search

qdm12 / gluetun

VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.
https://hub.docker.com/r/qmcgaw/gluetun
MIT License
7.44k stars 350 forks source link

Bug: ovpn custom provider cannot connect over Wireguard and Openvpn #1815

Closed benfishbus closed 1 year ago

benfishbus commented 1 year ago

Is this urgent?

None

Host OS

Unraid 6.12.1

CPU arch

x86_64

VPN service provider

Custom

What are you using to run the container

Other

What is the version of Gluetun

Running version latest built on 2023-08-11T11:08:54.752Z (commit e556871)

What's the problem 🤔

My provider is OVPN, and it has worked flawlessly as a custom provider in gluetun until now. I use Wireguard, and started getting timeout errors in gluetun log. Someone else reported a similar problem back in July, and you suggested it might be a Wireguard problem on the server. So I reconfigured gluetun to use OpenVPN config file, but it gives me the same timeout errors (in addition to a 'route already exists' error). I've tried two different U.S. servers, using both protocols, and both acted the same. I've included the log for the OpenVPN connection here.

Share your logs

2023-08-21T22:52:49Z INFO [vpn] starting
2023-08-21T22:52:49Z INFO [firewall] allowing VPN connection...
2023-08-21T22:52:49Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov  2 2022
2023-08-21T22:52:49Z INFO [openvpn] library versions: OpenSSL 3.1.2 1 Aug 2023, LZO 2.10
2023-08-21T22:52:49Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]87.249.134.67:1194
2023-08-21T22:52:49Z INFO [openvpn] UDP link local: (not bound)
2023-08-21T22:52:49Z INFO [openvpn] UDP link remote: [AF_INET]87.249.134.67:1194
2023-08-21T22:52:49Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1534', remote='link-mtu 1558'
2023-08-21T22:52:49Z WARN [openvpn] 'auth' is used inconsistently, local='auth [null-digest]', remote='auth SHA1'
2023-08-21T22:52:49Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo'
2023-08-21T22:52:49Z INFO [openvpn] [vpn32.prd.chicago.ovpn.com] Peer Connection Initiated with [AF_INET]87.249.134.67:1194
2023-08-21T22:52:50Z WARN [openvpn] Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2023-08-21T22:52:50Z INFO [openvpn] TUN/TAP device tun0 opened
2023-08-21T22:52:50Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500
2023-08-21T22:52:50Z INFO [openvpn] /sbin/ip link set dev tun0 up
2023-08-21T22:52:50Z INFO [openvpn] /sbin/ip addr add dev tun0 10.128.1.95/22
2023-08-21T22:52:50Z ERROR [openvpn] OpenVPN tried to add an IP route which already exists (RTNETLINK answers: File exists)
2023-08-21T22:52:50Z WARN [openvpn] Previous error details: Linux route add command failed: external program exited with error status: 2
2023-08-21T22:52:50Z INFO [openvpn] UID set to nonrootuser
2023-08-21T22:52:50Z INFO [openvpn] Initialization Sequence Completed
2023-08-21T22:53:01Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:37368->127.0.0.11:53: i/o timeout
2023-08-21T22:53:01Z INFO [ip getter] retrying in 5s
2023-08-21T22:53:16Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:45950->127.0.0.11:53: i/o timeout
2023-08-21T22:53:16Z INFO [ip getter] retrying in 5s
2023-08-21T22:53:31Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:41628->127.0.0.11:53: i/o timeout
2023-08-21T22:53:31Z INFO [ip getter] retrying in 5s
2023-08-21T22:53:46Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:51781->127.0.0.11:53: i/o timeout
2023-08-21T22:53:46Z INFO [ip getter] retrying in 5s
2023-08-21T22:54:00Z INFO [healthcheck] program has been unhealthy for 1m11s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)
2023-08-21T22:54:00Z INFO [vpn] stopping

Share your configuration

client
dev tun
remote-cert-tls server
cipher CHACHA20-POLY1305
pull
nobind
reneg-sec 0
resolv-retry infinite
verb 3
persist-key
persist-tun
remote-random
remote 87.249.134.67 1194
remote 87.249.134.67 1195
proto udp
mute-replay-warnings
replay-window 256

auth-user-pass

key-direction 1
pgpais commented 1 year ago

Also have this issue with wireguard configuration of protonvpn

qdm12 commented 1 year ago

What do you get from running docker exec gluetun ip route? You can also try running with LOG_LEVEL=debug to see ip route and firewall operations, it might be related to openvpn trying to add an already-existing ip route 🤔 Also, given Wireguard also started failing out of the blue, are you sure your subscription isn't expired? Did you try other servers outside the US?

