| 2 |
DENIED
|
moderate
|
App\Entity\Entry {#1790
+user: Proxies\__CG__\App\Entity\User {#1911 …}
+magazine: App\Entity\Magazine {#314
+icon: Proxies\__CG__\App\Entity\Image {#295 …}
+name: "selfhosted@lemmy.world"
+title: "selfhosted"
+description: """
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n
\n
Rules:\n
\n
- Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n
- No spam posting.\n
- Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n
- Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n
- No trolling.\n
\n
Resources:\n
\n
- [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n
- [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n
- [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n
\n
> Any issues on the community? Report it using the report flag.\n
\n
> Questions? DM the mods!
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 222
+entryCommentCount: 3916
+postCount: 0
+postCommentCount: 0
+isAdult: false
+customCss: null
+lastActive: DateTime @1729582735 {#322
date: 2024-10-22 09:38:55.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#286 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#282 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#271 …}
+entries: Doctrine\ORM\PersistentCollection {#229 …}
+posts: Doctrine\ORM\PersistentCollection {#187 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#249 …}
+bans: Doctrine\ORM\PersistentCollection {#166 …}
+reports: Doctrine\ORM\PersistentCollection {#152 …}
+badges: Doctrine\ORM\PersistentCollection {#130 …}
+logs: Doctrine\ORM\PersistentCollection {#120 …}
+awards: Doctrine\ORM\PersistentCollection {#109 …}
+categories: Doctrine\ORM\PersistentCollection {#96 …}
-id: 120
+apId: "selfhosted@lemmy.world"
+apProfileId: "https://lemmy.world/c/selfhosted"
+apPublicUrl: "https://lemmy.world/c/selfhosted"
+apFollowersUrl: "https://lemmy.world/c/selfhosted/followers"
+apInboxUrl: "https://lemmy.world/inbox"
+apDomain: "lemmy.world"
+apPreferredUsername: "selfhosted"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1703473826 {#323
date: 2023-12-25 04:10:26.0 +01:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1703473826 {#317
date: 2023-12-25 04:10:26.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#2441 …}
+slug: "Doubts-over-Gluetun-QBitTorrent-setup"
+title: "Doubts over Gluetun + QBitTorrent setup"
+url: null
+body: """
Hello! I’m trying to set up qbittorrent and gluetun using docker compose on my home server, using the free account of ProtonVPN.\n
\n
on some [posts](https://teddit.zaggy.nl/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/) I see that ports 8080, 6881 and 6881/UDP are open in gluetun. in [the guide I followed](https://www.smarthomebeginner.com/gluetun-docker-guide/) instead only port 8080 is exposed. So I exposed port 8080 and it is not working. I launched the torrent of endeavourOS iso image (that my laptop (with the same vpn) downloads in a few minutes with plenty of peers and seeds at about 4Mb/s), and it downloaded at an EXTREME low speed (a few B/s) for a few seconds, and then got stuck at stalled. When it is stalled, the qbittorrent container has no internet access (`ping linux.org` fails).\n
\n
So my questions are:\n
\n
1. Which ports do I need to open on gluetun? if I open 6881 wouldn’t my IP be exposed bypassing gluetun?\n
2. What’s wrong with my setup? Why is internet connection so slow when there is, and why does it go away so often?\n
3. Is this configuration secure? in case of gluetun fail, would my IP be leaked?\n
\n
here’s the two docker-compose.yml files:\n
\n
```\n
\n
<span style="color:#323232;">version: "3"\n
</span><span style="color:#323232;">\n
</span><span style="color:#323232;">services:\n
</span><span style="color:#323232;"> gluetun:\n
</span><span style="color:#323232;"> image: qmcgaw/gluetun\n
</span><span style="color:#323232;"> container_name: gluetun\n
</span><span style="color:#323232;"> cap_add:\n
</span><span style="color:#323232;"> - NET_ADMIN\n
</span><span style="color:#323232;"> environment:\n
