search

jlesage / docker-crashplan-pro

Docker container for CrashPlan PRO (aka CrashPlan for Small Business)
290 stars 39 forks source link

Crashplan Docker container can't connect to server (Synology Firewall issue) #430

Closed faip closed 1 year ago

faip commented 1 year ago

Current Behavior

I've set up the docker container with the image from the registry. When I go to the correct url and port, I'm asked for my email (no where to enter a password). I enter my email and click Continue. Nothing happens. Then after awhile, I get an error:

Unable to sign in. Can't connect to server.

I have my Synology firewall enabled and rules set up for ports 5800, 5900 as well as the associated local ports.

I turned off the firewall and everything works as advertised. So there is something in the container or the firewall rules that is preventing the container from being able to connect with the Crashplan servers.

Does anyone have any ideas about what I may be missing?

Expected Behavior

No response

Steps To Reproduce

No response

Environment

Synology NAS DS918+ DSM7.1.1 Tried multiple browsers No reverse proxy

Container creation

Installed via image from registry.

Container log

╭――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――╮
    │                                                                      │
    │ Application:           CrashPlan for Small Business                  │
    │ Application Version:   11.0.1                                        │
    │ Docker Image Version:  23.04.2                                       │
    │ Docker Image Platform: linux/amd64                                   │
    │                                                                      │
    ╰――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――╯
[cont-init   ] 89-info.sh: terminated successfully.
[cont-init   ] all container initialization scripts executed.
[init        ] giving control to process supervisor.
[supervisor  ] loading services...
[supervisor  ] loading service 'default'...
[supervisor  ] loading service 'app'...
[supervisor  ] loading service 'gui'...
[supervisor  ] loading service 'certsmonitor'...
[supervisor  ] service 'certsmonitor' is disabled.
[supervisor  ] loading service 'nginx'...
[supervisor  ] loading service 'xvnc'...
[supervisor  ] loading service 'openbox'...
[supervisor  ] loading service 'CrashPlanEngine'...
[supervisor  ] loading service 'logmonitor'...
[supervisor  ] loading service 'logrotate'...
[supervisor  ] all services loaded.
[supervisor     ] starting services...
[supervisor     ] starting service 'xvnc'...
[xvnc           ] Xvnc TigerVNC 1.13.1 - built Apr 16 2023 17:12:53
[xvnc           ] Copyright (C) 1999-2022 TigerVNC Team and many others (see README.rst)
[xvnc           ] See https://www.tigervnc.org for information on TigerVNC.
[xvnc           ] Underlying X server release 12013000
[xvnc           ] Mon May 29 00:51:08 2023
[xvnc           ]  vncext:      VNC extension running!
[xvnc           ]  vncext:      Listening for VNC connections on /tmp/vnc.sock (mode 0660)
[xvnc           ]  vncext:      Listening for VNC connections on all interface(s), port 5900
[xvnc           ]  vncext:      created VNC server for screen 0
[supervisor     ] starting service 'nginx'...
[nginx          ] Listening for HTTP connections on port 5800.
[supervisor     ] starting service 'openbox'...
[supervisor     ] starting service 'CrashPlanEngine'...
[xvnc           ] Mon May 29 00:51:18 2023
[xvnc           ]  Connections: accepted: /tmp/vnc.sock
[xvnc           ]  SConnection: Client needs protocol version 3.8
[xvnc           ]  SConnection: Client requests security type None(1)