benfishbus commented 1 year ago

I had tried servers in two different U.S. cities; just tried Canada with same result. The account is definitely working - both in OVPN's desktop app and in my other gluetun container still running on commit 082a38b (which is connected via wireguard while still logging frequent timeouts).

root@Jimbob:~# docker exec gluetun-us ip route 0.0.0.0/1 via 10.128.0.1 dev tun0 default via 172.18.0.1 dev eth0 10.128.0.0/22 dev tun0 proto kernel scope link src 10.128.2.240 87.249.134.67 via 172.18.0.1 dev eth0 128.0.0.0/1 via 10.128.0.1 dev tun0 172.18.0.0/16 dev eth0 proto kernel scope link src 172.18.0.6

Debug log:

======================================== =============== gluetun ================

=========== Made with ❤️ by ============ ======= https://github.com/qdm12 =======

========================================

Running version latest built on 2023-08-11T11:08:54.752Z (commit e556871)

🔧 Need help? https://github.com/qdm12/gluetun/discussions/new 🐛 Bug? https://github.com/qdm12/gluetun/issues/new ✨ New feature? https://github.com/qdm12/gluetun/issues/new ☕ Discussion? https://github.com/qdm12/gluetun/discussions/new 💻 Email? quentin.mcgaw@gmail.com 💰 Help me? https://www.paypal.me/qmcgaw https://github.com/sponsors/qdm12 2023-08-22T14:39:27Z INFO [routing] default route found: interface eth0, gateway 172.18.0.1, assigned IP 172.18.0.6 and family v4 2023-08-22T14:39:27Z INFO [routing] local ethernet link found: eth0 2023-08-22T14:39:27Z INFO [routing] local ipnet found: 172.18.0.0/16 2023-08-22T14:39:27Z INFO [firewall] enabling... 2023-08-22T14:39:27Z DEBUG [firewall] iptables --policy INPUT DROP 2023-08-22T14:39:27Z DEBUG [firewall] iptables --policy OUTPUT DROP 2023-08-22T14:39:27Z DEBUG [firewall] iptables --policy FORWARD DROP 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --policy INPUT DROP 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --policy OUTPUT DROP 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --policy FORWARD DROP 2023-08-22T14:39:27Z DEBUG [firewall] iptables --append INPUT -i lo -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --append INPUT -i lo -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] iptables --append OUTPUT -o lo -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --append OUTPUT -o lo -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] iptables --append OUTPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --append OUTPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] iptables --append INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --append INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] iptables --append OUTPUT -o eth0 -s 172.18.0.6 -d 172.18.0.0/16 -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] ip6tables --append OUTPUT -o eth0 -d ff02::1:ff/104 -j ACCEPT 2023-08-22T14:39:27Z DEBUG [firewall] iptables --append INPUT -i eth0 -d 172.18.0.0/16 -j ACCEPT 2023-08-22T14:39:27Z INFO [firewall] enabled successfully 2023-08-22T14:39:28Z INFO [storage] merging by most recent 17692 hardcoded servers and 17692 servers read from /gluetun/servers.json 2023-08-22T14:39:28Z DEBUG [netlink] IPv6 is not supported after searching 0 routes 2023-08-22T14:39:28Z INFO Alpine version: 3.18.3 2023-08-22T14:39:28Z INFO OpenVPN 2.5 version: 2.5.8 2023-08-22T14:39:28Z INFO OpenVPN 2.6 version: 2.6.5 2023-08-22T14:39:28Z INFO Unbound version: 1.17.1 2023-08-22T14:39:28Z INFO IPtables version: v1.8.9 2023-08-22T14:39:28Z INFO Settings summary: ├── VPN settings: | ├── VPN provider settings: | | ├── Name: custom | | └── Server selection settings: | | ├── VPN type: openvpn | | └── OpenVPN server selection settings: | | ├── Protocol: UDP | | └── Custom configuration file: /gluetun/us.chicago.ovpn.com.ovpn | └── OpenVPN settings: | ├── OpenVPN version: 2.5 | ├── User: [set] | ├── Password: [set] | ├── Custom configuration file: /gluetun/us.chicago.ovpn.com.ovpn | ├── Network interface: tun0 | ├── Run OpenVPN as: nonrootuser | └── Verbosity level: 1 ├── DNS settings: | └── Keep existing nameserver(s): yes ├── Firewall settings: | ├── Enabled: yes | └── Input ports: | ├── 5990 | ├── 1080 | ├── 9292 | └── 4444 ├── Log settings: | └── Log level: DEBUG ├── Health settings: | ├── Server listening address: 127.0.0.1:9999 | ├── Target address: