Help: Don't have a new ip with Surfshark

[zgababa]

Host OS (approximate answer is fine too): Ubuntu 18

Is this urgent?: No

What VPN provider are you using: NordVpn & Surfshark

What is the version of the program (See the line at the top of your logs)

Running version latest built on 2020-03-13T01:30:06Z (commit d0f678c)

What's the problem 🤔

When I do a /restart on containers running with NordVpn I receive a new ip, but when I do the same thing with container runnning with Surfshark I receive the same ip than before.

Share your logs...

...careful to remove i.e. token information with PIA port forwarding

2021-01-26T17:30:07.689Z    INFO    openvpn: [se-sto-v007.prod.surfshark.com] Peer Connection Initiated with [AF_INET]199.247.8.20:1194
2021-01-26T17:30:08.953Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-26T17:30:08.953Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-26T17:30:08.953Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-26T17:30:08.956Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.14/24
2021-01-26T17:30:08.958Z    INFO    openvpn: ERROR: Linux route add command failed: external program exited with error status: 2
2021-01-26T17:30:08.961Z    INFO    openvpn: UID set to nonrootuser
2021-01-26T17:30:08.963Z    INFO    openvpn: Initialization Sequence Completed
2021-01-26T17:30:08.963Z    INFO    VPN routing IP address: 199.247.8.20
2021-01-26T17:33:08.943Z    INFO    openvpn: [se-sto-v007.prod.surfshark.com] Inactivity timeout (--ping-restart), restarting
2021-01-26T17:33:08.945Z    INFO    openvpn: ERROR: Linux route delete command failed: external program exited with error status: 2
2021-01-26T17:33:08.967Z    INFO    openvpn: ERROR: Linux route delete command failed: external program exited with error status: 2
2021-01-26T17:33:08.971Z    INFO    openvpn: ERROR: Linux route delete command failed: external program exited with error status: 2
2021-01-26T17:33:08.975Z    INFO    openvpn: /sbin/ip addr del dev tun0 10.8.8.14/24
2021-01-26T17:33:08.977Z    INFO    openvpn: Linux ip addr del failed: external program exited with error status: 2
2021-01-26T17:33:08.998Z    INFO    openvpn: SIGUSR1[soft,ping-restart] received, process restarting
2021-01-26T17:33:18.999Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]199.247.8.20:1194
2021-01-26T17:33:18.999Z    INFO    openvpn: UDP link local: (not bound)
2021-01-26T17:33:18.999Z    INFO    openvpn: UDP link remote: [AF_INET]199.247.8.20:1194
2021-01-26T17:33:19.229Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-26T17:33:19.229Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-26T17:33:19.229Z    INFO    openvpn: [se-sto-v007.prod.surfshark.com] Peer Connection Initiated with [AF_INET]199.247.8.20:1194
2021-01-26T17:33:25.816Z    INFO    openvpn: ERROR: Cannot ioctl TUNSETIFF tun: Operation not permitted (errno=1)
2021-01-26T17:33:25.816Z    INFO    openvpn: Exiting due to fatal error
2021-01-26T17:33:25.821Z    ERROR   openvpn: exit status 1
2021-01-26T17:33:25.821Z    INFO    openvpn: retrying in 15s
2021-01-26T17:33:25.821Z    WARN    close |0: file already closed
2021-01-26T17:33:34.435Z    INFO    http server: 200 GET /ip wrote 29B to 172.18.0.54:44752 in 17.585µs
2021-01-26T17:33:34.453Z    INFO    http server: openvpn: already crashed
2021-01-26T17:33:34.453Z    INFO    http server: openvpn: already crashed
2021-01-26T17:33:34.453Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.54:44754 in 101.591µs
2021-01-26T17:33:40.822Z    INFO    firewall: setting VPN connection through firewall...
2021-01-26T17:33:40.822Z    INFO    openvpn configurator: starting openvpn
2021-01-26T17:33:40.829Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-26T17:33:40.831Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-26T17:33:40.831Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-26T17:33:40.832Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]199.247.8.20:1194
2021-01-26T17:33:40.832Z    INFO    openvpn: UDP link local: (not bound)
2021-01-26T17:33:40.834Z    INFO    openvpn: UDP link remote: [AF_INET]199.247.8.20:1194
2021-01-26T17:33:41.064Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-26T17:33:41.064Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-26T17:33:41.065Z    INFO    openvpn: [se-sto-v007.prod.surfshark.com] Peer Connection Initiated with [AF_INET]199.247.8.20:1194
2021-01-26T17:33:47.464Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-26T17:33:47.467Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-26T17:33:47.468Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-26T17:33:47.482Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.19/24
2021-01-26T17:33:47.483Z    INFO    openvpn: ERROR: Linux route add command failed: external program exited with error status: 2
2021-01-26T17:33:47.499Z    INFO    openvpn: UID set to nonrootuser
2021-01-26T17:33:47.499Z    INFO    openvpn: Initialization Sequence Completed
2021-01-26T17:33:47.500Z    INFO    VPN routing IP address: 199.247.8.20
2021-01-26T17:37:34.558Z    INFO    http server: 200 GET /ip wrote 29B to 172.18.0.54:47492 in 12.785µs
2021-01-26T17:37:34.560Z    INFO    openvpn: stopping
2021-01-26T17:37:34.602Z    INFO    http server: openvpn: stopped
2021-01-26T17:37:34.602Z    INFO    openvpn: starting
2021-01-26T17:37:34.603Z    INFO    firewall: setting VPN connection through firewall...
2021-01-26T17:37:34.603Z    INFO    openvpn configurator: starting openvpn
2021-01-26T17:37:34.604Z    INFO    http server: openvpn: running
2021-01-26T17:37:34.604Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.54:47494 in 43.927991ms
2021-01-26T17:37:34.607Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-26T17:37:34.608Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-26T17:37:34.608Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-26T17:37:34.609Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]199.247.8.20:1194
2021-01-26T17:37:34.610Z    INFO    openvpn: UDP link local: (not bound)
2021-01-26T17:37:34.610Z    INFO    openvpn: UDP link remote: [AF_INET]199.247.8.20:1194
2021-01-26T17:37:34.841Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-26T17:37:34.841Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-26T17:37:34.841Z    INFO    openvpn: [se-sto-v007.prod.surfshark.com] Peer Connection Initiated with [AF_INET]199.247.8.20:1194
2021-01-26T17:37:41.046Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-26T17:37:41.046Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-26T17:37:41.047Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-26T17:37:41.050Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.10/24
2021-01-26T17:37:41.053Z    INFO    openvpn: ERROR: Linux route add command failed: external program exited with error status: 2
2021-01-26T17:37:41.061Z    INFO    openvpn: UID set to nonrootuser
2021-01-26T17:37:41.061Z    INFO    openvpn: Initialization Sequence Completed
2021-01-26T17:37:41.062Z    INFO    VPN routing IP address: 199.247.8.20
2021-01-26T17:41:34.709Z    INFO    http server: 200 GET /ip wrote 29B to 172.18.0.54:50390 in 15.991µs
2021-01-26T17:41:34.710Z    INFO    openvpn: stopping
2021-01-26T17:41:34.742Z    INFO    http server: openvpn: stopped
2021-01-26T17:41:34.742Z    INFO    openvpn: starting
2021-01-26T17:41:34.743Z    INFO    firewall: setting VPN connection through firewall...
2021-01-26T17:41:34.743Z    INFO    openvpn configurator: starting openvpn
2021-01-26T17:41:34.744Z    INFO    http server: openvpn: running
2021-01-26T17:41:34.744Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.54:50392 in 33.616567ms
2021-01-26T17:41:34.748Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-26T17:41:34.749Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-26T17:41:34.749Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-26T17:41:34.750Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]199.247.8.20:1194
2021-01-26T17:41:34.750Z    INFO    openvpn: UDP link local: (not bound)
2021-01-26T17:41:34.750Z    INFO    openvpn: UDP link remote: [AF_INET]199.247.8.20:1194
2021-01-26T17:41:35.027Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-26T17:41:35.027Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-26T17:41:35.028Z    INFO    openvpn: [se-sto-v007.prod.surfshark.com] Peer Connection Initiated with [AF_INET]199.247.8.20:1194
2021-01-26T17:41:36.178Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-26T17:41:36.179Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-26T17:41:36.194Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-26T17:41:36.198Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.8/24
2021-01-26T17:41:36.201Z    INFO    openvpn: ERROR: Linux route add command failed: external program exited with error status: 2
2021-01-26T17:41:36.208Z    INFO    openvpn: UID set to nonrootuser
2021-01-26T17:41:36.208Z    INFO    openvpn: Initialization Sequence Completed
2021-01-26T17:41:36.208Z    INFO    VPN routing IP address: 199.247.8.20

