search

qdm12 / gluetun

VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.
https://hub.docker.com/r/qmcgaw/gluetun
MIT License
8.06k stars 373 forks source link

DNS over TLS errors #1731

Open emzodls opened 1 year ago

emzodls commented 1 year ago

Is this urgent?

No

Host OS

No response

CPU arch

x86_64

VPN service provider

Windscribe

What are you using to run the container

Portainer

What is the version of Gluetun

sha256:5134e8ddb8b747d0bd8623d6635a4872c459d621ac9a19c839dc9feef65032fe

What's the problem 🤔

I've been getting DNS over TLS errors using windscribe that leads to failed healthchecks and my network being unstable (causing my other containers with this as a dependency to crash). Unsure what the problem is might be a permissions issue?

Share your logs

2023-07-07T09:44:31+01:00 INFO [wireguard] Using available kernelspace implementation
2023-07-07T09:44:31+01:00 INFO [wireguard] Connecting to 185.156.172.164:1194
2023-07-07T09:44:31+01:00 INFO [wireguard] Wireguard is up
2023-07-07T09:44:31+01:00 ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.1:53: read udp 127.0.0.1:40787->127.0.0.1:53: read: connection refused
2023-07-07T09:44:31+01:00 INFO [ip getter] retrying in 5s
2023-07-07T09:44:35+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8
2023-07-07T09:44:35+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:59554->127.0.0.1:53: read: connection refused
2023-07-07T09:44:35+01:00 INFO [dns over tls] attempting restart in 20s
2023-07-07T09:44:35+01:00 INFO [healthcheck] healthy!
2023-07-07T09:44:36+01:00 INFO [ip getter] Public IP address is 185.156.172.173 (Netherlands, North Holland, Amsterdam)
2023-07-07T09:44:55+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files
2023-07-07T09:44:56+01:00 INFO [dns over tls] downloading hostnames and IP block lists
2023-07-07T09:45:00+01:00 INFO [dns over tls] init module 0: validator
2023-07-07T09:45:00+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied
2023-07-07T09:45:00+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key
2023-07-07T09:45:00+01:00 ERROR [dns over tls] validator: error in trustanchors config
2023-07-07T09:45:00+01:00 ERROR [dns over tls] validator: could not apply configuration settings.
2023-07-07T09:45:00+01:00 ERROR [dns over tls] module init for module validator failed
2023-07-07T09:45:00+01:00 INFO [dns over tls] fatal error: failed to setup modules
2023-07-07T09:45:03+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout
2023-07-07T09:45:07+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8
2023-07-07T09:45:07+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:58180->127.0.0.1:53: read: connection refused
2023-07-07T09:45:07+01:00 INFO [dns over tls] attempting restart in 40s
2023-07-07T09:45:09+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)
2023-07-07T09:45:09+01:00 INFO [vpn] stopping
2023-07-07T09:45:09+01:00 INFO [vpn] starting
2023-07-07T09:45:09+01:00 INFO [firewall] allowing VPN connection...
2023-07-07T09:45:09+01:00 INFO [wireguard] Using available kernelspace implementation
2023-07-07T09:45:09+01:00 INFO [wireguard] Connecting to 72.11.157.36:1194
2023-07-07T09:45:09+01:00 INFO [wireguard] Wireguard is up
2023-07-07T09:45:09+01:00 INFO [ip getter] Public IP address is 72.11.157.42 (Netherlands, North Holland, Amsterdam)
2023-07-07T09:45:10+01:00 INFO [healthcheck] healthy!
2023-07-07T09:45:47+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files
2023-07-07T09:45:48+01:00 INFO [dns over tls] downloading hostnames and IP block lists
2023-07-07T09:45:53+01:00 INFO [dns over tls] init module 0: validator
2023-07-07T09:45:53+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied
2023-07-07T09:45:53+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key
2023-07-07T09:45:53+01:00 ERROR [dns over tls] validator: error in trustanchors config
2023-07-07T09:45:53+01:00 ERROR [dns over tls] validator: could not apply configuration settings.
2023-07-07T09:45:53+01:00 ERROR [dns over tls] module init for module validator failed
2023-07-07T09:45:53+01:00 INFO [dns over tls] fatal error: failed to setup modules
2023-07-07T09:45:54+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout
2023-07-07T09:46:00+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)
2023-07-07T09:46:00+01:00 INFO [vpn] stopping
2023-07-07T09:46:00+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8