github.com | ├── Duration to wait after success: 5s | ├── Read header timeout: 100ms | ├── Read timeout: 500ms | └── VPN wait durations: | ├── Initial duration: 6s | └── Additional duration: 5s ├── Shadowsocks server settings: | └── Enabled: no ├── HTTP proxy settings: | ├── Enabled: yes | ├── Listening address: :8888 | ├── User: | ├── Password: [not set] | ├── Stealth mode: yes | ├── Log: no | ├── Read header timeout: 1s | └── Read timeout: 3s ├── Control server settings: | ├── Listening address: :8000 | └── Logging: yes ├── OS Alpine settings: | ├── Process UID: 99 | ├── Process GID: 100 | └── Timezone: us/detroit ├── Public IP settings: | ├── Fetching: every 12h0m0s | └── IP file path: /gluetun/ip └── Version settings: └── Enabled: yes 2023-08-22T14:39:28Z INFO [routing] default route found: interface eth0, gateway 172.18.0.1, assigned IP 172.18.0.6 and family v4 2023-08-22T14:39:28Z DEBUG [routing] ip rule add from 172.18.0.6/32 lookup 200 pref 100 2023-08-22T14:39:28Z INFO [routing] adding route for 0.0.0.0/0 2023-08-22T14:39:28Z DEBUG [routing] ip route replace 0.0.0.0/0 via 172.18.0.1 dev eth0 table 200 2023-08-22T14:39:28Z INFO [firewall] setting allowed subnets... 2023-08-22T14:39:28Z INFO [routing] default route found: interface eth0, gateway 172.18.0.1, assigned IP 172.18.0.6 and family v4 2023-08-22T14:39:28Z DEBUG [routing] ip rule add to 172.18.0.0/16 lookup 254 pref 98 2023-08-22T14:39:28Z INFO TUN device is not available: open /dev/net/tun: no such file or directory; creating it... 2023-08-22T14:39:28Z INFO [firewall] setting allowed input port 5990 through interface eth0... 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p tcp --dport 5990 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p tcp --dport 5990 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p udp --dport 5990 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p udp --dport 5990 -j ACCEPT 2023-08-22T14:39:28Z INFO [firewall] setting allowed input port 1080 through interface eth0... 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p tcp --dport 1080 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p tcp --dport 1080 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p udp --dport 1080 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p udp --dport 1080 -j ACCEPT 2023-08-22T14:39:28Z INFO [firewall] setting allowed input port 9292 through interface eth0... 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p tcp --dport 9292 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p tcp --dport 9292 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p udp --dport 9292 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p udp --dport 9292 -j ACCEPT 2023-08-22T14:39:28Z INFO [firewall] setting allowed input port 4444 through interface eth0... 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p tcp --dport 4444 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p tcp --dport 4444 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append INPUT -i eth0 -p udp --dport 4444 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append INPUT -i eth0 -p udp --dport 4444 -j ACCEPT 2023-08-22T14:39:28Z WARN [dns] ⚠️⚠️⚠️ keeping the default container nameservers, this will likely leak DNS traffic outside the VPN and go through your container network DNS outside the VPN tunnel! 2023-08-22T14:39:28Z INFO [http proxy] listening on :8888 2023-08-22T14:39:28Z INFO [http server] http server listening on [::]:8000 2023-08-22T14:39:28Z INFO [healthcheck] listening on 127.0.0.1:9999 2023-08-22T14:39:28Z INFO [firewall] allowing VPN connection... 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append OUTPUT -d 87.249.134.67 -o eth0 -p udp -m udp --dport 1194 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] iptables --append OUTPUT -o tun0 -j ACCEPT 2023-08-22T14:39:28Z DEBUG [firewall] ip6tables --append OUTPUT -o tun0 -j ACCEPT 2023-08-22T14:39:28Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022 2023-08-22T14:39:28Z INFO [openvpn] library versions: OpenSSL 3.1.2 1 Aug 2023, LZO 2.10 2023-08-22T14:39:28Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]87.249.134.67:1194 2023-08-22T14:39:28Z INFO [openvpn] UDP link local: (not bound) 2023-08-22T14:39:28Z INFO [openvpn] UDP link remote: [AF_INET]87.249.134.67:1194 