As you can see, that with 3 restarts, I always receive 199.247.8.20 ip

Is it a limitation of Surfshark ?

Here's the REGION that I use : UK France, US Netherlands, India UK, France Sweden, Singapore Hong Kong, US Portugal, Germany Singapour, UK Germany, France Sweden, UK London, Japan Tokyo st001

What are you using to run your container?: Docker Compose

Please also share your configuration file:

version: "3"
services:
  gluetun1:
    image: qmcgaw/gluetun:latest
    container_name: gluetun1
    cap_add:
      - NET_ADMIN
    ports:
      - 8001:8001/tcp # Built-in HTTP control server
    volumes:
      - ./gluetun:/gluetun
    restart: always
  app1:
    image: app-x
    volumes:
      - "./app:/app"
    command: "node /app/server.js"
    restart: on-failure

[qdm12]

Before doing anything, please just update the image and try again? As your image dates from 2020-03-13 and there has been quite some work since then 😉

docker pull qmcgaw/gluetun
# or with docker-compose
docker-compose pull

I would tend to think the random picking of a server got implemented sometime in 2020, but can't say a date for sure from the top of my head.

[zgababa]

My bad ! I forgot to update the default version from the template. Here's the version of my test. Running version latest built on 2021-01-23T17:02:06Z (commit 937d09f)

[qdm12]

Does it work with the newer version? Or you still get the same IP? What are your environment variables (except credentials)?

[zgababa]

For my 11 containers running with Surfshark

I have these variables :

      - HTTP_CONTROL_SERVER_PORT=(set manually)
      - REGION= one from this list [UK France, US Netherlands, India UK, France Sweden, Singapore Hong Kong, US Portugal, Germany Singapour, UK Germany, France Sweden, UK London, Japan Tokyo st001]
      - VPNSP=surfshark
      - OPENVPN_USER=secret
      - OPENVPN_PASSWORD=secret

That's all.

Btw, sometimes I receive the same ip with NordVPN, so I implemented a retry. With another one or two /restart gluetun gives me antother ip.

This fix doesn't works with Surfshark, I never received a new ip contrary to NordVPN.

I restarted my containers with Running version latest built on 2021-01-26T01:12:09Z (commit bc83b75)but nothing changed.

[qdm12]

Some Surfshark servers only have one IP address, try specifying multiple regions separated by a comma? That will increase the IP address space to pick one from at random.

[zgababa]

It works !

I've been abused by marketing, they announce 3200 servers and there are only 316 different ips, this is even worst with PureVPN (6500 servers / 80 ips)

Only NordVPN seems to have as many ip as they have servers.

Thanks Quentin !

[zgababa]

Arf, finally it didn't work after the third restart.

I set all the region with comma like this :

REGION : Albania,Argentina Buenos Aires,Australia Adelaide,Australia Brisbane,Australia Melbourne,Australia Perth,Australia Sydney,Australia US,Austria,Azerbaijan,Belgium,Bosnia and Herzegovina,Brazil,Bulgaria,Canada Montreal,Canada Toronto,Canada Toronto mp001,Canada US,Canada Vancouver,Chile,Colombia,Costa Rica,Croatia,Cyprus,Czech Republic,Denmark,Estonia,Finland,France Bordeaux,France Marseilles,France Paris,France Sweden,Germany Berlin,Germany Frankfurt am Main,Germany Frankfurt am Main st001,Germany Frankfurt am Main st002,Germany Frankfurt am Main st003,Germany Frankfurt mp001,Germany Munich,Germany Nuremberg,Germany Singapour,Germany UK,Greece,Hong Kong,Hungary,Iceland,India Chennai,India Indore,India Mumbai,India UK,Indonesia,Ireland,Israel,Italy Milan,Italy Rome,Japan Tokyo,Japan Tokyo st001,Japan Tokyo st002,Japan Tokyo st003,Japan Tokyo st004,Japan Tokyo st005,Japan Tokyo st006,Japan Tokyo st007,Kazakhstan,Korea,Latvia,Libya,Luxembourg,Malaysia,Mexico City Mexico,Moldova,Netherlands Amsterdam,Netherlands Amsterdam mp001,Netherlands Amsterdam st001,Netherlands US,New Zealand,Nigeria,North Macedonia,Norway,Paraguay,Philippines,Poland Gdansk,Poland Warsaw,Portugal Lisbon,Portugal Loule,Portugal Porto,Romania,Russia Moscow,Russia St. Petersburg,Serbia,Singapore,Singapore Hong Kong,Singapore Netherlands,Singapore in,Singapore mp001,Singapore st001,Singapore st002,Singapore st003,Singapore st004,Slovekia,Slovenia,South Africa,Spain Barcelona,Spain Madrid,Spain Valencia,Sweden,Switzerland,Taiwan,Thailand,Turkey,Turkey Istanbul,UK France,UK Germany,UK Glasgow,UK London,UK London mp001,UK London st001,UK London st002,UK London st003,UK London st004,UK London st005,UK Manchester,US Atlanta,US Bend,US Boston,US Buffalo,US Charlotte,US Chicago,US Dallas,US Denver,US Gahanna,US Houston,US Kansas City,US Las Vegas,US Latham,US Los Angeles,US Maryland,US Miami,US Netherlands,US New York City,US New York City mp001,US New York City st001,US New York City st002,US New York City st003,US New York City st004,US New York City st005,US Orlando,US Phoenix,US Portugal,US Saint Louis,US Salt Lake City,US San Francisco,US San Francisco mp001,US Seatle,US Tampa,Ukraine,United Arab Emirates,Vietnam

Here's

=========================================
================ Gluetun ================
=========================================
==== A mix of OpenVPN, DNS over TLS, ====
======= Shadowsocks and HTTP proxy ======
========= all glued up with Go ==========
=========================================
=========== For tunneling to ============
======== your favorite VPN server =======
=========================================
=== Made with ❤️  by github.com/qdm12 ====
=========================================

Running version latest built on 2021-01-26T01:12:09Z (commit bc83b75)

