search

qdm12 / gluetun

VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.
https://hub.docker.com/r/qmcgaw/gluetun
MIT License
7.34k stars 348 forks source link

Bug: Torguard Hostnames outdated? #1691

Open mh22E opened 1 year ago

mh22E commented 1 year ago

Is this urgent?

None

Host OS

Ubuntu 23.04

CPU arch

None

VPN service provider

TorGuard

What are you using to run the container

docker-compose

What is the version of Gluetun

v3.34.3

What's the problem 🤔

Torguard not able to establish a vpn configuration.

Hostnames gathered from https://torguard.net/downloads/OpenVPN-UDP-Linux.zip seem to be wrong/outdated. image

Creating a ovpn config via the config torguards openvpn-config generator gives valid hostnames (e.g. ger.torguard.com) that work, if a custom config is created.

Suggested solutions would be:

  1. Find another source than https://torguard.net/downloads/OpenVPN-UDP-Linux.zip that contains up-to-date hostnames
  2. Allow hostnames like ger.torguard.com for provider=torguard (gluetun errs because e.g. 'ger.torguard.com' is not known) or for custom providers (only resolved ip's possible that may be subject to change) https://github.com/qdm12/gluetun/issues/788

Share your logs

Running version latest built on 2023-06-12T13:56:16.720Z (commit 83826e1)

🔧 Need help? https://github.com/qdm12/gluetun/discussions/new
🐛 Bug? https://github.com/qdm12/gluetun/issues/new
✨ New feature? https://github.com/qdm12/gluetun/issues/new
☕ Discussion? https://github.com/qdm12/gluetun/discussions/new
💻 Email? quentin.mcgaw@gmail.com
💰 Help me? https://www.paypal.me/qmcgaw https://github.com/sponsors/qdm12
2023-06-15T16:45:28Z INFO [routing] default route found: interface eth0, gateway 172.20.0.1, assigned IP 172.20.0.2 and family v4
2023-06-15T16:45:28Z INFO [routing] local ethernet link found: eth0
2023-06-15T16:45:28Z INFO [routing] local ipnet found: 172.20.0.0/16
2023-06-15T16:45:28Z INFO [firewall] enabling...
2023-06-15T16:45:28Z INFO [firewall] enabled successfully
2023-06-15T16:45:29Z INFO [storage] creating /gluetun/servers.json with 17678 hardcoded servers
2023-06-15T16:45:29Z INFO Alpine version: 3.18.0
2023-06-15T16:45:29Z INFO OpenVPN 2.5 version: 2.5.8
2023-06-15T16:45:29Z INFO OpenVPN 2.6 version: 2.6.4
2023-06-15T16:45:29Z INFO Unbound version: 1.17.1
2023-06-15T16:45:29Z INFO IPtables version: v1.8.9
2023-06-15T16:45:29Z INFO Settings summary:
├── VPN settings:
|   ├── VPN provider settings:
|   |   ├── Name: torguard
|   |   └── Server selection settings:
|   |       ├── VPN type: openvpn
|   |       └── OpenVPN server selection settings:
|   |           └── Protocol: UDP
|   └── OpenVPN settings:
|       ├── OpenVPN version: 2.5
|       ├── User: [set]
|       ├── Password: [set]
|       ├── Network interface: tun0
|       ├── Run OpenVPN as: root
|       └── Verbosity level: 1
├── DNS settings:
|   ├── DNS server address to use: 127.0.0.1
|   ├── Keep existing nameserver(s): no
|   └── DNS over TLS settings:
|       ├── Enabled: yes
|       ├── Update period: every 24h0m0s
|       ├── Unbound settings:
|       |   ├── Authoritative servers:
|       |   |   └── cloudflare
|       |   ├── Caching: yes
|       |   ├── IPv6: no
|       |   ├── Verbosity level: 1
|       |   ├── Verbosity details level: 0
|       |   ├── Validation log level: 0
|       |   ├── System user: root
|       |   └── Allowed networks:
|       |       ├── 0.0.0.0/0
|       |       └── ::/0
|       └── DNS filtering settings:
|           ├── Block malicious: yes
|           ├── Block ads: no
|           ├── Block surveillance: no
|           └── Blocked IP networks:
|               ├── 127.0.0.1/8
|               ├── 10.0.0.0/8
|               ├── 172.16.0.0/12
|               ├── 192.168.0.0/16
|               ├── 169.254.0.0/16
|               ├── ::1/128
|               ├── fc00::/7
|               ├── fe80::/10
|               ├── ::ffff:127.0.0.1/104
|               ├── ::ffff:10.0.0.0/104
|               ├── ::ffff:169.254.0.0/112
|               ├── ::ffff:172.16.0.0/108
|               └── ::ffff:192.168.0.0/112
├── Firewall settings:
|   └── Enabled: yes
├── Log settings:
|   └── Log level: INFO
├── Health settings:
|   ├── Server listening address: 127.0.0.1:9999
|   ├── Target address: cloudflare.com:443
|   ├── Duration to wait after success: 5s
|   ├── Read header timeout: 100ms
|   ├── Read timeout: 500ms
|   └── VPN wait durations:
|       ├── Initial duration: 6s
|       └── Additional duration: 5s
├── Shadowsocks server settings:
|   └── Enabled: no
├── HTTP proxy settings:
|   └── Enabled: no
├── Control server settings:
|   ├── Listening address: :8000
|   └── Logging: yes
├── OS Alpine settings:
|   ├── Process UID: 1000
|   └── Process GID: 1000
├── Public IP settings:
|   ├── Fetching: every 12h0m0s
|   └── IP file path: /tmp/gluetun/ip
└── Version settings:
    └── Enabled: yes
2023-06-15T16:45:29Z INFO [routing] default route found: interface eth0, gateway 172.20.0.1, assigned IP 172.20.0.2 and family v4