2023-08-22T14:39:28Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1534', remote='link-mtu 1558' 2023-08-22T14:39:28Z WARN [openvpn] 'auth' is used inconsistently, local='auth [null-digest]', remote='auth SHA1' 2023-08-22T14:39:28Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' 2023-08-22T14:39:28Z INFO [openvpn] [vpn32.prd.chicago.ovpn.com] Peer Connection Initiated with [AF_INET]87.249.134.67:1194 2023-08-22T14:39:30Z INFO [openvpn] TUN/TAP device tun0 opened 2023-08-22T14:39:30Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500 2023-08-22T14:39:30Z INFO [openvpn] /sbin/ip link set dev tun0 up 2023-08-22T14:39:30Z INFO [openvpn] /sbin/ip addr add dev tun0 10.128.2.72/22 2023-08-22T14:39:30Z INFO [openvpn] UID set to nonrootuser 2023-08-22T14:39:30Z INFO [openvpn] Initialization Sequence Completed 2023-08-22T14:39:35Z INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-08-22T14:39:35Z INFO [vpn] stopping 2023-08-22T14:39:35Z ERROR [vpn] cannot get version information: Get "https://api.github.com/repos/qdm12/gluetun/commits": context canceled 2023-08-22T14:39:35Z INFO [vpn] starting 2023-08-22T14:39:35Z INFO [firewall] allowing VPN connection... 2023-08-22T14:39:35Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022 2023-08-22T14:39:35Z INFO [openvpn] library versions: OpenSSL 3.1.2 1 Aug 2023, LZO 2.10 2023-08-22T14:39:35Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]87.249.134.67:1194 2023-08-22T14:39:35Z INFO [openvpn] UDP link local: (not bound) 2023-08-22T14:39:35Z INFO [openvpn] UDP link remote: [AF_INET]87.249.134.67:1194 2023-08-22T14:39:35Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1534', remote='link-mtu 1558' 2023-08-22T14:39:35Z WARN [openvpn] 'auth' is used inconsistently, local='auth [null-digest]', remote='auth SHA1' 2023-08-22T14:39:35Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' 2023-08-22T14:39:35Z INFO [openvpn] [vpn32.prd.chicago.ovpn.com] Peer Connection Initiated with [AF_INET]87.249.134.67:1194 2023-08-22T14:39:36Z INFO [openvpn] TUN/TAP device tun0 opened 2023-08-22T14:39:36Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500 2023-08-22T14:39:36Z INFO [openvpn] /sbin/ip link set dev tun0 up 2023-08-22T14:39:36Z INFO [openvpn] /sbin/ip addr add dev tun0 10.128.0.73/22 2023-08-22T14:39:36Z ERROR [openvpn] OpenVPN tried to add an IP route which already exists (RTNETLINK answers: File exists) 2023-08-22T14:39:36Z WARN [openvpn] Previous error details: Linux route add command failed: external program exited with error status: 2 2023-08-22T14:39:36Z INFO [openvpn] UID set to nonrootuser 2023-08-22T14:39:36Z INFO [openvpn] Initialization Sequence Completed 2023-08-22T14:39:40Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:47677->127.0.0.11:53: i/o timeout 2023-08-22T14:39:40Z INFO [ip getter] retrying in 5s 2023-08-22T14:39:46Z INFO [healthcheck] program has been unhealthy for 11s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-08-22T14:39:46Z INFO [vpn] stopping 2023-08-22T14:39:46Z INFO [vpn] starting 2023-08-22T14:39:46Z INFO [firewall] allowing VPN connection... 2023-08-22T14:39:46Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022 2023-08-22T14:39:46Z INFO [openvpn] library versions: OpenSSL 3.1.2 1 Aug 2023, LZO 2.10 2023-08-22T14:39:46Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]87.249.134.67:1194 2023-08-22T14:39:46Z INFO [openvpn] UDP link local: (not bound) 2023-08-22T14:39:46Z INFO [openvpn] UDP link remote: [AF_INET]87.249.134.67:1194 2023-08-22T14:39:46Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1534', remote='link-mtu 1558' 2023-08-22T14:39:46Z WARN [openvpn] 'auth' is used inconsistently, local='auth [null-digest]', remote='auth SHA1' 2023-08-22T14:39:46Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' 2023-08-22T14:39:46Z INFO [openvpn] [vpn32.prd.chicago.ovpn.com] Peer Connection Initiated with [AF_INET]87.249.134.67:1194 2023-08-22T14:39:48Z INFO [openvpn] TUN/TAP device tun0 opened 2023-08-22T14:39:48Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500 2023-08-22T14:39:48Z INFO [openvpn] /sbin/ip link set dev tun0 up 2023-08-22T14:39:48Z INFO [openvpn] /sbin/ip addr add dev tun0 10.128.0.231/22 2023-08-22T14:39:48Z ERROR [openvpn] OpenVPN tried to add an IP route which already exists (RTNETLINK answers: File