🔧  Need help? https://github.com/qdm12/gluetun/issues/new
💻  Email? quentin.mcgaw@gmail.com
☕  Slack? Join from the Slack button on Github
💸  Help me? https://github.com/sponsors/qdm12
2021-01-28T21:32:38.299Z    INFO    OpenVPN version: 2.5.0
2021-01-28T21:32:38.341Z    INFO    Unbound version: 1.13.0
2021-01-28T21:32:38.355Z    INFO    IPtables version: v1.8.6
2021-01-28T21:32:38.361Z    INFO    Settings summary below:
OpenVPN settings:
|--User: [redacted]
|--Password: [redacted]
|--Verbosity level: 1
|--Run as root: no
|--Surfshark settings:
 |--Network protocol: udp
 |--Regions: albania, argentina buenos aires, australia adelaide, australia brisbane, australia melbourne, australia perth, australia sydney, australia us, austria, azerbaijan, belgium, bosnia and herzegovina, brazil, bulgaria, canada montreal, canada toronto, canada toronto mp001, canada us, canada vancouver, chile, colombia, costa rica, croatia, cyprus, czech republic, denmark, estonia, finland, france bordeaux, france marseilles, france paris, france sweden, germany berlin, germany frankfurt am main, germany frankfurt am main st001, germany frankfurt am main st002, germany frankfurt am main st003, germany frankfurt mp001, germany munich, germany nuremberg, germany singapour, germany uk, greece, hong kong, hungary, iceland, india chennai, india indore, india mumbai, india uk, indonesia, ireland, israel, italy milan, italy rome, japan tokyo, japan tokyo st001, japan tokyo st002, japan tokyo st003, japan tokyo st004, japan tokyo st005, japan tokyo st006, japan tokyo st007, kazakhstan, korea, latvia, libya, luxembourg, malaysia, mexico city mexico, moldova, netherlands amsterdam, netherlands amsterdam mp001, netherlands amsterdam st001, netherlands us, new zealand, nigeria, north macedonia, norway, paraguay, philippines, poland gdansk, poland warsaw, portugal lisbon, portugal loule, portugal porto, romania, russia moscow, russia st. petersburg, serbia, singapore, singapore hong kong, singapore netherlands, singapore in, singapore mp001, singapore st001, singapore st002, singapore st003, singapore st004, slovekia, slovenia, south africa, spain barcelona, spain madrid, spain valencia, sweden, switzerland, taiwan, thailand, turkey, turkey istanbul, uk france, uk germany, uk glasgow, uk london, uk london mp001, uk london st001, uk london st002, uk london st003, uk london st004, uk london st005, uk manchester, us atlanta, us bend, us boston, us buffalo, us charlotte, us chicago, us dallas, us denver, us gahanna, us houston, us kansas city, us las vegas, us latham, us los angeles, us maryland, us miami, us netherlands, us new york city, us new york city mp001, us new york city st001, us new york city st002, us new york city st003, us new york city st004, us new york city st005, us orlando, us phoenix, us portugal, us saint louis, us salt lake city, us san francisco, us san francisco mp001, us seatle, us tampa, ukraine, united arab emirates, vietnam
System settings:
|--Process user ID: 1000
|--Process group ID: 1000
|--Timezone:
DNS settings:
 |--Unbound:
    |--DNS over TLS provider:
       |--cloudflare
    |--Listening port: 53
    |--Access control:
       |--Allowed:
    |--    |--0.0.0.0/0
    |--    |--::/0
    |--Caching: enabled
    |--IPv4 resolution: enabled
    |--IPv6 resolution: disabled
    |--Verbosity level: 1/5
    |--Verbosity details level: 0/4
    |--Validation log level: 0/2
    |--Blocked hostnames:
    |--Blocked IP addresses:
       |--127.0.0.1/8
       |--10.0.0.0/8
       |--172.16.0.0/12
       |--192.168.0.0/16
       |--169.254.0.0/16
       |--::1/128
       |--fc00::/7
       |--fe80::/10
       |--::ffff:0:0/96
    |--Allowed hostnames:
 |--Block malicious: enabled
 |--Block ads: disabled
 |--Block surveillance: disabled
 |--Update: every 24h0m0s
 |--Keep nameserver (disabled blocking): no
Firewall settings:
 |--VPN input ports:
 |--Input ports:
 |--Outbound subnets:
HTTP Proxy settings: disabled
ShadowSocks settings: disabled
HTTP Control server:
 |--Listening port: 8019
 |--Logging: true
Server updater settings: disabled
Public IP getter settings:
|--Period: 12h0m0s
|--IP file: /tmp/gluetun/ip
Version information: enabled