2023-07-07T09:46:00+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:35158->127.0.0.1:53: read: connection refused
2023-07-07T09:46:00+01:00 INFO [dns over tls] attempting restart in 1m20s
2023-07-07T09:46:00+01:00 INFO [vpn] starting
2023-07-07T09:46:00+01:00 INFO [firewall] allowing VPN connection...
2023-07-07T09:46:00+01:00 INFO [wireguard] Using available kernelspace implementation
2023-07-07T09:46:00+01:00 INFO [wireguard] Connecting to 72.11.157.68:1194
2023-07-07T09:46:00+01:00 INFO [wireguard] Wireguard is up
2023-07-07T09:46:00+01:00 INFO [ip getter] Public IP address is 72.11.157.75 (Netherlands, North Holland, Amsterdam)
2023-07-07T09:46:01+01:00 INFO [healthcheck] healthy!
2023-07-07T09:47:20+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files
2023-07-07T09:47:21+01:00 INFO [dns over tls] downloading hostnames and IP block lists
2023-07-07T09:47:28+01:00 INFO [dns over tls] init module 0: validator
2023-07-07T09:47:28+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied
2023-07-07T09:47:28+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key
2023-07-07T09:47:28+01:00 ERROR [dns over tls] validator: error in trustanchors config
2023-07-07T09:47:28+01:00 ERROR [dns over tls] validator: could not apply configuration settings.
2023-07-07T09:47:28+01:00 ERROR [dns over tls] module init for module validator failed
2023-07-07T09:47:28+01:00 INFO [dns over tls] fatal error: failed to setup modules
2023-07-07T09:47:29+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout
2023-07-07T09:47:35+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8
2023-07-07T09:47:35+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:49822->127.0.0.1:53: read: connection refused
2023-07-07T09:47:35+01:00 INFO [dns over tls] attempting restart in 2m40s
2023-07-07T09:47:35+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)
2023-07-07T09:47:35+01:00 INFO [vpn] stopping
2023-07-07T09:47:36+01:00 INFO [vpn] starting
2023-07-07T09:47:36+01:00 INFO [firewall] allowing VPN connection...
2023-07-07T09:47:36+01:00 INFO [wireguard] Using available kernelspace implementation
2023-07-07T09:47:36+01:00 INFO [wireguard] Connecting to 84.17.46.3:1194
2023-07-07T09:47:36+01:00 INFO [wireguard] Wireguard is up
2023-07-07T09:47:36+01:00 INFO [ip getter] Public IP address is 84.17.46.8 (Netherlands, North Holland, Amsterdam)
2023-07-07T09:47:37+01:00 INFO [healthcheck] healthy!
2023-07-07T09:50:15+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files
2023-07-07T09:50:16+01:00 INFO [dns over tls] downloading hostnames and IP block lists
2023-07-07T09:50:20+01:00 INFO [dns over tls] init module 0: validator
2023-07-07T09:50:20+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied
2023-07-07T09:50:20+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key
2023-07-07T09:50:20+01:00 ERROR [dns over tls] validator: error in trustanchors config
2023-07-07T09:50:20+01:00 ERROR [dns over tls] validator: could not apply configuration settings.
2023-07-07T09:50:20+01:00 ERROR [dns over tls] module init for module validator failed
2023-07-07T09:50:20+01:00 INFO [dns over tls] fatal error: failed to setup modules
2023-07-07T09:50:21+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout
2023-07-07T09:50:27+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)
2023-07-07T09:50:27+01:00 INFO [vpn] stopping
2023-07-07T09:50:27+01:00 INFO [vpn] starting
2023-07-07T09:50:27+01:00 INFO [firewall] allowing VPN connection...
2023-07-07T09:50:27+01:00 INFO [wireguard] Using available kernelspace implementation
2023-07-07T09:50:27+01:00 INFO [wireguard] Connecting to 185.107.81.131:1194
2023-07-07T09:50:27+01:00 INFO [wireguard] Wireguard is up
2023-07-07T09:50:27+01:00 ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.1:53: read udp 127.0.0.1:48915->127.0.0.1:53: read: connection refused
2023-07-07T09:50:27+01:00 INFO [ip getter] retrying in 5s
2023-07-07T09:50:27+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8
2023-07-07T09:50:27+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:57997->127.0.0.1:53: read: connection refused
2023-07-07T09:50:27+01:00 INFO [dns over tls] attempting restart in 5m20s
2023-07-07T09:50:28+01:00 INFO [healthcheck] healthy!
2023-07-07T09:50:32+01:00 WARN [ip getter] too many requests sent for this month from https://ipinfo.io/: 403 403 Forbidden