</span><span style="color:#323232;"> - VPN_SERVICE_PROVIDER=protonvpn\n
</span><span style="color:#323232;"> - OPENVPN_USER=MYUSERHERE\n
</span><span style="color:#323232;"> - OPENVPN_PASSWORD=MYPASSWORDHERE\n
</span><span style="color:#323232;"> - SERVER_COUNTRIES=Netherlands\n
</span><span style="color:#323232;"> - FREE_ONLY=on\n
</span><span style="color:#323232;"> volumes:\n
</span><span style="color:#323232;"> - ~/docker/gluetun/gluetun:/gluetun\n
</span><span style="color:#323232;"> ports:\n
</span><span style="color:#323232;"> - 8080:8080 # qBittorrent\n
</span><span style="color:#323232;"> restart: unless-stopped\n
</span>\n
```\n
\n
and\n
\n
```\n
\n
<span style="color:#323232;">version: "3"\n
</span><span style="color:#323232;">services:\n
</span><span style="color:#323232;"> qbittorrent:\n
</span><span style="color:#323232;"> image: linuxserver/qbittorrent:latest\n
</span><span style="color:#323232;"> container_name: qbittorrent\n
</span><span style="color:#323232;"> environment:\n
</span><span style="color:#323232;"> - PUID=1000\n
</span><span style="color:#323232;"> - PGID=1000\n
</span><span style="color:#323232;"> - TZ=Europe/Rome\n
</span><span style="color:#323232;"> - WEBUI_PORT=8080\n
</span><span style="color:#323232;"> volumes:\n
</span><span style="color:#323232;"> - ~/docker/qbittorrent/config:/config\n
</span><span style="color:#323232;"> - ~/docker/qbittorrent/downloads:/downloads\n
</span><span style="color:#323232;"> network_mode: "container:gluetun"\n
</span><span style="color:#323232;"> #ports:\n
</span><span style="color:#323232;"> # - 8080:8080\n
</span><span style="color:#323232;"> # - 6881:6881\n
</span><span style="color:#323232;"> # - 6881:6881/udp\n
</span><span style="color:#323232;"> restart: unless-stopped\n
</span>\n
```\n
\n
and here’s some logs:\n
\n
```\n
\n
<span style="color:#323232;">024-01-22T19:07:15Z INFO Settings summary:\n
</span><span style="color:#323232;">├── VPN settings:\n
</span><span style="color:#323232;">| ├── VPN provider settings:\n
</span><span style="color:#323232;">| | ├── Name: protonvpn\n
</span><span style="color:#323232;">| | └── Server selection settings:\n
</span><span style="color:#323232;">| | ├── VPN type: openvpn\n
</span><span style="color:#323232;">| | ├── Countries: netherlands\n
</span><span style="color:#323232;">| | ├── Free only servers: yes\n
</span><span style="color:#323232;">| | └── OpenVPN server selection settings:\n
</span><span style="color:#323232;">| | └── Protocol: UDP\n
</span><span style="color:#323232;">| └── OpenVPN settings:\n
</span><span style="color:#323232;">| ├── OpenVPN version: 2.5\n
</span><span style="color:#323232;">| ├── User: [set]\n
</span><span style="color:#323232;">| ├── Password: fL...BK\n
</span><span style="color:#323232;">| ├── Network interface: tun0\n
</span><span style="color:#323232;">| ├── Run OpenVPN as: root\n
</span><span style="color:#323232;">| └── Verbosity level: 1\n
</span><span style="color:#323232;">├── DNS settings:\n
</span><span style="color:#323232;">| ├── Keep existing nameserver(s): no\n
</span><span style="color:#323232;">| ├── DNS server address to use: 127.0.0.1\n
</span><span style="color:#323232;">| └── DNS over TLS settings:\n
</span><span style="color:#323232;">| ├── Enabled: yes\n
</span><span style="color:#323232;">| ├── Update period: every 24h0m0s\n
</span><span style="color:#323232;">| ├── Unbound settings:\n
</span><span style="color:#323232;">| | ├── Authoritative servers:\n
</span><span style="color:#323232;">| | | └── cloudflare\n
</span><span style="color:#323232;">| | ├── Caching: yes\n
</span><span style="color:#323232;">| | ├── IPv6: no\n
</span><span style="color:#323232;">| | ├── Verbosity level: 1\n
</span><span style="color:#323232;">| | ├── Verbosity details level: 0\n
</span><span style="color:#323232;">| | ├── Validation log level: 0\n
</span><span style="color:#323232;">| | ├── System user: root\n
</span><span style="color:#323232;">| | └── Allowed networks:\n
</span><span style="color:#323232;">| | ├── 0.0.0.0/0\n