2021-01-28T21:32:38.549Z    INFO    storage: merging by most recent 6448 hardcoded servers and 6448 servers read from /gluetun/servers.json
2021-01-28T21:32:38.633Z    INFO    routing: default route found: interface eth0, gateway 172.18.0.1
2021-01-28T21:32:38.633Z    INFO    routing: local subnet found: 172.18.0.0/16
2021-01-28T21:32:38.634Z    INFO    routing: default route found: interface eth0, gateway 172.18.0.1
2021-01-28T21:32:38.635Z    INFO    routing: adding route for 0.0.0.0/0
2021-01-28T21:32:38.636Z    INFO    firewall: firewall disabled, only updating allowed subnets internal list
2021-01-28T21:32:38.636Z    INFO    routing: default route found: interface eth0, gateway 172.18.0.1
2021-01-28T21:32:38.636Z    INFO    openvpn configurator: checking for device /dev/net/tun
2021-01-28T21:32:38.636Z    WARN    TUN device is not available: open /dev/net/tun: no such file or directory
2021-01-28T21:32:38.636Z    INFO    openvpn configurator: creating /dev/net/tun
2021-01-28T21:32:38.636Z    INFO    firewall: enabling...
2021-01-28T21:32:38.690Z    INFO    firewall: enabled successfully
2021-01-28T21:32:38.690Z    INFO    healthcheck: listening on 127.0.0.1:9999
2021-01-28T21:32:38.691Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T21:32:38.692Z    INFO    dns over tls: using plaintext DNS at address 1.1.1.1
2021-01-28T21:32:38.692Z    INFO    http server: listening on 0.0.0.0:8019
2021-01-28T21:32:38.697Z    INFO    openvpn configurator: starting openvpn
2021-01-28T21:32:38.711Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T21:32:38.711Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T21:32:38.711Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T21:32:38.713Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]94.20.21.85:1194
2021-01-28T21:32:38.713Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T21:32:38.713Z    INFO    openvpn: UDP link remote: [AF_INET]94.20.21.85:1194
2021-01-28T21:32:39.188Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T21:32:39.188Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T21:32:39.189Z    INFO    openvpn: [az-bak-v001.prod.surfshark.com] Peer Connection Initiated with [AF_INET]94.20.21.85:1194
2021-01-28T21:32:40.547Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T21:32:40.547Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T21:32:40.554Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T21:32:40.557Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.8/24
2021-01-28T21:32:40.587Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T21:32:40.587Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T21:32:40.587Z    INFO    dns over tls: downloading DNS over TLS cryptographic files
2021-01-28T21:32:40.874Z    INFO    healthcheck: passed
2021-01-28T21:32:45.082Z    INFO    dns over tls: downloading hostnames and IP block lists
2021-01-28T21:32:48.100Z    INFO    dns over tls: init module 0: validator
2021-01-28T21:32:48.101Z    INFO    dns over tls: init module 1: iterator
2021-01-28T21:32:48.301Z    INFO    dns over tls: start of service (unbound 1.13.0).
2021-01-28T21:32:48.975Z    INFO    dns over tls: generate keytag query _ta-4a5c-4f66. NULL IN
2021-01-28T21:32:51.713Z    INFO    dns over tls: ready
2021-01-28T21:32:51.713Z    INFO    VPN routing IP address: 94.20.21.85
2021-01-28T21:32:52.971Z    INFO    You are running on the bleeding edge of latest!
2021-01-28T21:32:53.550Z    INFO    ip getter: Public IP address is 94.20.21.86
2021-01-28T21:36:39.324Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:37190 in 58.171µs
2021-01-28T22:10:44.348Z    INFO    openvpn: stopping
2021-01-28T22:10:44.379Z    INFO    http server: openvpn: stopped
2021-01-28T22:10:44.379Z    INFO    openvpn: starting
2021-01-28T22:10:44.381Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:10:44.389Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:10:44.393Z    INFO    http server: openvpn: running
2021-01-28T22:10:44.393Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:59922 in 44.840175ms
2021-01-28T22:10:44.393Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:10:44.394Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:10:44.394Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:10:44.395Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]45.87.213.19:1194
2021-01-28T22:10:44.395Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:10:44.395Z    INFO    openvpn: UDP link remote: [AF_INET]45.87.213.19:1194
2021-01-28T22:10:45.554Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:10:45.554Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:10:45.554Z    INFO    openvpn: [jp-tok-st001.prod.surfshark.com] Peer Connection Initiated with [AF_INET]45.87.213.19:1194
2021-01-28T22:10:52.174Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:10:52.174Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:10:52.177Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:10:52.180Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.10/24
2021-01-28T22:10:52.190Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:10:52.190Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:10:52.190Z    INFO    VPN routing IP address: 45.87.213.19
2021-01-28T22:14:44.508Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:34254 in 18.551µs
2021-01-28T22:14:44.510Z    INFO    openvpn: stopping
2021-01-28T22:14:44.530Z    INFO    http server: openvpn: stopped
2021-01-28T22:14:44.530Z    INFO    openvpn: starting
2021-01-28T22:14:44.531Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:14:44.537Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:14:44.538Z    INFO    http server: openvpn: running
2021-01-28T22:14:44.538Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:34256 in 27.631509ms
2021-01-28T22:14:44.541Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:14:44.542Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:14:44.542Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:14:44.543Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]66.115.147.79:1194
2021-01-28T22:14:44.543Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:14:44.543Z    INFO    openvpn: UDP link remote: [AF_INET]66.115.147.79:1194
2021-01-28T22:14:45.313Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:14:45.313Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:14:45.314Z    INFO    openvpn: [ca-van-v019.prod.surfshark.com] Peer Connection Initiated with [AF_INET]66.115.147.79:1194
2021-01-28T22:14:46.524Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:14:46.524Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:14:46.526Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:14:46.527Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.2/24
2021-01-28T22:14:46.530Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:14:46.530Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:14:46.530Z    INFO    VPN routing IP address: 45.87.213.19
2021-01-28T22:18:44.639Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:36934 in 24.726µs
2021-01-28T22:18:44.643Z    INFO    openvpn: stopping
2021-01-28T22:18:44.658Z    INFO    http server: openvpn: stopped
2021-01-28T22:18:44.659Z    INFO    openvpn: starting
2021-01-28T22:18:44.659Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:18:44.664Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:18:44.665Z    INFO    http server: openvpn: running
2021-01-28T22:18:44.665Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:36936 in 22.200444ms
2021-01-28T22:18:44.668Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:18:44.668Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:18:44.668Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:18:44.670Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]23.82.8.173:1194
2021-01-28T22:18:44.670Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:18:44.670Z    INFO    openvpn: UDP link remote: [AF_INET]23.82.8.173:1194
2021-01-28T22:18:45.091Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:18:45.091Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:18:45.093Z    INFO    openvpn: [us-mnz-v011.prod.surfshark.com] Peer Connection Initiated with [AF_INET]23.82.8.173:1194
2021-01-28T22:18:51.448Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:18:51.449Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:18:51.451Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:18:51.452Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.3/24
2021-01-28T22:18:51.467Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:18:51.467Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:18:51.468Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:22:44.768Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:39630 in 16.407µs
2021-01-28T22:22:44.771Z    INFO    openvpn: stopping
2021-01-28T22:22:44.790Z    INFO    http server: openvpn: stopped
2021-01-28T22:22:44.791Z    INFO    openvpn: starting
2021-01-28T22:22:44.792Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:22:44.795Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:22:44.795Z    INFO    http server: openvpn: running
2021-01-28T22:22:44.796Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:39632 in 25.062642ms
2021-01-28T22:22:44.804Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:22:44.804Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:22:44.804Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:22:44.805Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]180.149.231.67:1194
2021-01-28T22:22:44.806Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:22:44.806Z    INFO    openvpn: UDP link remote: [AF_INET]180.149.231.67:1194
2021-01-28T22:22:46.246Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:22:46.246Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:22:46.246Z    INFO    openvpn: [nz-akl-v008.prod.surfshark.com] Peer Connection Initiated with [AF_INET]180.149.231.67:1194
2021-01-28T22:22:47.669Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:22:47.669Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:22:47.690Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:22:47.691Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.3/24
2021-01-28T22:22:47.699Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:22:47.699Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:22:47.700Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:26:44.898Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:42272 in 13.365µs
2021-01-28T22:26:44.909Z    INFO    openvpn: stopping
2021-01-28T22:26:44.940Z    INFO    http server: openvpn: stopped
2021-01-28T22:26:44.940Z    INFO    openvpn: starting
2021-01-28T22:26:44.941Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:26:45.002Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:26:45.021Z    INFO    http server: openvpn: running
2021-01-28T22:26:45.021Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:42274 in 112.298243ms
2021-01-28T22:26:45.035Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:26:45.035Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:26:45.035Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:26:45.044Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]185.108.128.159:1194
2021-01-28T22:26:45.044Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:26:45.044Z    INFO    openvpn: UDP link remote: [AF_INET]185.108.128.159:1194
2021-01-28T22:26:47.476Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:26:47.476Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:26:47.477Z    INFO    openvpn: [ie-dub-v004.prod.surfshark.com] Peer Connection Initiated with [AF_INET]185.108.128.159:1194
2021-01-28T22:26:48.710Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:26:48.710Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:26:48.712Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:26:48.715Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.2/24
2021-01-28T22:26:48.719Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:26:48.719Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:26:48.720Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:30:45.128Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:44906 in 30.757µs
2021-01-28T22:30:45.139Z    INFO    openvpn: stopping
2021-01-28T22:30:45.169Z    INFO    http server: openvpn: stopped
2021-01-28T22:30:45.169Z    INFO    openvpn: starting
2021-01-28T22:30:45.170Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:30:45.181Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:30:45.183Z    INFO    http server: openvpn: running
2021-01-28T22:30:45.183Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:44908 in 44.277293ms
2021-01-28T22:30:45.200Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:30:45.200Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:30:45.200Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:30:45.204Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]193.148.18.53:1194
2021-01-28T22:30:45.204Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:30:45.204Z    INFO    openvpn: UDP link remote: [AF_INET]193.148.18.53:1194
2021-01-28T22:30:45.648Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:30:45.648Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:30:45.648Z    INFO    openvpn: [us-nyc-st005.prod.surfshark.com] Peer Connection Initiated with [AF_INET]193.148.18.53:1194
2021-01-28T22:30:46.764Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:30:46.764Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:30:46.784Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:30:46.791Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.19/24
2021-01-28T22:30:46.805Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:30:46.805Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:30:46.806Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:34:45.292Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:47584 in 36.475µs
2021-01-28T22:34:45.295Z    INFO    openvpn: stopping
2021-01-28T22:34:45.327Z    INFO    http server: openvpn: stopped
2021-01-28T22:34:45.327Z    INFO    openvpn: starting
2021-01-28T22:34:45.327Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:34:45.348Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:34:45.352Z    INFO    http server: openvpn: running
2021-01-28T22:34:45.352Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:47586 in 57.334917ms
2021-01-28T22:34:45.357Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:34:45.357Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:34:45.357Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:34:45.358Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]195.158.249.38:1194
2021-01-28T22:34:45.358Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:34:45.358Z    INFO    openvpn: UDP link remote: [AF_INET]195.158.249.38:1194
2021-01-28T22:34:45.568Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:34:45.568Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:34:45.568Z    INFO    openvpn: [si-lju-v010.prod.surfshark.com] Peer Connection Initiated with [AF_INET]195.158.249.38:1194
2021-01-28T22:34:51.730Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:34:51.730Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:34:51.737Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:34:51.741Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.2/24
2021-01-28T22:34:51.745Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:34:51.745Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:34:51.751Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:38:45.457Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:50188 in 19.889µs
2021-01-28T22:38:45.467Z    INFO    openvpn: stopping
2021-01-28T22:38:45.491Z    INFO    http server: openvpn: stopped
2021-01-28T22:38:45.491Z    INFO    openvpn: starting
2021-01-28T22:38:45.491Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:38:45.507Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:38:45.508Z    INFO    http server: openvpn: running
2021-01-28T22:38:45.508Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:50190 in 41.14684ms
2021-01-28T22:38:45.522Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:38:45.524Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:38:45.524Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:38:45.534Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]86.106.137.149:1194