Share your configuration

version: "3.7"
services:
  gluetun:
    image: qmcgaw/gluetun:latest
    ports:
      - 8118:8118
      - 8090:8090
      - 6881:6881
      - 6881:6881/udp
      - 9117:9117
      - 8989:8989
      - 7878:7878
      - 9696:9696
    labels:
      - "autoheal=true"
    cap_add:
      - NET_ADMIN
    environment:
      - VPN_SERVICE_PROVIDER=windscribe
      - VPN_TYPE=wireguard
      - WIREGUARD_PRIVATE_KEY=
      - WIREGUARD_ADDRESSES=
      - WIREGUARD_PRESHARED_KEY=
      - SERVER_REGIONS=Netherlands
      - DOT_PROVIDERS=google
      - TZ=Europe/London
gmillerd commented 1 year ago

OP, what are you doing to address your ipinfo.io issue?

2023-07-07T09:50:32+01:00 WARN [ip getter] too many requests sent for this month from https://ipinfo.io/: 403 403 Forbidden

xerosys commented 1 year ago

I am getting the same error using Windscribe as well. I don't have the "too many requests" error either. I've tried both v3.34.3 and v3.35.0

--

Edit: My issue was due to my firewall. The docker container changed its IP, so I had to add the new subnet to its allowlist.

emzodls commented 1 year ago

I'm not getting any ipinfo.io errors anymore but still having the same issue. I don't think it's an IP issue for me as I'm in bridge mode and my box is bound. I could be wrong though.