</span><span style="color:#323232;">| | └── ::/0\n
</span><span style="color:#323232;">| └── DNS filtering settings:\n
</span><span style="color:#323232;">| ├── Block malicious: yes\n
</span><span style="color:#323232;">| ├── Block ads: no\n
</span><span style="color:#323232;">| ├── Block surveillance: no\n
</span><span style="color:#323232;">| └── Blocked IP networks:\n
</span><span style="color:#323232;">| ├── 127.0.0.1/8\n
</span><span style="color:#323232;">| ├── 10.0.0.0/8\n
</span><span style="color:#323232;">| ├── 172.16.0.0/12\n
</span><span style="color:#323232;">| ├── 192.168.0.0/16\n
</span><span style="color:#323232;">| ├── 169.254.0.0/16\n
</span><span style="color:#323232;">| ├── ::1/128\n
</span><span style="color:#323232;">| ├── fc00::/7\n
</span><span style="color:#323232;">| ├── fe80::/10\n
</span><span style="color:#323232;">| ├── ::ffff:127.0.0.1/104\n
</span><span style="color:#323232;">| ├── ::ffff:10.0.0.0/104\n
</span><span style="color:#323232;">| ├── ::ffff:169.254.0.0/112\n
</span><span style="color:#323232;">| ├── ::ffff:172.16.0.0/108\n
</span><span style="color:#323232;">| └── ::ffff:192.168.0.0/112\n
</span><span style="color:#323232;">├── Firewall settings:\n
</span><span style="color:#323232;">| └── Enabled: yes\n
</span><span style="color:#323232;">├── Log settings:\n
</span><span style="color:#323232;">| └── Log level: INFO\n
</span><span style="color:#323232;">├── Health settings:\n
</span><span style="color:#323232;">| ├── Server listening address: 127.0.0.1:9999\n
</span><span style="color:#323232;">| ├── Target address: cloudflare.com:443\n
</span><span style="color:#323232;">| ├── Duration to wait after success: 5s\n
</span><span style="color:#323232;">| ├── Read header timeout: 100ms\n
</span><span style="color:#323232;">| ├── Read timeout: 500ms\n
</span><span style="color:#323232;">| └── VPN wait durations:\n
</span><span style="color:#323232;">| ├── Initial duration: 6s\n
</span><span style="color:#323232;">| └── Additional duration: 5s\n
</span><span style="color:#323232;">├── Shadowsocks server settings:\n
</span><span style="color:#323232;">| └── Enabled: no\n
</span><span style="color:#323232;">├── HTTP proxy settings:\n
</span><span style="color:#323232;">| └── Enabled: no\n
</span><span style="color:#323232;">├── Control server settings:\n
</span><span style="color:#323232;">| ├── Listening address: :8000\n
</span><span style="color:#323232;">| └── Logging: yes\n
</span><span style="color:#323232;">├── OS Alpine settings:\n
</span><span style="color:#323232;">| ├── Process UID: 1000\n
</span><span style="color:#323232;">| └── Process GID: 1000\n
</span><span style="color:#323232;">├── Public IP settings:\n
</span><span style="color:#323232;">| ├── Fetching: every 12h0m0s\n
</span><span style="color:#323232;">| └── IP file path: /tmp/gluetun/ip\n
</span><span style="color:#323232;">└── Version settings:\n
</span><span style="color:#323232;">└── Enabled: yes\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] default route found: interface eth0, gateway 172.29.0.1, assigned IP 172.29.0.2 and family v4\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] adding route for 0.0.0.0/0\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [firewall] setting allowed subnets...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] default route found: interface eth0, gateway 172.29.0.1, assigned IP 172.29.0.2 and family v4\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO TUN device is not available: open /dev/net/tun: no such file or directory; creating it...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [dns] using plaintext DNS at address 1.1.1.1\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [http server] http server listening on [::]:8000\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [healthcheck] listening on 127.0.0.1:9999\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [firewall] allowing VPN connection...