2021-01-28T22:38:45.539Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:38:45.539Z    INFO    openvpn: UDP link remote: [AF_INET]86.106.137.149:1194
2021-01-28T22:38:45.764Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:38:45.764Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:38:45.764Z    INFO    openvpn: [ro-buc-v006.prod.surfshark.com] Peer Connection Initiated with [AF_INET]86.106.137.149:1194
2021-01-28T22:38:46.935Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:38:46.935Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:38:46.936Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:38:46.937Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.37/24
2021-01-28T22:38:46.949Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:38:46.949Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:38:46.949Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:42:45.611Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:52724 in 30.408µs
2021-01-28T22:42:45.615Z    INFO    openvpn: stopping
2021-01-28T22:42:45.635Z    INFO    http server: openvpn: stopped
2021-01-28T22:42:45.635Z    INFO    openvpn: starting
2021-01-28T22:42:45.637Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:42:45.642Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:42:45.643Z    INFO    http server: openvpn: running
2021-01-28T22:42:45.643Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:52726 in 27.380678ms
2021-01-28T22:42:45.647Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:42:45.648Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:42:45.648Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:42:45.654Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]84.247.50.69:1194
2021-01-28T22:42:45.654Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:42:45.654Z    INFO    openvpn: UDP link remote: [AF_INET]84.247.50.69:1194
2021-01-28T22:42:45.823Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:42:45.823Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:42:45.823Z    INFO    openvpn: [no-osl-v015.prod.surfshark.com] Peer Connection Initiated with [AF_INET]84.247.50.69:1194
2021-01-28T22:42:51.929Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:42:51.929Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:42:51.930Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:42:51.931Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.4/24
2021-01-28T22:42:51.939Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:42:51.939Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:42:51.940Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:46:45.745Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:55270 in 25.343µs
2021-01-28T22:46:45.750Z    INFO    openvpn: stopping
2021-01-28T22:46:45.770Z    INFO    http server: openvpn: stopped
2021-01-28T22:46:45.770Z    INFO    openvpn: starting
2021-01-28T22:46:45.771Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:46:45.775Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:46:45.776Z    INFO    http server: openvpn: running
2021-01-28T22:46:45.776Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:55272 in 26.021126ms
2021-01-28T22:46:45.779Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:46:45.779Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:46:45.780Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:46:45.783Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]23.105.163.94:1194
2021-01-28T22:46:45.783Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:46:45.783Z    INFO    openvpn: UDP link remote: [AF_INET]23.105.163.94:1194
2021-01-28T22:46:46.185Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:46:46.185Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:46:46.185Z    INFO    openvpn: [us-mnz-v010.prod.surfshark.com] Peer Connection Initiated with [AF_INET]23.105.163.94:1194
2021-01-28T22:46:52.549Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:46:52.549Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:46:52.550Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:46:52.552Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.12/24
2021-01-28T22:46:52.563Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:46:52.563Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:46:52.563Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:50:45.899Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:57886 in 25.725µs
2021-01-28T22:50:45.904Z    INFO    openvpn: stopping
2021-01-28T22:50:45.938Z    INFO    http server: openvpn: stopped
2021-01-28T22:50:45.938Z    INFO    openvpn: starting
2021-01-28T22:50:45.939Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:50:45.948Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:50:45.974Z    INFO    http server: openvpn: running
2021-01-28T22:50:45.974Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:57888 in 70.31078ms
2021-01-28T22:50:45.987Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:50:45.988Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:50:45.988Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:50:45.988Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]213.183.56.160:1194
2021-01-28T22:50:45.988Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:50:45.988Z    INFO    openvpn: UDP link remote: [AF_INET]213.183.56.160:1194
2021-01-28T22:50:46.372Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:50:46.372Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:50:46.372Z    INFO    openvpn: [ru-mos-v015.prod.surfshark.com] Peer Connection Initiated with [AF_INET]213.183.56.160:1194
2021-01-28T22:50:47.673Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:50:47.673Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:50:47.673Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:50:47.678Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.9/24
2021-01-28T22:50:47.690Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:50:47.690Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:50:47.691Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:54:46.098Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:60526 in 17.126µs
2021-01-28T22:54:46.102Z    INFO    openvpn: stopping
2021-01-28T22:54:46.139Z    INFO    http server: openvpn: stopped
2021-01-28T22:54:46.140Z    INFO    openvpn: starting
2021-01-28T22:54:46.141Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:54:46.147Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:54:46.148Z    INFO    http server: openvpn: running
2021-01-28T22:54:46.148Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:60528 in 45.864354ms
2021-01-28T22:54:46.152Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:54:46.157Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:54:46.157Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:54:46.159Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]185.134.22.80:1194
2021-01-28T22:54:46.159Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:54:46.159Z    INFO    openvpn: UDP link remote: [AF_INET]185.134.22.80:1194
2021-01-28T22:54:46.188Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T22:54:46.188Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T22:54:46.190Z    INFO    openvpn: [uk-lon-st002.prod.surfshark.com] Peer Connection Initiated with [AF_INET]185.134.22.80:1194
2021-01-28T22:54:47.391Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T22:54:47.391Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T22:54:47.392Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T22:54:47.393Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.15/24
2021-01-28T22:54:47.396Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T22:54:47.396Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T22:54:47.397Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T22:58:46.266Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:35018 in 19.748µs
2021-01-28T22:58:46.276Z    INFO    openvpn: stopping
2021-01-28T22:58:46.298Z    INFO    http server: openvpn: stopped
2021-01-28T22:58:46.298Z    INFO    openvpn: starting
2021-01-28T22:58:46.299Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T22:58:46.302Z    INFO    openvpn configurator: starting openvpn
2021-01-28T22:58:46.303Z    INFO    http server: openvpn: running
2021-01-28T22:58:46.303Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:35020 in 27.010285ms
2021-01-28T22:58:46.306Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T22:58:46.306Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T22:58:46.306Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T22:58:46.307Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]66.11.124.136:1194
2021-01-28T22:58:46.307Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T22:58:46.307Z    INFO    openvpn: UDP link remote: [AF_INET]66.11.124.136:1194
2021-01-28T22:59:46.490Z    INFO    openvpn: [UNDEF] Inactivity timeout (--ping-exit), exiting
2021-01-28T22:59:46.490Z    INFO    openvpn: SIGTERM[soft,ping-exit] received, process exiting
2021-01-28T22:59:46.491Z    ERROR   openvpn: <nil>
2021-01-28T22:59:46.491Z    INFO    openvpn: retrying in 15s
2021-01-28T23:00:01.494Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T23:00:01.502Z    INFO    openvpn configurator: starting openvpn
2021-01-28T23:00:01.508Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T23:00:01.512Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T23:00:01.513Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T23:00:01.517Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]41.208.72.204:1194
2021-01-28T23:00:01.518Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T23:00:01.518Z    INFO    openvpn: UDP link remote: [AF_INET]41.208.72.204:1194
2021-01-28T23:00:01.819Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T23:00:01.820Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T23:00:01.820Z    INFO    openvpn: [ly-tip-v002.prod.surfshark.com] Peer Connection Initiated with [AF_INET]41.208.72.204:1194
2021-01-28T23:00:02.979Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T23:00:02.979Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T23:00:02.992Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T23:00:02.993Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.5/24
2021-01-28T23:00:03.006Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T23:00:03.006Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T23:00:03.007Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T23:02:46.405Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:37688 in 14.776µs
2021-01-28T23:02:46.407Z    INFO    openvpn: stopping
2021-01-28T23:02:46.430Z    INFO    http server: openvpn: stopped
2021-01-28T23:02:46.430Z    INFO    openvpn: starting
2021-01-28T23:02:46.431Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T23:02:46.440Z    INFO    openvpn configurator: starting openvpn
2021-01-28T23:02:46.445Z    INFO    http server: openvpn: running
2021-01-28T23:02:46.445Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:37690 in 37.52775ms
2021-01-28T23:02:46.447Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T23:02:46.448Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T23:02:46.448Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T23:02:46.449Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]185.242.5.215:1194
2021-01-28T23:02:46.449Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T23:02:46.449Z    INFO    openvpn: UDP link remote: [AF_INET]185.242.5.215:1194
2021-01-28T23:02:47.179Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T23:02:47.179Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T23:02:47.180Z    INFO    openvpn: [us-las-v003.prod.surfshark.com] Peer Connection Initiated with [AF_INET]185.242.5.215:1194
2021-01-28T23:02:53.740Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T23:02:53.740Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T23:02:53.742Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T23:02:53.743Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.2/24
2021-01-28T23:02:53.746Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T23:02:53.746Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T23:02:53.746Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T23:06:46.548Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:40328 in 21.576µs
2021-01-28T23:06:46.549Z    INFO    openvpn: stopping
2021-01-28T23:06:46.566Z    INFO    http server: openvpn: stopped
2021-01-28T23:06:46.566Z    INFO    openvpn: starting
2021-01-28T23:06:46.567Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T23:06:46.570Z    INFO    openvpn configurator: starting openvpn
2021-01-28T23:06:46.570Z    INFO    http server: openvpn: running
2021-01-28T23:06:46.570Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:40330 in 20.80562ms
2021-01-28T23:06:46.573Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T23:06:46.573Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T23:06:46.573Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T23:06:46.576Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]37.120.212.131:1194
2021-01-28T23:06:46.577Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T23:06:46.577Z    INFO    openvpn: UDP link remote: [AF_INET]37.120.212.131:1194
2021-01-28T23:06:46.684Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T23:06:46.684Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T23:06:46.684Z    INFO    openvpn: [at-vie-v019.prod.surfshark.com] Peer Connection Initiated with [AF_INET]37.120.212.131:1194
2021-01-28T23:06:53.034Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T23:06:53.034Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T23:06:53.035Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T23:06:53.037Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.4/24
2021-01-28T23:06:53.040Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T23:06:53.040Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T23:06:53.040Z    INFO    VPN routing IP address: 23.82.8.173
2021-01-28T23:10:46.673Z    INFO    http server: 200 GET /ip wrote 28B to 172.18.0.38:43366 in 21.549µs
2021-01-28T23:10:46.675Z    INFO    openvpn: stopping
2021-01-28T23:10:46.698Z    INFO    http server: openvpn: stopped
2021-01-28T23:10:46.698Z    INFO    openvpn: starting
2021-01-28T23:10:46.699Z    INFO    firewall: setting VPN connection through firewall...
2021-01-28T23:10:46.705Z    INFO    openvpn configurator: starting openvpn
2021-01-28T23:10:46.705Z    INFO    http server: openvpn: running
2021-01-28T23:10:46.705Z    INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.38:43368 in 30.438719ms
2021-01-28T23:10:46.708Z    INFO    openvpn: DEPRECATED OPTION: --cipher set to 'aes-256-cbc' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'aes-256-cbc' to --data-ciphers or change --cipher 'aes-256-cbc' to --data-ciphers-fallback 'aes-256-cbc' to silence this warning.
2021-01-28T23:10:46.709Z    INFO    openvpn: OpenVPN 2.5.0 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 26 2020
2021-01-28T23:10:46.709Z    INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
2021-01-28T23:10:46.710Z    INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]66.115.147.87:1194
2021-01-28T23:10:46.710Z    INFO    openvpn: UDP link local: (not bound)
2021-01-28T23:10:46.710Z    INFO    openvpn: UDP link remote: [AF_INET]66.115.147.87:1194
2021-01-28T23:10:47.469Z    WARN    openvpn: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1581'
2021-01-28T23:10:47.469Z    WARN    openvpn: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]'
2021-01-28T23:10:47.470Z    INFO    openvpn: [ca-van-v022.prod.surfshark.com] Peer Connection Initiated with [AF_INET]66.115.147.87:1194
2021-01-28T23:10:48.696Z    INFO    openvpn: TUN/TAP device tun0 opened
2021-01-28T23:10:48.696Z    INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
2021-01-28T23:10:48.698Z    INFO    openvpn: /sbin/ip link set dev tun0 up
2021-01-28T23:10:48.705Z    INFO    openvpn: /sbin/ip addr add dev tun0 10.8.8.2/24
2021-01-28T23:10:48.708Z    INFO    openvpn: UID set to nonrootuser
2021-01-28T23:10:48.708Z    INFO    openvpn: Initialization Sequence Completed
2021-01-28T23:10:48.709Z    INFO    VPN routing IP address: 23.82.8.173