exists) 2023-08-22T14:39:48Z WARN [openvpn] Previous error details: Linux route add command failed: external program exited with error status: 2 2023-08-22T14:39:48Z INFO [openvpn] UID set to nonrootuser 2023-08-22T14:39:48Z INFO [openvpn] Initialization Sequence Completed 2023-08-22T14:39:55Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:49465->127.0.0.11:53: i/o timeout 2023-08-22T14:39:55Z INFO [ip getter] retrying in 5s 2023-08-22T14:40:02Z INFO [healthcheck] program has been unhealthy for 16s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-08-22T14:40:02Z INFO [vpn] stopping 2023-08-22T14:40:02Z INFO [vpn] starting 2023-08-22T14:40:02Z INFO [firewall] allowing VPN connection... 2023-08-22T14:40:02Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022 2023-08-22T14:40:02Z INFO [openvpn] library versions: OpenSSL 3.1.2 1 Aug 2023, LZO 2.10 2023-08-22T14:40:02Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]87.249.134.67:1194 2023-08-22T14:40:02Z INFO [openvpn] UDP link local: (not bound) 2023-08-22T14:40:02Z INFO [openvpn] UDP link remote: [AF_INET]87.249.134.67:1194 2023-08-22T14:40:02Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1534', remote='link-mtu 1558' 2023-08-22T14:40:02Z WARN [openvpn] 'auth' is used inconsistently, local='auth [null-digest]', remote='auth SHA1' 2023-08-22T14:40:02Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' 2023-08-22T14:40:02Z INFO [openvpn] [vpn32.prd.chicago.ovpn.com] Peer Connection Initiated with [AF_INET]87.249.134.67:1194 2023-08-22T14:40:04Z INFO [openvpn] TUN/TAP device tun0 opened 2023-08-22T14:40:04Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500 2023-08-22T14:40:04Z INFO [openvpn] /sbin/ip link set dev tun0 up 2023-08-22T14:40:04Z INFO [openvpn] /sbin/ip addr add dev tun0 10.128.1.166/22 2023-08-22T14:40:04Z ERROR [openvpn] OpenVPN tried to add an IP route which already exists (RTNETLINK answers: File exists) 2023-08-22T14:40:04Z WARN [openvpn] Previous error details: Linux route add command failed: external program exited with error status: 2 2023-08-22T14:40:04Z INFO [openvpn] UID set to nonrootuser 2023-08-22T14:40:04Z INFO [openvpn] Initialization Sequence Completed 2023-08-22T14:40:10Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:52560->127.0.0.11:53: i/o timeout 2023-08-22T14:40:10Z INFO [ip getter] retrying in 5s 2023-08-22T14:40:25Z ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 127.0.0.11:53: read udp 127.0.0.1:56661->127.0.0.11:53: i/o timeout 2023-08-22T14:40:25Z INFO [ip getter] retrying in 5s 2023-08-22T14:40:25Z INFO [healthcheck] program has been unhealthy for 21s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md) 2023-08-22T14:40:25Z INFO [vpn] stopping 2023-08-22T14:40:25Z INFO [vpn] starting 2023-08-22T14:40:25Z INFO [firewall] allowing VPN connection... 2023-08-22T14:40:25Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022 2023-08-22T14:40:25Z INFO [openvpn] library versions: OpenSSL 3.1.2 1 Aug 2023, LZO 2.10 2023-08-22T14:40:25Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]87.249.134.67:1194 2023-08-22T14:40:25Z INFO [openvpn] UDP link local: (not bound) 2023-08-22T14:40:25Z INFO [openvpn] UDP link remote: [AF_INET]87.249.134.67:1194 2023-08-22T14:40:25Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1534', remote='link-mtu 1558' 2023-08-22T14:40:25Z WARN [openvpn] 'auth' is used inconsistently, local='auth [null-digest]', remote='auth SHA1' 2023-08-22T14:40:25Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' 2023-08-22T14:40:25Z INFO [openvpn] [vpn32.prd.chicago.ovpn.com] Peer Connection Initiated with [AF_INET]87.249.134.67:1194 2023-08-22T14:40:27Z INFO [openvpn] TUN/TAP device tun0 opened 2023-08-22T14:40:27Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500 2023-08-22T14:40:27Z INFO [openvpn] /sbin/ip link set dev tun0 up 2023-08-22T14:40:27Z INFO [openvpn] /sbin/ip addr add dev tun0 10.128.3.59/22 2023-08-22T14:40:27Z ERROR [openvpn] OpenVPN tried to add an IP route which already exists (RTNETLINK answers: File exists) 2023-08-22T14:40:27Z WARN [openvpn] Previous error details: Linux route add command failed: external program exited with error status: 2 2023-08-22T14:40:27Z INFO [openvpn] UID set to nonrootuser 2023-08-22T14:40:27Z INFO [openvpn] Initialization Sequence Completed