...

2023-06-15T16:51:11Z INFO [vpn] starting
2023-06-15T16:51:11Z INFO [firewall] allowing VPN connection...
2023-06-15T16:51:11Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov  2 2022
2023-06-15T16:51:11Z INFO [openvpn] library versions: OpenSSL 3.1.1 30 May 2023, LZO 2.10
2023-06-15T16:51:11Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]185.232.21.210:1912
2023-06-15T16:51:11Z INFO [openvpn] UDP link local: (not bound)
2023-06-15T16:51:11Z INFO [openvpn] UDP link remote: [AF_INET]185.232.21.210:1912
2023-06-15T16:52:11Z WARN [openvpn] TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
🚒🚒🚒🚒🚒🚨🚨🚨🚨🚨🚨🚒🚒🚒🚒🚒
That error usually happens because either:

1. The VPN server IP address you are trying to connect to is no longer valid 🔌
   Update your server information using https://github.com/qdm12/gluetun/wiki/Updating-Servers

Share your configuration

Default minimal torguard configuration as shown in wiki.
qdm12 commented 1 year ago

Find another source than https://torguard.net/downloads/OpenVPN-UDP-Linux.zip that contains up-to-date hostnames

Sure, can you reach out to them about updating their zip file? Or do they have an API web endpoint to get their servers data?

Allow hostnames like ger.torguard.com for provider=torguard (gluetun errs because e.g. 'ger.torguard.com' is not known) or for custom providers (only resolved ip's possible that may be subject to change)

Sure but this blocking feature request is a few months away still, so I would rather do the first proposed solution right now.

qdm12 commented 1 year ago

Servers updated in 1a5a0148ea430ef5fb948c67aca165f07c29df9a using the old zip link.

I still need a new link to their zip file or API endpoint to update with newer servers.

nicolocarcagni commented 10 months ago

Same problem with any TorGuard server

ERROR VPN settings: OpenVPN settings: custom configuration file: extracting information from custom configuration file: extracting connection from file: on line 4: extracting from remote line: host is not an IP address: ger.torguard.com

temporarily solved by manually entering the ipv4 corresponding to the hostname manually in the config file