search

qdm12 / gluetun

VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.
https://hub.docker.com/r/qmcgaw/gluetun
MIT License
8.04k stars 372 forks source link

Bug: Connecting to NextGen servers of PIA doesn't work. #271

Closed Ton-O closed 4 years ago

Ton-O commented 4 years ago

TLDR: Describe your issue in a one liner here

  1. Is this urgent?

    • [x] Yes
    • [ ] No

  2. What VPN service provider are you using?

    • [x] PIA
    • [ ] Mullvad
    • [ ] Windscribe
    • [ ] Surfshark
    • [ ] Cyberghost

  3. What's the version of the program?

    See the line at the top of your logs

    Running version latest built on 2020-10-26T02:52:47Z (commit 0c81154)

  4. What are you using to run the container?

    • [x] Docker run
    • [ ] Docker Compose
    • [ ] Kubernetes
    • [ ] Docker stack
    • [ ] Docker swarm
    • [ ] Podman
    • [ ] Other:

  5. Extra information

Logs:

=========================================
================ Gluetun ================
=========================================
==== A mix of OpenVPN, DNS over TLS, ====
======= Shadowsocks and Tinyproxy =======
========= all glued up with Go ==========
=========================================
=========== For tunneling to ============
======== your favorite VPN server =======
=========================================
=== Made with ❤️  by github.com/qdm12 ====
=========================================

Running version latest built on 2020-10-26T02:52:47Z (commit 0c81154)

📣  Port forwarding is working for PIA v4 servers

🔧  Need help? https://github.com/qdm12/gluetun/issues/new
💻  Email? quentin.mcgaw@gmail.com
☕  Slack? Join from the Slack button on Github
💸  Help me? https://github.com/sponsors/qdm12
2020-10-26T08:21:00.519Z    INFO    TinyProxy version: 1.10.0
2020-10-26T08:21:00.521Z    INFO    OpenVPN version: 2.4.9
2020-10-26T08:21:00.522Z    INFO    Unbound version: 1.10.1
2020-10-26T08:21:00.522Z    INFO    IPtables version: v1.8.4
2020-10-26T08:21:00.523Z    INFO    Settings summary below:
OpenVPN settings:
|--User: [redacted]
|--Password: [redacted]
|--Verbosity level: 1
|--Run as root: no
|--Private Internet Access settings:
 |--Network protocol: udp
 |--Regions: ca montreal
 |--Encryption preset: strong
 |--Port forwarding: on, saved in /tmp/gluetun/forwarded_port
System settings:
|--User ID: 1000
|--Group ID: 1000
|--Timezone: 
|--IP Status filepath: /tmp/gluetun/ip
DNS over TLS settings:
 |--DNS over TLS provider:
  |--cloudflare
 |--Caching: enabled
 |--Block malicious: enabled
 |--Block surveillance: disabled
 |--Block ads: disabled
 |--Allowed hostnames:
  |--
 |--Private addresses:
  |--127.0.0.1/8
  |--10.0.0.0/8
  |--172.16.0.0/12
  |--192.168.0.0/16
  |--169.254.0.0/16
  |--::1/128
  |--fc00::/7
  |--fe80::/10
  |--::ffff:0:0/96
 |--Verbosity level: 1/5
 |--Verbosity details level: 0/4
 |--Validation log level: 0/2
 |--IPv6 resolution: disabled
 |--Update: every 24h0m0s
 |--Keep nameserver (disabled blocking): no
Firewall settings:
 |--VPN input ports: 
 |--Input ports: 
TinyProxy settings: disabled
ShadowSocks settings: disabled
HTTP Control server:
 |--Listening port: 8000
 |--Logging: true
Public IP check period: 12h0m0s
Version information: enabled
Updater: disabled