First I have 94.20.21.86 then 45.87.213.19 and finally it stucks to 23.82.8.173

[qdm12]

So multiple things here:

1. The VPN routing IP address 23.82.8.173 corresponds to their server US Maryland, although their hostname logged by openvpn is always different, for example nz-akl-v008.prod.surfshark.com, ca-van-v022.prod.surfshark.com. That's strange but that's more on Surfshark, I'm not sure why it stays the same.
2. I checked the logic for the HTTP server and it actually just gets the IP address that was obtained the last time that ip getter ran. And this one was configured to run when DNS over TLS is ready and every 24 hours. But when you restart openvpn, the DNS over TLS is not restarted on purpose. So that wasn't triggering a fetch of the public IP address. This is now fixed in :latest with 5194361f3b1e9b2cb3575ac6797b11bf4c2e3daa. Now every time openvpn connects, the public IP address getter will execute (only if DNS over TLS is ready still though), so that should give you something better with the /ip endpoint.

Let me know what you get!

[qdm12]

I've been abused by marketing, they announce 3200 servers and there are only 316 different ips, this is even worst with PureVPN (6500 servers / 80 ips)

Totally agreed, PureVPN is a joke marketing-wise. Because they have 60000 ports on the same server, that's 60000 servers! 😄

Only NordVPN seems to have as many ip as they have servers.