[xvnc           ]  VNCSConnST:  Server default pixel format depth 24 (32bpp) little-endian rgb888
[xvnc           ]  VNCSConnST:  Client pixel format depth 24 (32bpp) little-endian bgr888
[supervisor     ] ERROR: service 'CrashPlanEngine' failed to be started: not ready after 30000 msec, giving up.
[supervisor     ] starting service 'app'...
[supervisor     ] starting service 'logmonitor'...
[logmonitor     ] Monitoring log file: /config/log/service.log.0
[logmonitor     ] Monitoring status file: /config/log/app.log
[supervisor     ] all services started.
[xvnc           ] Mon May 29 16:30:31 2023
[xvnc           ]  VNCSConnST:  closing /tmp/vnc.sock: Clean disconnection
[xvnc           ]  EncodeManager: Framebuffer updates: 527
[xvnc           ]  EncodeManager:   Tight:
[xvnc           ]  EncodeManager:     Solid: 110 rects, 6.91665 Mpixels
[xvnc           ]  EncodeManager:            1.71875 KiB (1:15720.4 ratio)
[xvnc           ]  EncodeManager:     Bitmap RLE: 36 rects, 13.423 kpixels
[xvnc           ]  EncodeManager:                 1.12793 KiB (1:46.8606 ratio)
[xvnc           ]  EncodeManager:     Indexed RLE: 538 rects, 472.31 kpixels
[xvnc           ]  EncodeManager:                  100.129 KiB (1:18.4888 ratio)
[xvnc           ]  EncodeManager:   Tight (JPEG):
[xvnc           ]  EncodeManager:     Full Colour: 250 rects, 741.132 kpixels
[xvnc           ]  EncodeManager:                  382.221 KiB (1:7.58195 ratio)
[xvnc           ]  EncodeManager:   Total: 934 rects, 8.14351 Mpixels
[xvnc           ]  EncodeManager:          485.196 KiB (1:65.5849 ratio)
[xvnc           ]  Connections: closed: /tmp/vnc.sock
[xvnc           ]  ComparingUpdateTracker: 42.0744 Mpixels in / 5.95396 Mpixels out
[xvnc           ]  ComparingUpdateTracker: (1:7.06662 ratio)
[supervisor     ] SIGTERM received, shutting down...
[supervisor     ] stopping service 'logmonitor'...
[supervisor     ] service 'logmonitor' exited (got signal SIGTERM).
[supervisor     ] stopping service 'app'...
[supervisor     ] stopping service 'CrashPlanEngine'...
[supervisor     ] stopping service 'openbox'...
[supervisor     ] service 'openbox' exited (with status 0).
[supervisor     ] stopping service 'nginx'...
[supervisor     ] service 'nginx' exited (with status 0).
[supervisor     ] stopping service 'xvnc'...
[xvnc           ] Sat Jun  3 16:49:16 2023
[xvnc           ]  ComparingUpdateTracker: 0 pixels in / 0 pixels out
[xvnc           ]  ComparingUpdateTracker: (1:-nan ratio)
[supervisor     ] service 'xvnc' exited (with status 0).
[supervisor     ] sending SIGTERM to all processes...
[supervisor     ] service 'app' exited (with status 143).
[supervisor     ] sending SIGKILL to all processes...
[supervisor     ] service 'CrashPlanEngine' exited (got signal SIGKILL).
[finish      ] executing container finish scripts...
[finish      ] all container finish scripts executed.
[init        ] container is starting...
[cont-env    ] loading container environment variables...
[cont-env    ] APP_NAME: loading...
[cont-env    ] APP_VERSION: loading...
[cont-env    ] DISPLAY: executing...
[cont-env    ] DISPLAY: terminated successfully.
[cont-env    ] DISPLAY: loading...
[cont-env    ] DOCKER_IMAGE_PLATFORM: loading...
[cont-env    ] DOCKER_IMAGE_VERSION: loading...
[cont-env    ] GTK2_RC_FILES: executing...
[cont-env    ] GTK2_RC_FILES: terminated successfully.
[cont-env    ] GTK2_RC_FILES: loading...
[cont-env    ] GTK_THEME: executing...
[cont-env    ] GTK_THEME: terminated successfully.
[cont-env    ] GTK_THEME: loading...
[cont-env    ] HOME: loading...
[cont-env    ] QT_STYLE_OVERRIDE: executing...
[cont-env    ] QT_STYLE_OVERRIDE: terminated successfully.
