials are okay, I can connect manually with an OpenVPN client on my desktop to the same provider.

Starting container with revision: 32bcf7522d1ecf9428cefe9044e12f9af5e30476 Creating TUN device /dev/net/tun Using OpenVPN provider: FASTESTVPN Starting OpenVPN using config US-Miami-UDP.ovpn Found existing OPENVPN credentials at /config/openvpn-credentials.txt adding route to local network 10.0.0.0/24 via 172.17.0.1 dev eth0 2021-05-18 09:56:55 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set. 2021-05-18 09:56:55 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning. 2021-05-18 09:56:55 OpenVPN 2.5.1 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Apr 16 2021 2021-05-18 09:56:55 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10 2021-05-18 09:56:55 WARNING: --ping should normally be used with --ping-restart or --ping-exit 2021-05-18 09:56:55 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. 2021-05-18 09:56:55 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts 2021-05-18 09:56:55 TCP/UDP: Preserving recently used remote address: [AF_INET]162.255.138.232:4443 2021-05-18 09:56:55 UDP link local: (not bound) 2021-05-18 09:56:55 UDP link remote: [AF_INET]162.255.138.232:4443 2021-05-18 09:57:56 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) 2021-05-18 09:57:56 TLS Error: TLS handshake failed 2021-05-18 09:57:56 SIGUSR1[soft,tls-error] received, process restarting

Here's how I create the container (passwords / usernames removed):

docker run -d --name=fastestvpn --restart unless-stopped -e PUID=1000 -e PGID=1000 -e TZ=America/New_York -v /mnt/download/scratch/fastestvpn:/data -v /mnt/download/scratch/fastestvpn:/downloadmount -v /mnt/config/fastestvpn:/config -v /etc/localtime:/etc/localtime:ro -p 9091:9091 --cap-add=NET_ADMIN -e OPENVPN_PROVIDER=fastestvpn -e OPENVPN_PROVIDER=fastestvpn -e TRANSMISSION_RPC_PASSWORD=**** -e TRANSMISSION_RPC_USERNAME=**** -e TRANSMISSION_RATIO_LIMIT=0 -e TRANSMISSION_IDLE_SEEDING_LIMIT=0 -e OPENVPN_CONFIG=US-Miami-UDP -e TRANSMISSION_RPC_AUTHENTICATION_REQUIRED=true -e TRANSMISSION_RATIO_LIMIT_ENABLED=true -e TRANSMISSION_IDLE_SEEDING_LIMIT_ENABLED=true -e LOCAL_NETWORK=10.0.0.0/24 haugene/transmission-openvpn

github-actions[bot] commented 3 years ago

@sglewis100: hello! :wave:

This issue is being automatically closed because it does not follow the issue template. If you edit and follow the template properly by filling it in completely the issue will be re-opened