Yeah they have A LOT of servers, my constants file is ridiculously long.

[frepke]

But the strange thing is, when I use their native app, they give me a way more different IP-addresses.

I've tested it 10 times with the same country and openvpn(UDP) protocol selected. 10 reconnects gave me 10 different IP-addresses.

[qdm12]

they give me a way more different IP-addresses.

With the same region? I'll re-check the update logic and update their server information. On the other hand, note that the VPN routing IP address is not necessarily your public IP address.

[frepke]

Yes, tested with region "Netherlands" only.

Got addresses in the following ranges: 81.19.208.xxx, 81.19.209.xxx, 89.46.223.xxx, 178.239.173.xxx

[qdm12]

The way I get their server information is through their openvpn zip file. I also tried through their json HTTP api but I would get less servers hostnames.

Both give me hostnames, for each I DNS Resolve 5 times (because of load balancer to get all the possible IPs) and then hardcode the IPs in gluetun.

Now I still get 1 or 2 IP addresses per hostname (updated in the latest commit).

My guess would be that either:

• depending on the hour, they spin up more servers so there are more IP addresses available (unlikely but will check eventually)
• they hide away servers from their zip file and api and reserve them for their app
• the IPs in gluetun are just the connection gateway IP addresses. Once you connect you get to another server with a different IP address (which should be fixed in the logs and control server now). Maybe that's the one.

What you can do (usually on windows/osx/linux) is DNS Resolve one of their hostnames from https://my.surfshark.com/vpn/api/v4/server/clusters such as al-tia.prod.surfshark.com

nslookup al-tia.prod.surfshark.com

and see how many different IPs it gives.

[frepke]

With nslookup, nl-ams.prod.surfshark.com everytime gives me 2 ip-addresses. But the addresses are every try different.

[frepke]

Did a little test.

In a shellscript I ran the dig command on nl-ams.prod.surfshark.com and looped it 25 times with an 5 second interval. It gave me a lot of different ip's (see below)

#!/bin/sh
for i in 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25
do
  dig +noall +answer nl-ams.prod.surfshark.com
  sleep 5
done

nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.212
nl-ams.prod.surfshark.com. 5    IN  A   178.239.173.43
nl-ams.prod.surfshark.com. 5    IN  A   143.244.42.84
nl-ams.prod.surfshark.com. 5    IN  A   81.19.208.122
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.52
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.66
nl-ams.prod.surfshark.com. 5    IN  A   81.19.209.120
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.237
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.88
nl-ams.prod.surfshark.com. 5    IN  A   143.244.42.91
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.80
nl-ams.prod.surfshark.com. 5    IN  A   178.239.173.41
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.192
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.106
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.192
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.106
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.104
nl-ams.prod.surfshark.com. 5    IN  A   81.19.208.85
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.189
nl-ams.prod.surfshark.com. 5    IN  A   81.19.208.102
nl-ams.prod.surfshark.com. 5    IN  A   143.244.42.66
nl-ams.prod.surfshark.com. 5    IN  A   212.102.35.206
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.100
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.243
nl-ams.prod.surfshark.com. 5    IN  A   81.19.209.57
nl-ams.prod.surfshark.com. 5    IN  A   195.181.172.37
nl-ams.prod.surfshark.com. 5    IN  A   178.239.173.41
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.80
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.92
nl-ams.prod.surfshark.com. 5    IN  A   212.102.35.216
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.76
nl-ams.prod.surfshark.com. 5    IN  A   81.19.208.111
nl-ams.prod.surfshark.com. 5    IN  A   178.239.173.41
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.80
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.241
nl-ams.prod.surfshark.com. 5    IN  A   109.236.86.62
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.92
nl-ams.prod.surfshark.com. 5    IN  A   212.102.35.216
nl-ams.prod.surfshark.com. 5    IN  A   81.19.209.120
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.237
nl-ams.prod.surfshark.com. 5    IN  A   212.102.35.214
nl-ams.prod.surfshark.com. 5    IN  A   143.244.42.71
nl-ams.prod.surfshark.com. 5    IN  A   81.19.208.85
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.104
nl-ams.prod.surfshark.com. 5    IN  A   81.19.208.111
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.76
nl-ams.prod.surfshark.com. 5    IN  A   89.46.223.185
nl-ams.prod.surfshark.com. 5    IN  A   143.244.42.96
nl-ams.prod.surfshark.com. 5    IN  A   81.19.209.98
nl-ams.prod.surfshark.com. 5    IN  A   143.244.42.69

[qdm12]

Indeed. It turns out I was DNS resolving things in parallel, but there is a time factor. It's not just random IPs sent back to you on every request. It also seems resolving the host 1000 times in 1 second results in still 2 IP addresses, while resolving 3 times in 15 seconds result in 3+ IP addresses.

That's annoying as it makes updating server information super slow, but I'll modify the code to do that.

[qdm12]

Actually I figure it out, it now takes 20 seconds so not that bad. It DNS resolves all the hostnames in parallel with a 20 tries and a 1 second sleep time between each try. That results in a lot more IP addresses for each server. I'm currently updating all the hardcoded servers information, and will push it as a pull request. @Frepke I'll tag you as reviewer if you feel like reading some Go (for learning / commenting purposes really) 😉 I'll close this issue once it's merged in :latest (master branch)

@zgababa That should greatly improve the pool of IP addresses per server. Also sorry to PureVPN for saying they didn't have many servers 😅

[zgababa]

Haha, glad that PureVPN reputation is restored ^^

I'm gonna test the new image, with 18containers during 24hours.

[zgababa]

I receive these strange errors :