[cont-env    ] QT_STYLE_OVERRIDE: loading...
[cont-env    ] TAKE_CONFIG_OWNERSHIP: loading...
[cont-env    ] XDG_CACHE_HOME: loading...
[cont-env    ] XDG_CONFIG_HOME: loading...
[cont-env    ] XDG_DATA_HOME: loading...
[cont-env    ] XDG_RUNTIME_DIR: loading...
[cont-env    ] XDG_STATE_HOME: loading...
[cont-env    ] container environment variables initialized.
[cont-secrets] loading container secrets...
[cont-secrets] container secrets loaded.
[cont-init   ] executing container initialization scripts...
[cont-init   ] 10-certs.sh: executing...
[cont-init   ] 10-certs.sh: terminated successfully.
[cont-init   ] 10-check-app-niceness.sh: executing...
[cont-init   ] 10-check-app-niceness.sh: terminated successfully.
[cont-init   ] 10-cjk-font.sh: executing...
[cont-init   ] 10-cjk-font.sh: terminated successfully.
[cont-init   ] 10-clean-logmonitor-states.sh: executing...
[cont-init   ] 10-clean-logmonitor-states.sh: terminated successfully.
[cont-init   ] 10-clean-tmp-dir.sh: executing...
[cont-init   ] 10-clean-tmp-dir.sh: terminated successfully.
[cont-init   ] 10-fontconfig-cache-dir.sh: executing...
[cont-init   ] 10-fontconfig-cache-dir.sh: terminated successfully.
[cont-init   ] 10-init-users.sh: executing...
[cont-init   ] 10-init-users.sh: terminated successfully.
[cont-init   ] 10-nginx.sh: executing...
[cont-init   ] 10-nginx.sh: terminated successfully.
[cont-init   ] 10-openbox.sh: executing...
[cont-init   ] 10-openbox.sh: terminated successfully.
[cont-init   ] 10-set-tmp-dir-perms.sh: executing...
[cont-init   ] 10-set-tmp-dir-perms.sh: terminated successfully.
[cont-init   ] 10-vnc-password.sh: executing...
[cont-init   ] 10-vnc-password.sh: terminated successfully.
[cont-init   ] 10-web-data.sh: executing...
[cont-init   ] 10-web-data.sh: terminated successfully.
[cont-init   ] 10-x11-unix.sh: executing...
[cont-init   ] 10-x11-unix.sh: terminated successfully.
[cont-init   ] 10-xdg-runtime-dir.sh: executing...
[cont-init   ] 10-xdg-runtime-dir.sh: terminated successfully.
[cont-init   ] 15-install-pkgs.sh: executing...
[cont-init   ] 15-install-pkgs.sh: terminated successfully.
[cont-init   ] 55-crashplan-pro.sh: executing...
[cont-init   ] 55-crashplan-pro.sh: setting CrashPlan Engine maximum memory to 1024M
[cont-init   ] 55-crashplan-pro.sh: terminated successfully.
[cont-init   ] 55-validate_max_mem.sh: executing...
[cont-init   ] 55-validate_max_mem.sh: terminated successfully.
[cont-init   ] 85-take-config-ownership.sh: executing...
[cont-init   ] 85-take-config-ownership.sh: terminated successfully.
[cont-init   ] 89-info.sh: executing...
    ╭――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――╮
    │                                                                      │
    │ Application:           CrashPlan for Small Business                  │
    │ Application Version:   11.0.1                                        │
    │ Docker Image Version:  23.04.2                                       │
    │ Docker Image Platform: linux/amd64                                   │
    │                                                                      │
    ╰――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――――╯
[cont-init   ] 89-info.sh: terminated successfully.
[cont-init   ] all container initialization scripts executed.
[init        ] giving control to process supervisor.
[supervisor  ] loading services...
[supervisor  ] loading service 'default'...
[supervisor  ] loading service 'app'...
[supervisor  ] loading service 'gui'...
[supervisor  ] loading service 'certsmonitor'...
[supervisor  ] service 'certsmonitor' is disabled.
[supervisor  ] loading service 'nginx'...