2020-10-26T08:21:00.557Z    INFO    storage: Merging by most recent 6400 hardcoded servers and 6400 servers read from /gluetun/servers.json
2020-10-26T08:21:00.587Z    INFO    routing: default route found: interface eth0, gateway 172.17.0.1
2020-10-26T08:21:00.587Z    INFO    routing: local subnet found: 172.17.0.0/16
2020-10-26T08:21:00.588Z    INFO    routing: default route found: interface eth0, gateway 172.17.0.1
2020-10-26T08:21:00.588Z    INFO    routing: adding route for 0.0.0.0/0
2020-10-26T08:21:00.588Z    INFO    openvpn configurator: checking for device /dev/net/tun
2020-10-26T08:21:00.588Z    WARN    TUN device is not available: open /dev/net/tun: no such file or directory
2020-10-26T08:21:00.588Z    INFO    openvpn configurator: creating /dev/net/tun
2020-10-26T08:21:00.588Z    INFO    firewall: enabling...
2020-10-26T08:21:00.602Z    INFO    firewall: enabled successfully
2020-10-26T08:21:00.602Z    INFO    http server: listening on 0.0.0.0:8000
2020-10-26T08:21:00.602Z    INFO    Launching standard output merger
2020-10-26T08:21:00.603Z    INFO    dns over tls: falling back on plaintext DNS at address 1.1.1.1
2020-10-26T08:21:00.603Z    INFO    dns configurator: using DNS address 1.1.1.1 internally
2020-10-26T08:21:00.603Z    INFO    dns configurator: using DNS address 1.1.1.1 system wide
2020-10-26T08:21:00.603Z    INFO    firewall: setting VPN connection through firewall...
2020-10-26T08:21:00.605Z    INFO    openvpn configurator: starting openvpn
2020-10-26T08:21:00.609Z    INFO    openvpn: OpenVPN 2.4.9 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Apr 20 2020
2020-10-26T08:21:00.609Z    INFO    openvpn: library versions: OpenSSL 1.1.1g  21 Apr 2020, LZO 2.10
2020-10-26T08:21:00.612Z    INFO    openvpn: CRL: loaded 1 CRLs from file [[INLINE]]
2020-10-26T08:21:00.612Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]172.98.71.62:1197
2020-10-26T08:21:00.612Z    INFO    openvpn: UDP link local: (not bound)
2020-10-26T08:21:00.612Z    INFO    openvpn: UDP link remote: [AF_INET]172.98.71.62:1197
2020-10-26T08:21:01.252Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1570', remote='link-mtu 1542'
2020-10-26T08:21:01.252Z    WARN    openvpn: 'cipher' is used inconsistently, local='cipher AES-256-CBC', remote='cipher BF-CBC'
2020-10-26T08:21:01.252Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA256', remote='auth SHA1'
2020-10-26T08:21:01.252Z    WARN    openvpn: 'keysize' is used inconsistently, local='keysize 256', remote='keysize 128'
2020-10-26T08:21:01.253Z    INFO    openvpn: [montreal403] Peer Connection Initiated with [AF_INET]172.98.71.62:1197
2020-10-26T08:21:02.562Z    INFO    openvpn: TUN/TAP device tun0 opened
2020-10-26T08:21:02.562Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2020-10-26T08:21:02.563Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.60.110.18/24 broadcast 10.60.110.255
2020-10-26T08:21:02.565Z    INFO    openvpn: UID set to nonrootuser
2020-10-26T08:21:02.566Z    INFO    openvpn: Initialization Sequence Completed
2020-10-26T08:21:02.566Z    INFO    dns configurator: downloading root hints from https://raw.githubusercontent.com/qdm12/files/master/named.root.updated
2020-10-26T08:21:02.566Z    INFO    VPN routing IP address: 172.98.71.62
2020-10-26T08:21:03.183Z    INFO    dns configurator: downloading root key from https://raw.githubusercontent.com/qdm12/files/master/root.key.updated
2020-10-26T08:21:03.300Z    INFO    dns configurator: generating Unbound configuration
2020-10-26T08:21:04.086Z    INFO    dns configurator: 60675 hostnames blocked overall
2020-10-26T08:21:04.086Z    INFO    dns configurator: 2699 IP addresses blocked overall
2020-10-26T08:21:04.118Z    INFO    dns configurator: starting unbound
2020-10-26T08:21:04.118Z    INFO    dns configurator: using DNS address 127.0.0.1 internally
2020-10-26T08:21:04.118Z    INFO    dns configurator: using DNS address 127.0.0.1 system wide
2020-10-26T08:21:04.333Z    INFO    unbound: init module 0: validator
2020-10-26T08:21:04.333Z    INFO    unbound: init module 1: iterator
2020-10-26T08:21:04.366Z    INFO    unbound: start of service (unbound 1.10.1).
2020-10-26T08:21:04.848Z    INFO    unbound: generate keytag query _ta-4a5c-4f66. NULL IN
2020-10-26T08:21:06.653Z    INFO    dns over tls: DNS over TLS is ready
2020-10-26T08:21:07.566Z    INFO    VPN gateway IP address: 10.60.110.1
2020-10-26T08:21:08.580Z    INFO    You are running on the bleeding edge of latest!
2020-10-26T08:21:10.412Z    INFO    ip getter: Public IP address is 172.98.71.62
2020-10-26T08:21:12.568Z    ERROR   port forwarding: cannot obtain token: Get "https://p5140218:***@10.0.0.1/authv3/generateToken": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
2020-10-26T08:21:12.568Z    INFO    port forwarding: Trying again in 10s
2020-10-26T08:21:27.569Z    ERROR   port forwarding: cannot obtain token: Get "https://p5140218:***@10.0.0.1/authv3/generateToken": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
2020-10-26T08:21:27.569Z    INFO    port forwarding: Trying again in 10s
2020-10-26T08:21:37.286Z    WARN    Caught OS signal terminated, shutting down
2020-10-26T08:21:37.286Z    WARN    ip getter: loop exited
2020-10-26T08:21:37.286Z    INFO    Clearing ip status file /tmp/gluetun/ip
2020-10-26T08:21:37.286Z    WARN    http server: context canceled: exiting loop
2020-10-26T08:21:37.286Z    WARN    openvpn: context canceled: exiting loop
2020-10-26T08:21:37.286Z    WARN    port forwarding: loop exited
2020-10-26T08:21:37.286Z    INFO    Clearing forwarded port status file /tmp/gluetun/forwarded_port
2020-10-26T08:21:37.286Z    WARN    dns over tls: context canceled: exiting loop
2020-10-26T08:21:37.289Z    WARN    dns over tls: loop exited
2020-10-26T08:21:37.315Z    WARN    openvpn: loop exited
2020-10-26T08:21:37.786Z    WARN    http server: loop exited
2020-10-26T08:21:37.786Z    INFO    Shutdown successful
2020-10-26T08:21:37.787Z    INFO    routing: default route found: interface eth0, gateway 172.17.0.1
2020-10-26T08:21:37.787Z    INFO    routing: deleting route for 0.0.0.0/0

Configuration file:

No composer, used Docker run

Host OS: Linux version 5.3.0-62-generic (buildd@lcy01-amd64-018) (gcc version 9.2.1 20191008 (Ubuntu 9.2.1-9ubuntu2)) #56-Ubuntu SMP Tue Jun 23 11:20:52 UTC 2020

qdm12 commented 4 years ago

Hello! I increased the timeout to 30 seconds instead of 10, can you please try it? Just repull the image

docker pull qmcgaw/private-internet-access
Ton-O commented 4 years ago

Hi, I noticed some changes already yesterday afternoon, have been testring it since then, so far, it's looking good. Will keep an eye on it, if I see any issues, I'll report back. Thanks so far!