2023-07-08T06:09:49+01:00 INFO [vpn] starting 2023-07-08T06:09:49+01:00 INFO [firewall] allowing VPN connection... 2023-07-08T06:09:49+01:00 INFO [wireguard] Using available kernelspace implementation 2023-07-08T06:09:49+01:00 INFO [wireguard] Connecting to 109.201.130.3:1194 2023-07-08T06:09:49+01:00 INFO [wireguard] Wireguard is up 2023-07-08T06:09:50+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8 2023-07-08T06:09:50+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:41454->127.0.0.1:53: read: connection refused 2023-07-08T06:09:50+01:00 INFO [dns over tls] attempting restart in 2m40s 2023-07-08T06:09:50+01:00 INFO [healthcheck] healthy! 2023-07-08T06:12:30+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files 2023-07-08T06:12:31+01:00 INFO [dns over tls] downloading hostnames and IP block lists 2023-07-08T06:12:35+01:00 INFO [dns over tls] init module 0: validator 2023-07-08T06:12:35+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied 2023-07-08T06:12:35+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key 2023-07-08T06:12:35+01:00 ERROR [dns over tls] validator: error in trustanchors config 2023-07-08T06:12:35+01:00 ERROR [dns over tls] validator: could not apply configuration settings. 2023-07-08T06:12:35+01:00 ERROR [dns over tls] module init for module validator failed 2023-07-08T06:12:35+01:00 INFO [dns over tls] fatal error: failed to setup modules 2023-07-08T06:12:36+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com on 127.0.0.1:53: read udp 127.0.0.1:33677->127.0.0.1:53: read: connection refused 2023-07-08T06:12:42+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-07-08T06:12:42+01:00 INFO [vpn] stopping 2023-07-08T06:12:42+01:00 INFO [vpn] starting 2023-07-08T06:12:42+01:00 INFO [firewall] allowing VPN connection... 2023-07-08T06:12:42+01:00 INFO [wireguard] Using available kernelspace implementation 2023-07-08T06:12:42+01:00 INFO [wireguard] Connecting to 84.17.46.3:1194 2023-07-08T06:12:42+01:00 INFO [wireguard] Wireguard is up 2023-07-08T06:12:42+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8 2023-07-08T06:12:42+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:55473->127.0.0.1:53: read: connection refused 2023-07-08T06:12:42+01:00 INFO [dns over tls] attempting restart in 5m20s 2023-07-08T06:12:46+01:00 INFO [healthcheck] healthy! 2023-07-08T06:18:02+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files 2023-07-08T06:18:04+01:00 INFO [dns over tls] downloading hostnames and IP block lists 2023-07-08T06:18:08+01:00 INFO [dns over tls] init module 0: validator 2023-07-08T06:18:08+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied 2023-07-08T06:18:08+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key 2023-07-08T06:18:08+01:00 ERROR [dns over tls] validator: error in trustanchors config 2023-07-08T06:18:08+01:00 ERROR [dns over tls] validator: could not apply configuration settings. 2023-07-08T06:18:08+01:00 ERROR [dns over tls] module init for module validator failed 2023-07-08T06:18:08+01:00 INFO [dns over tls] fatal error: failed to setup modules 2023-07-08T06:18:11+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout 2023-07-08T06:18:15+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8 2023-07-08T06:18:15+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:49749->127.0.0.1:53: read: connection refused 2023-07-08T06:18:15+01:00 INFO [dns over tls] attempting restart in 10m40s 2023-07-08T06:18:17+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-07-08T06:18:17+01:00 INFO [vpn] stopping 2023-07-08T06:18:17+01:00 INFO [vpn] starting 2023-07-08T06:18:17+01:00 INFO [firewall] allowing VPN connection... 2023-07-08T06:18:17+01:00 INFO [wireguard] Using available kernelspace implementation 2023-07-08T06:18:17+01:00 INFO [wireguard] Connecting to 185.212.171.132:1194 2023-07-08T06:18:17+01:00 INFO [wireguard] Wireguard is up 2023-07-08T06:18:29+01:00 INFO [healthcheck] program has been unhealthy for 11s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-07-08T06:18:29+01:00 INFO [vpn] stopping 2023-07-08T06:18:29+01:00 INFO [vpn] starting 2023-07-08T06:18:29+01:00 INFO [firewall] allowing VPN connection... 2023-07-08T06:18:29+01:00 INFO [wireguard] Using available kernelspace implementation 2023-07-08T06:18:29+01:00 INFO [wireguard] Connecting to 84.17.46.3:1194 2023-07-08T06:18:29+01:00 INFO [wireguard] Wireguard is up 2023-07-08T06:18:29+01:00 INFO [healthcheck] healthy! 2023-07-08T06:28:55+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files 2023-07-08T06:28:56+01:00 INFO [dns over tls] downloading hostnames and IP block lists 2023-07-08T06:28:57+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com on 127.0.0.1:53: read udp 127.0.0.1:53740->127.0.0.1:53: read: connection refused 2023-07-08T06:29:00+01:00 INFO [dns over tls] init module 0: validator 2023-07-08T06:29:00+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied 2023-07-08T06:29:00+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key 2023-07-08T06:29:00+01:00 ERROR [dns over tls] validator: error in trustanchors config 2023-07-08T06:29:00+01:00 ERROR [dns over tls] validator: could not apply configuration settings. 2023-07-08T06:29:00+01:00 ERROR [dns over tls] module init for module validator failed 2023-07-08T06:29:00+01:00 INFO [dns over tls] fatal error: failed to setup modules 2023-07-08T06:29:03+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-07-08T06:29:03+01:00 INFO [vpn] stopping 2023-07-08T06:29:04+01:00 INFO [vpn] starting 2023-07-08T06:29:04+01:00 INFO [firewall] allowing VPN connection... 2023-07-08T06:29:04+01:00 INFO [wireguard] Using available kernelspace implementation 2023-07-08T06:29:04+01:00 INFO [wireguard] Connecting to 185.253.96.4:1194 2023-07-08T06:29:04+01:00 INFO [wireguard] Wireguard is up 2023-07-08T06:29:08+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8 2023-07-08T06:29:08+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:44165->127.0.0.1:53: read: connection refused 2023-07-08T06:29:08+01:00 INFO [dns over tls] attempting restart in 21m20s 2023-07-08T06:29:13+01:00 INFO [healthcheck] healthy! 2023-07-08T06:50:28+01:00 INFO [dns over tls] downloading DNS over TLS cryptographic files 2023-07-08T06:50:30+01:00 INFO [dns over tls] downloading hostnames and IP block lists 2023-07-08T06:50:31+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com on 127.0.0.1:53: read udp 127.0.0.1:50604->127.0.0.1:53: read: connection refused 2023-07-08T06:50:34+01:00 INFO [dns over tls] init module 0: validator 2023-07-08T06:50:34+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied 2023-07-08T06:50:34+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key 2023-07-08T06:50:34+01:00 ERROR [dns over tls] validator: error in trustanchors config 2023-07-08T06:50:34+01:00 ERROR [dns over tls] validator: could not apply configuration settings. 2023-07-08T06:50:34+01:00 ERROR [dns over tls] module init for module validator failed 2023-07-08T06:50:34+01:00 INFO [dns over tls] fatal error: failed to setup modules 2023-07-08T06:50:37+01:00 INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-07-08T06:50:37+01:00 INFO [vpn] stopping 2023-07-08T06:50:37+01:00 INFO [vpn] starting 2023-07-08T06:50:37+01:00 INFO [firewall] allowing VPN connection... 2023-07-08T06:50:37+01:00 INFO [wireguard] Using available kernelspace implementation 2023-07-08T06:50:37+01:00 INFO [wireguard] Connecting to 84.17.46.3:1194 2023-07-08T06:50:37+01:00 INFO [wireguard] Wireguard is up 2023-07-08T06:50:41+01:00 INFO [dns over tls] falling back on plaintext DNS at address 8.8.8.8 2023-07-08T06:50:41+01:00 WARN [dns over tls] DNS is not working: after 10 tries: lookup github.com on 127.0.0.1:53: read udp 127.0.0.1:55850->127.0.0.1:53: read: connection refused 2023-07-08T06:50:41+01:00 INFO [dns over tls] attempting restart in 42m40s 2023-07-08T06:50:41+01:00 INFO [healthcheck] healthy!