[supervisor  ] loading service 'xvnc'...
[supervisor  ] loading service 'openbox'...
[supervisor  ] loading service 'CrashPlanEngine'...
[supervisor  ] loading service 'logmonitor'...
[supervisor  ] loading service 'logrotate'...
[supervisor  ] all services loaded.
[supervisor     ] starting services...
[supervisor     ] starting service 'xvnc'...
[xvnc           ] Xvnc TigerVNC 1.13.1 - built Apr 16 2023 17:12:53
[xvnc           ] Copyright (C) 1999-2022 TigerVNC Team and many others (see README.rst)
[xvnc           ] See https://www.tigervnc.org for information on TigerVNC.
[xvnc           ] Underlying X server release 12013000
[xvnc           ] Sat Jun  3 16:54:56 2023
[xvnc           ]  vncext:      VNC extension running!
[xvnc           ] Sat Jun  3 16:54:57 2023
[xvnc           ]  vncext:      Listening for VNC connections on /tmp/vnc.sock (mode 0660)
[xvnc           ]  vncext:      Listening for VNC connections on all interface(s), port 5900
[xvnc           ]  vncext:      created VNC server for screen 0
[supervisor     ] starting service 'nginx'...
[nginx          ] Listening for HTTP connections on port 5800.
[supervisor     ] starting service 'openbox'...
[supervisor     ] starting service 'CrashPlanEngine'...
[supervisor     ] ERROR: service 'CrashPlanEngine' failed to be started: not ready after 30000 msec, giving up.
[supervisor     ] starting service 'app'...
[supervisor     ] starting service 'logmonitor'...
[logmonitor     ] Monitoring log file: /config/log/service.log.0
[logmonitor     ] Monitoring status file: /config/log/app.log
[supervisor     ] all services started.
[xvnc           ] Sun Jun  4 14:43:57 2023
[xvnc           ]  Connections: accepted: /tmp/vnc.sock
[xvnc           ]  SConnection: Client needs protocol version 3.8
[xvnc           ]  SConnection: Client requests security type None(1)
[xvnc           ]  VNCSConnST:  Server default pixel format depth 24 (32bpp) little-endian rgb888
[xvnc           ] Sun Jun  4 14:43:58 2023
[xvnc           ]  VNCSConnST:  Client pixel format depth 24 (32bpp) little-endian bgr888
[xvnc           ] Sun Jun  4 14:51:20 2023
[xvnc           ]  Connections: accepted: /tmp/vnc.sock
[xvnc           ] Sun Jun  4 14:51:21 2023
[xvnc           ]  SConnection: Client needs protocol version 3.8
[xvnc           ] Sun Jun  4 14:51:22 2023
[xvnc           ]  SConnection: Client requests security type None(1)
[xvnc           ]  VNCSConnST:  Server default pixel format depth 24 (32bpp) little-endian rgb888
[xvnc           ]  VNCSConnST:  Client pixel format depth 24 (32bpp) little-endian bgr888
[xvnc           ] Sun Jun  4 14:51:27 2023
[xvnc           ]  VNCSConnST:  closing /tmp/vnc.sock: Clean disconnection
[xvnc           ]  EncodeManager: Framebuffer updates: 88
[xvnc           ]  EncodeManager:   Tight:
[xvnc           ]  EncodeManager:     Solid: 30 rects, 1.97493 Mpixels
[xvnc           ]  EncodeManager:            480 B (1:16458.5 ratio)
[xvnc           ]  EncodeManager:     Indexed RLE: 85 rects, 46.909 kpixels
[xvnc           ]  EncodeManager:                  13.0811 KiB (1:14.0841 ratio)
[xvnc           ]  EncodeManager:   Tight (JPEG):
[xvnc           ]  EncodeManager:     Full Colour: 25 rects, 113.767 kpixels
[xvnc           ]  EncodeManager:                  48.668 KiB (1:9.13733 ratio)
[xvnc           ]  EncodeManager:   Total: 140 rects, 2.13561 Mpixels
[xvnc           ]  EncodeManager:          62.2178 KiB (1:134.107 ratio)
[xvnc           ]  Connections: closed: /tmp/vnc.sock
[xvnc           ]  ComparingUpdateTracker: 2.74529 Mpixels in / 580.394 kpixels out
[xvnc           ]  ComparingUpdateTracker: (1:4.73005 ratio)

