Open konsumer opened 4 years ago
I am using LOCAL_NETWORK=172.19.0.0/24
so I can route docker containers through it, but it should work local to openvpn
too, right?
docker-compose exec openvpn ip addr|grep "scope global"
inet 172.19.0.2/16 brd 172.19.255.255 scope global eth0
I also tried with LOCAL_NETWORK=192.168.86.0/24
(my LAN range) with same prob, but I think it's unrelated (as it gives wrong external IP, directly from openvpn
)
It certainly no longer works for NordVPN.
Mon Jun 29 15:15:11 2020 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Jun 29 15:15:11 2020 TLS Error: TLS handshake failed
Check out your logs:
openvpn_1 | Supplied config /etc/openvpn/conf/privatevpn/los-angeles-usa.ovpn.ovpn could not be found.
That doesn't exist. I just looked in the image. It used the default:
openvpn_1 | OpenVPN config: /etc/openvpn/conf/privatevpn/default.ovpn
However, with that said, I'm having issues with Windscribe as well:
Fri Jul 23 22:01:43 2021 VERIFY ERROR: depth=1, error=unable to get local issuer certificate: C=CA, ST=ON, L=Toronto, O=Windscribe Limited, OU=Systems, CN=Windscribe Node CA X2
Fri Jul 23 22:01:43 2021 TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
Fri Jul 23 22:01:43 2021 TLS Error: TLS object -> incoming plaintext read error
Fri Jul 23 22:01:43 2021 TLS Error: TLS handshake failed
Fri Jul 23 22:01:43 2021 SIGUSR1[soft,tls-error] received, process restarting
I just resolved this by overloading the default VPN configuration. I mounted my VPN config to the default location from the logs:
[...]
volumes:
- /volume1/docker/windscribe/windscribe-sf_openvpn.ovpn:/etc/openvpn/conf/windscribe/default.ovpn
[....]
Windscribe made an update to their OpenVPN configuration which doesn't appear to have been implemented within this image. However, overloading the default configuration with your ovpn
file seems to allow things to function again.
I think I am using it right. I have this in my docker-compose:
My plan was to use it like this to share the networking with the
openvn
container:To make sure everything is working, I am starting with
openvpn
. When it starts, I get no errors, and it seems to be connecting:When I check my remote connection inside the
openvpn
docker-container I get my real external IP, not the VPN:What do I need to do to route all traffic in
openvpn
through the VPN?Related to #11