emzodls commented 1 year ago

Bump, I'm still getting errors: 2023-07-27T19:44:51+01:00 ERROR [dns over tls] error opening file /etc/unbound/root.key: Permission denied 2023-07-27T19:44:51+01:00 ERROR [dns over tls] error reading trust-anchor-file: /etc/unbound/root.key 2023-07-27T19:44:51+01:00 ERROR [dns over tls] validator: error in trustanchors config 2023-07-27T19:44:51+01:00 ERROR [dns over tls] validator: could not apply configuration settings. 2023-07-27T19:44:51+01:00 ERROR [dns over tls] module init for module validator failed 2023-07-27T19:44:51+01:00 INFO [dns over tls] fatal error: failed to setup modules 2023-07-27T19:44:51+01:00 INFO [healthcheck] healthy! 2023-07-27T19:44:56+01:00 INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com on 127.0.0.1:53: read udp 127.0.0.1:47937->127.0.0.1:53: read: connection refused

qdm12 commented 1 year ago

Try https://github.com/qdm12/gluetun/issues/137#issuecomment-1630908995

Unbound is probably crying for whatever reason, it should be dropped out soon. I'm actively working on qmcgaw/gluetun:pr-1742 so you can probably get updates by pulling this one, until the issue gets resolved/PR gets merged. You might want to subscribe to #137 😉