Container inspect

[
    {
        "Id": "254e6fe9bcf046db086004f32388b4b39cfaf12f5380cf8645c5a78bf12008fd",
        "Created": "2023-05-28T18:58:29.908264969Z",
        "Path": "/init",
        "Args": [],
        "State": {
            "Status": "running",
            "Running": true,
            "Paused": false,
            "Restarting": false,
            "OOMKilled": false,
            "Dead": false,
            "Pid": 20284,
            "ExitCode": 0,
            "Error": "",
            "StartedAt": "2023-06-03T16:54:55.54725301Z",
            "FinishedAt": "2023-06-03T16:49:21.92156088Z",
            "StartedTs": 1685811295,
            "FinishedTs": 1685810961
        },
        "Image": "sha256:60f73e389d640c8cde1610a40be00e97690550f8ce23af6680c9f85bc37bb4dd",
        "ResolvConfPath": "/volume1/@docker/containers/254e6fe9bcf046db086004f32388b4b39cfaf12f5380cf8645c5a78bf12008fd/resolv.conf",
        "HostnamePath": "/volume1/@docker/containers/254e6fe9bcf046db086004f32388b4b39cfaf12f5380cf8645c5a78bf12008fd/hostname",
        "HostsPath": "/volume1/@docker/containers/254e6fe9bcf046db086004f32388b4b39cfaf12f5380cf8645c5a78bf12008fd/hosts",
        "LogPath": "/volume1/@docker/containers/254e6fe9bcf046db086004f32388b4b39cfaf12f5380cf8645c5a78bf12008fd/log.db",
        "Name": "/crashplan",
        "RestartCount": 0,
        "Driver": "btrfs",
        "Platform": "linux",
        "MountLabel": "",
        "ProcessLabel": "",
        "AppArmorProfile": "docker-unconfined",
        "ExecIDs": null,
        "HostConfig": {
            "Binds": [
                "/volume1/homes:/storage:rw",
                "/volume1/docker/crashplan-pro:/config:rw"
            ],
            "ContainerIDFile": "",
            "LogConfig": {
                "Type": "db",
                "Config": {}
            },
            "NetworkMode": "bridge",
            "PortBindings": {
                "5800/tcp": [
                    {
                        "HostIp": "",
                        "HostPort": "49160"
                    }
                ],
                "5900/tcp": [
                    {
                        "HostIp": "",
                        "HostPort": "49161"
                    }
                ]
            },
            "RestartPolicy": {
                "Name": "always",
                "MaximumRetryCount": 0
            },
            "AutoRemove": false,
            "VolumeDriver": "",
            "VolumesFrom": null,
            "CapAdd": [],
            "CapDrop": [],
            "CgroupnsMode": "host",
            "Dns": [],
            "DnsOptions": [],
            "DnsSearch": [],
            "ExtraHosts": null,
            "GroupAdd": null,
            "IpcMode": "private",
            "Cgroup": "",
            "Links": null,
            "OomScoreAdj": 0,
            "PidMode": "",
            "Privileged": true,
            "PublishAllPorts": false,
            "ReadonlyRootfs": false,
            "SecurityOpt": [
                "label=disable"
            ],
            "UTSMode": "",
            "UsernsMode": "",
            "ShmSize": 67108864,
            "Runtime": "runc",
            "Env": [
                "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/opt/base/sbin:/opt/base/bin",
                "ENV=/root/.docker_rc",
                "USER_ID=1030",
                "GROUP_ID=100",
                "SUP_GROUP_IDS=",
                "UMASK=0022",
                "LANG=en_US.UTF-8",
                "TZ=Etc/UTC",
                "KEEP_APP_RUNNING=0",
                "APP_NICENESS=0",
                "INSTALL_PACKAGES=",
                "CONTAINER_DEBUG=0",
                "DISPLAY_WIDTH=1920",
                "DISPLAY_HEIGHT=1080",
                "DARK_MODE=0",
                "SECURE_CONNECTION=0",
                "SECURE_CONNECTION_VNC_METHOD=SSL",
                "SECURE_CONNECTION_CERTS_CHECK_INTERVAL=60",
                "WEB_LISTENING_PORT=5800",
                "VNC_LISTENING_PORT=5900",
                "VNC_PASSWORD=",
                "ENABLE_CJK_FONT=0",
                "CRASHPLAN_SRV_MAX_MEM=1024M"
            ],
            "ConsoleSize": [
                0,
                0
            ],
            "Isolation": "",
            "CpuShares": 50,
            "Memory": 0,
            "NanoCpus": 0,
            "CgroupParent": "",
            "BlkioWeight": 0,
            "BlkioWeightDevice": null,
            "BlkioDeviceReadBps": null,
            "BlkioDeviceWriteBps": null,
            "BlkioDeviceReadIOps": null,
            "BlkioDeviceWriteIOps": null,
            "CpuPeriod": 0,
            "CpuQuota": 0,
            "CpuRealtimePeriod": 0,
            "CpuRealtimeRuntime": 0,
            "CpusetCpus": "",
            "CpusetMems": "",
            "Devices": null,
            "DeviceCgroupRules": null,
            "DeviceRequests": null,
            "KernelMemory": 0,
            "KernelMemoryTCP": 0,
            "MemoryReservation": 0,
            "MemorySwap": 0,