2023-08-22T14:40:35Z WARN Caught OS signal terminated, shutting down 2023-08-22T14:40:35Z INFO dns ticker: terminated ✔️ 2023-08-22T14:40:35Z INFO updater ticker: terminated ✔️ 2023-08-22T14:40:35Z INFO http server: terminated ✔️ 2023-08-22T14:40:35Z INFO control: terminated ✔️ 2023-08-22T14:40:35Z INFO updater: terminated ✔️ 2023-08-22T14:40:35Z INFO public IP: terminated ✔️ 2023-08-22T14:40:35Z INFO tickers: terminated ✔️ 2023-08-22T14:40:35Z INFO HTTP health server: terminated ✔️ 2023-08-22T14:40:35Z INFO vpn: terminated ✔️ 2023-08-22T14:40:35Z INFO port forwarding: terminated ✔️ 2023-08-22T14:40:35Z INFO shadowsocks proxy: terminated ✔️ 2023-08-22T14:40:35Z INFO unbound: terminated ✔️ 2023-08-22T14:40:35Z INFO [ip getter] Removing ip file /gluetun/ip 2023-08-22T14:40:35Z ERROR [ip getter] remove /gluetun/ip: no such file or directory 2023-08-22T14:40:35Z INFO public IP: terminated ✔️ 2023-08-22T14:40:36Z WARN other: group shutdown timed out: 1 out of 4 goroutines: http proxy: goroutine shutdown timed out: after 400ms ⚠️ 2023-08-22T14:40:36Z INFO [routing] routing cleanup... 2023-08-22T14:40:36Z INFO [routing] default route found: interface eth0, gateway 172.18.0.1, assigned IP 172.18.0.6 and family v4 2023-08-22T14:40:36Z INFO [routing] deleting route for 0.0.0.0/0 2023-08-22T14:40:36Z DEBUG [routing] ip route delete 0.0.0.0/0 via 172.18.0.1 dev eth0 table 200 2023-08-22T14:40:36Z DEBUG [routing] ip rule del from 172.18.0.6/32 lookup 200 pref 100 2023-08-22T14:40:36Z WARN Shutdown not completed gracefully: ordered shutdown timed out: other: group shutdown timed out: 1 out of 4 goroutines: http proxy: goroutine shutdown timed out: after 400ms

wesjdj commented 1 year ago

I was able to workaround by using the qmcgaw/gluetun:pr-1120 image. I'm using Unraid, ProtonVPN & Wireguard.

benfishbus commented 1 year ago

I was able to workaround by using the qmcgaw/gluetun:pr-1120 image. I'm using Unraid, ProtonVPN & Wireguard.

Interesting. For my provider, OpenVPN works perfectly with this image, but Wireguard still does not.

benfishbus commented 1 year ago

I was able to workaround by using the qmcgaw/gluetun:pr-1120 image. I'm using Unraid, ProtonVPN & Wireguard.

Interesting. For my provider, OpenVPN works perfectly with this image, but Wireguard still does not.

Turns out this was a fluke. I am back to using the latest image and connected fine. I went through multiple iterations of OpenVPN servers, and Wireguard servers, and am now back to my original Wireguard servers with no timeout errors. So I have no idea what or where the problem is/was - OVPN, docker, gluetun, ???