gluetun4    | 2021-02-02T17:42:52.161Z  INFO    openvpn: stopping
gluetun4    | 2021-02-02T17:42:52.181Z  INFO    http server: openvpn: stopped
gluetun4    | 2021-02-02T17:42:52.181Z  INFO    openvpn: starting
gluetun4    | 2021-02-02T17:42:52.183Z  INFO    firewall: setting VPN connection through firewall...
gluetun4    | 2021-02-02T17:42:52.185Z  INFO    openvpn configurator: starting openvpn
gluetun4    | 2021-02-02T17:42:52.186Z  INFO    http server: openvpn: running
gluetun4    | 2021-02-02T17:42:52.186Z  INFO    http server: 200 GET /openvpn/actions/restart wrote 68B to 172.18.0.9:42166 in 25.480694ms
gluetun4    | 2021-02-02T17:42:52.188Z  INFO    openvpn: OpenVPN 2.4.10 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Jan  4 2021
gluetun4    | 2021-02-02T17:42:52.188Z  INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
**app4        | 2021-02-02 17:42:52 => RENEW VPN, CALL /restart**
gluetun4    | 2021-02-02T17:42:52.190Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:42:52.191Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:42:52.191Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:42:52.238Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:42:53.311Z  INFO    openvpn: TUN/TAP device tun0 opened
gluetun4    | 2021-02-02T17:42:53.311Z  INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
gluetun4    | 2021-02-02T17:42:53.312Z  INFO    openvpn: /sbin/ip addr add dev tun0 10.8.3.10/24 broadcast 10.8.3.255
gluetun4    | 2021-02-02T17:42:53.315Z  INFO    openvpn: UID set to nonrootuser
gluetun4    | 2021-02-02T17:42:53.315Z  INFO    openvpn: Initialization Sequence Completed
gluetun4    | 2021-02-02T17:42:53.315Z  INFO    VPN routing IP address: 5.180.62.156
gluetun4    | 2021-02-02T17:42:53.636Z  INFO    ip getter: Public IP address is 5.180.62.157
gluetun4    | 2021-02-02T17:45:53.852Z  INFO    openvpn: [de828.nordvpn.com] Inactivity timeout (--ping-restart), restarting
gluetun4    | 2021-02-02T17:45:53.854Z  ERROR   openvpn: RTNETLINK answers: Operation not permitted
gluetun4    | 2021-02-02T17:45:53.855Z  INFO    openvpn: ERROR: Linux route delete command failed: external program exited with error status: 2
gluetun4    | 2021-02-02T17:45:53.856Z  ERROR   openvpn: RTNETLINK answers: Operation not permitted
gluetun4    | 2021-02-02T17:45:53.856Z  INFO    openvpn: ERROR: Linux route delete command failed: external program exited with error status: 2
gluetun4    | 2021-02-02T17:45:53.857Z  ERROR   openvpn: RTNETLINK answers: Operation not permitted
gluetun4    | 2021-02-02T17:45:53.857Z  INFO    openvpn: ERROR: Linux route delete command failed: external program exited with error status: 2
gluetun4    | 2021-02-02T17:45:53.858Z  INFO    openvpn: /sbin/ip addr del dev tun0 10.8.3.10/24
gluetun4    | 2021-02-02T17:45:53.859Z  ERROR   openvpn: RTNETLINK answers: Operation not permitted
gluetun4    | 2021-02-02T17:45:53.859Z  INFO    openvpn: Linux ip addr del failed: external program exited with error status: 2
gluetun4    | 2021-02-02T17:45:53.905Z  INFO    openvpn: SIGUSR1[soft,ping-restart] received, process restarting
gluetun4    | 2021-02-02T17:46:03.905Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:03.905Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:46:03.905Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:05.948Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:07.111Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:46:07.111Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
gluetun4    | 2021-02-02T17:46:17.112Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:17.112Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:46:17.112Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:19.155Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:20.227Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:46:20.227Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
gluetun4    | 2021-02-02T17:46:30.227Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:30.227Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:46:30.227Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:32.271Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:33.487Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:46:33.487Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
gluetun4    | 2021-02-02T17:46:43.488Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:43.488Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:46:43.488Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:45.529Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:46.707Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:46:46.708Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
**app4        | 2021-02-02 17:46:52 => VPN IS READY FOR XX !, ip : 5.180.62.157**
gluetun4    | 2021-02-02T17:46:52.283Z  INFO    http server: 200 GET /ip wrote 29B to 172.18.0.9:42730 in 24.71µs
gluetun4    | 2021-02-02T17:46:56.708Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:56.708Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:46:56.708Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:58.751Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:46:59.933Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:46:59.933Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
gluetun4    | 2021-02-02T17:47:09.933Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:09.933Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:47:09.933Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
**app4        | 2021-02-02 17:47:10 => WAIT 39 MINUTES BEFORE QUIT** 
gluetun4    | 2021-02-02T17:47:11.975Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:13.198Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:47:13.198Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
gluetun4    | 2021-02-02T17:47:23.198Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:23.198Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:47:23.198Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:25.241Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:26.261Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:47:26.261Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
gluetun4    | 2021-02-02T17:47:36.262Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:36.262Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:47:36.263Z  INFO    openvpn: UDP link remote: [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:36.314Z  INFO    openvpn: [de828.nordvpn.com] Peer Connection Initiated with [AF_INET]5.180.62.156:1194
gluetun4    | 2021-02-02T17:47:37.568Z  INFO    openvpn: ERROR: Cannot ioctl TUNSETIFF tun: Operation not permitted (errno=1)
gluetun4    | 2021-02-02T17:47:37.568Z  INFO    openvpn: Exiting due to fatal error
gluetun4    | 2021-02-02T17:47:37.569Z  ERROR   openvpn: exit status 1
gluetun4    | 2021-02-02T17:47:37.570Z  INFO    openvpn: retrying in 15s
gluetun4    | 2021-02-02T17:47:52.571Z  INFO    firewall: setting VPN connection through firewall...
gluetun4    | 2021-02-02T17:47:52.574Z  INFO    openvpn configurator: starting openvpn
gluetun4    | 2021-02-02T17:47:52.576Z  INFO    openvpn: OpenVPN 2.4.10 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Jan  4 2021
gluetun4    | 2021-02-02T17:47:52.576Z  INFO    openvpn: library versions: OpenSSL 1.1.1i  8 Dec 2020, LZO 2.10
gluetun4    | 2021-02-02T17:47:52.579Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]152.89.163.107:1194
gluetun4    | 2021-02-02T17:47:52.579Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:47:52.579Z  INFO    openvpn: UDP link remote: [AF_INET]152.89.163.107:1194
gluetun4    | 2021-02-02T17:47:54.630Z  INFO    openvpn: [de852.nordvpn.com] Peer Connection Initiated with [AF_INET]152.89.163.107:1194
gluetun4    | 2021-02-02T17:47:55.688Z  ERROR   openvpn: AUTH: Received control message: AUTH_FAILED
gluetun4    |
gluetun4    | Your credentials might be wrong 🤨
gluetun4    |
gluetun4    | 💡 If you use Private Internet Access, check https://github.com/qdm12/gluetun/issues/265
gluetun4    |
gluetun4    |
gluetun4    | 2021-02-02T17:47:55.688Z  INFO    openvpn: SIGUSR1[soft,auth-failure] received, process restarting
gluetun4    | 2021-02-02T17:48:05.688Z  INFO    openvpn: TCP/UDP: Preserving recently used remote address: [AF_INET]152.89.163.107:1194
gluetun4    | 2021-02-02T17:48:05.688Z  INFO    openvpn: UDP link local: (not bound)
gluetun4    | 2021-02-02T17:48:05.688Z  INFO    openvpn: UDP link remote: [AF_INET]152.89.163.107:1194
gluetun4    | 2021-02-02T17:48:05.740Z  INFO    openvpn: [de852.nordvpn.com] Peer Connection Initiated with [AF_INET]152.89.163.107:1194
gluetun4    | 2021-02-02T17:48:06.762Z  INFO    openvpn: TUN/TAP device tun0 opened
gluetun4    | 2021-02-02T17:48:06.763Z  INFO    openvpn: /sbin/ip link set dev tun0 up mtu 1500
gluetun4    | 2021-02-02T17:48:06.764Z  INFO    openvpn: /sbin/ip addr add dev tun0 10.8.1.4/24 broadcast 10.8.1.255
gluetun4    | 2021-02-02T17:48:06.766Z  INFO    openvpn: UID set to nonrootuser
gluetun4    | 2021-02-02T17:48:06.766Z  INFO    openvpn: Initialization Sequence Completed
gluetun4    | 2021-02-02T17:48:06.767Z  INFO    VPN routing IP address: 5.180.62.156
gluetun4    | 2021-02-02T17:48:07.053Z  INFO    ip getter: Public IP address is 152.89.163.108

You can see the interaction between my app and gluetun. There is a restart, some errors, and then I receive the ip.

Do I create another issue for that ?

[qdm12]

Yes let's create another issue with the version you're running as well. Maybe try pulling latest.

The root of that problem seems to be a ping timeout which triggered an openvpn 'internal' restart. Because openvpn doesn't run as root AND doesn't cache authentication credentials, it fails. Now there is change made a few days ago to use ping-exit instead of ping-restart such that openvpn exits on failure. The entrypoint program takes care of restarting openvpn correctly.

Anyway I'll close this issue for now as there are more IP addresses now AND the random connection pick is working.