            "MemorySwappiness": null,
            "OomKillDisable": false,
            "PidsLimit": null,
            "Ulimits": null,
            "CpuCount": 0,
            "CpuPercent": 0,
            "IOMaximumIOps": 0,
            "IOMaximumBandwidth": 0,
            "MaskedPaths": null,
            "ReadonlyPaths": null
        },
        "GraphDriver": {
            "Data": null,
            "Name": "btrfs"
        },
        "Mounts": [
            {
                "Type": "bind",
                "Source": "/volume1/docker/crashplan-pro",
                "Destination": "/config",
                "Mode": "rw",
                "RW": true,
                "Propagation": "rprivate"
            },
            {
                "Type": "bind",
                "Source": "/volume1/homes",
                "Destination": "/storage",
                "Mode": "rw",
                "RW": true,
                "Propagation": "rprivate"
            }
        ],
        "Config": {
            "Hostname": "crashplan",
            "Domainname": "",
            "User": "",
            "AttachStdin": false,
            "AttachStdout": false,
            "AttachStderr": false,
            "ExposedPorts": {
                "5800/tcp": {},
                "5900/tcp": {}
            },
            "Tty": true,
            "OpenStdin": true,
            "StdinOnce": false,
            "Env": [
                "PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/opt/base/sbin:/opt/base/bin",
                "ENV=/root/.docker_rc",
                "USER_ID=1030",
                "GROUP_ID=100",
                "SUP_GROUP_IDS=",
                "UMASK=0022",
                "LANG=en_US.UTF-8",
                "TZ=Etc/UTC",
                "KEEP_APP_RUNNING=0",
                "APP_NICENESS=0",
                "INSTALL_PACKAGES=",
                "CONTAINER_DEBUG=0",
                "DISPLAY_WIDTH=1920",
                "DISPLAY_HEIGHT=1080",
                "DARK_MODE=0",
                "SECURE_CONNECTION=0",
                "SECURE_CONNECTION_VNC_METHOD=SSL",
                "SECURE_CONNECTION_CERTS_CHECK_INTERVAL=60",
                "WEB_LISTENING_PORT=5800",
                "VNC_LISTENING_PORT=5900",
                "VNC_PASSWORD=",
                "ENABLE_CJK_FONT=0",
                "CRASHPLAN_SRV_MAX_MEM=1024M"
            ],
            "Cmd": [
                "/init"
            ],
            "Image": "jlesage/crashplan-pro:latest",
            "Volumes": {
                "/config": {},
                "/storage": {}
            },
            "WorkingDir": "/tmp",
            "Entrypoint": null,
            "OnBuild": null,
            "Labels": {
                "org.label-schema.description": "Docker container for CrashPlan PRO",
                "org.label-schema.name": "crashplan-pro",
                "org.label-schema.schema-version": "1.0",
                "org.label-schema.vcs-url": "https://github.com/jlesage/docker-crashplan-pro",
                "org.label-schema.version": "23.04.2"
            },
            "DDSM": false
        },
        "NetworkSettings": {
            "Bridge": "",
            "SandboxID": "61d010bd7fe2702fd926d2ca379fb70375b04d43c38f9373775980a59dfed38e",
            "HairpinMode": false,
            "LinkLocalIPv6Address": "",
            "LinkLocalIPv6PrefixLen": 0,
            "Ports": {
                "5800/tcp": [
                    {
                        "HostIp": "0.0.0.0",
                        "HostPort": "49160"
                    }
                ],
                "5900/tcp": [
                    {
                        "HostIp": "0.0.0.0",
                        "HostPort": "49161"
                    }
                ]
            },
            "SandboxKey": "/var/run/docker/netns/61d010bd7fe2",
            "SecondaryIPAddresses": null,
            "SecondaryIPv6Addresses": null,
            "EndpointID": "6253d0146e80acafdb5b2b63f8dffa8dfb787da5cd79db9979f33d4b8ee10b76",
            "Gateway": "172.17.0.1",
            "GlobalIPv6Address": "",
            "GlobalIPv6PrefixLen": 0,
            "IPAddress": "172.17.0.2",
            "IPPrefixLen": 16,
            "IPv6Gateway": "",
            "MacAddress": "02:42:ac:11:00:02",
            "Networks": {
                "bridge": {
                    "IPAMConfig": null,
                    "Links": null,
                    "Aliases": null,
                    "NetworkID": "5f54f4fd9ebbf175cea30bcfc2800ff83be0fc75258fc45a222bb2ee8b27ae37",
                    "EndpointID": "6253d0146e80acafdb5b2b63f8dffa8dfb787da5cd79db9979f33d4b8ee10b76",
                    "Gateway": "172.17.0.1",
                    "IPAddress": "172.17.0.2",
                    "IPPrefixLen": 16,
                    "IPv6Gateway": "",
                    "GlobalIPv6Address": "",
                    "GlobalIPv6PrefixLen": 0,
                    "MacAddress": "02:42:ac:11:00:02",
                    "DriverOpts": null
                }
            }
        }
    }
]

Anything else?

No response

jlesage commented 1 year ago

Is the firewall blocking connections to the Internet ?

jlesage commented 1 year ago

Maybe you could share the firewall settings/rules when enabled ?

faip commented 1 year ago

Everything else is going through the firewall just fine. Here are a couple of screenshots of what I've tried.

Screenshot_20230606_092029 Screenshot_20230606_092106 Screenshot_20230606_092137

jlesage commented 1 year ago

Do you have a rule that denies everything (globally or per interface) ? What is the default action if no rule is matched ?

Is it working when you have the firewall enabled, without any rule defined ?

faip commented 1 year ago

There is a rule at the bottom of the list that denies everything that is not explicitly allowed by another rule.

It does not work with the firewall enabled, without any rule defined.

jlesage commented 1 year ago

Ok, it's hard to help without having a complete picture of the firewall config, but is the container allowed to access outgoing port 443 ?

faip commented 1 year ago

I've opened port 443 with no success.

faip commented 1 year ago

So after some trial and error, this is what I did to get it to work. I added a rule to the firewall, selecting from a list of built in applications. Crashplan was one of the listed applications and it was using ports 49160 and 49161. Without this rule enabled, I was unable to even log into the crashplan docker. I then moved the rule to the top of the list, giving it the highest priority. I then had to manually open TCP ports 443,4282 and 4242 with another rule. I moved this one to the top to give it the highest priority, with the previous rule moved to the 2nd highest priorty.

The CrashPlan app on the client side typically uses the following ports for communication:

  1. TCP Port 443: The CrashPlan app uses this port for secure communication with the CrashPlan servers over SSL/TLS. It is the default port for CrashPlan's encrypted traffic.

  2. TCP Port 4282: This port is used for communication between the CrashPlan app and the CrashPlan service running on the client machine.

  3. TCP Port 4242: This port is used for peer-to-peer communication between CrashPlan clients when the option for local backup seeding or direct backup between computers is enabled.

I hope this helps someone in the future. Thanks for all the help jlesage!

jlesage commented 1 year ago

Great that you figured it out.

For reference, ports used by CrashPlan are documented here: https://support.crashplan.com/hc/en-us/articles/9020789462669-IP-addresses-and-ports-used-by-CrashPlan

faip commented 1 year ago

Hi jlesage,

Sorry to hassle you again. I just thought you should know that the firewall is messing with the container again. I've opened all the ports listed in the link you posted from CrashPlan. Still no luck. However, it works just fine when the firewall is turned off. I'm out of ideas.

I'm not sure if you'll see this since it's on a Closed ticket. If I don't see a response in a few days, I'll open another ticket. Thanks again for the help.

jlesage commented 1 year ago

Do you still have problems with the firewall ? If yes, I suggest that you share the whole firewall configuration, for all interfaces. It would also be useful if you could share what you are trying to achieve when enabling the firewall. Finally, you might also seek help with Synology about how to use the firewall. The problem doesn't seem to be with the container, but really with the setup of the firewall.