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]192.40.57.231:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] UDP link local: (not bound)\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] UDP link remote: [AF_INET]192.40.57.231:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [vpn] stopping\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [vpn] starting\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [firewall] allowing VPN connection...\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] UDP link local: (not bound)\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] UDP link remote: [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'tun-mtu' is used inconsistently, local='tun-mtu 1532', remote='tun-mtu 1500'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z INFO [openvpn] [node-nl-164.protonvpn.net] Peer Connection Initiated with [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] setsockopt TCP_NODELAY=1 failed\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] TUN/TAP device tun0 opened\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip link set dev tun0 up\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip addr add dev tun0 10.25.0.5/16\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] UID set to nonrootuser\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] Initialization Sequence Completed\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [dns] downloading DNS over TLS cryptographic files\n
</span><span style="color:#323232;">2024-01-22T19:07:24Z INFO [healthcheck] healthy!\n
</span><span style="color:#323232;">2024-01-22T19:07:24Z INFO [dns] downloading hostnames and IP block lists\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] init module 0: validator\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] init module 1: iterator\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] start of service (unbound 1.17.1).\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [dns] generate keytag query _ta-4a5c-4f66. NULL IN\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [healthcheck] healthy!\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [dns] ready\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [vpn] You are running on the bleeding edge of latest!\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [ip getter] Public IP address is 185.107.56.251 (Netherlands, North Holland, Amsterdam)\n
</span>\n
```
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 6
+favouriteCount: 18
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1727959050 {#2407
date: 2024-10-03 14:37:30.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#2419 …}
+votes: Doctrine\ORM\PersistentCollection {#1882 …}
+reports: Doctrine\ORM\PersistentCollection {#1853 …}
+favourites: Doctrine\ORM\PersistentCollection {#1958 …}
+notifications: Doctrine\ORM\PersistentCollection {#1935 …}
+badges: Doctrine\ORM\PersistentCollection {#1392 …}
+children: []
-id: 32464
-titleTs: "'doubt':1 'gluetun':3 'qbittorr':4 'setup':5"
-bodyTs: "'-01':289,521,542,555,566,587,608,622,636,648,659,687,704,722,735,750,770,779,788,799,827,844,862,875,890,914,938,963,980,993,1005,1021,1035,1050,1062,1073,1087,1096,1110,1126,1138,1150,1163,1180,1189,1198,1215 '-22':290,522,543,556,567,588,609,623,637,649,660,688,705,723,736,751,771,780,789,800,828,845,863,876,891,915,939,964,981,994,1006,1022,1036,1051,1063,1074,1088,1097,1111,1127,1139,1151,1164,1181,1190,1199,1216 '/0':391,392,553 '/10':422 '/104':425,428 '/108':434 '/112':431,437 '/12':413 '/16':415,417,1048 '/7':420 '/8':409,411 '/config':265 '/dev/net/tun':599 '/docker/gluetun/gluetun':232 '/docker/qbittorrent/config':264 '/docker/qbittorrent/downloads':266 '/downloads':267 '/gluetun':233 '/gluetun-docker-guide/)':49 '/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)':768 '/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/)':29 '/sbin/ip':1012,1028,1042 '/tmp/gluetun/ip':515 '0':380,384,1135 '0.0.0.0':390,552 '024':288 '07':292,524,545,558,569,590,611,625,639,651,662,690,707,725,738,753,773,782,791,802,830,847,865,878,893,917,941,966,983,996,1008,1024,1038,1053,1065,1076,1090,1099,1113,1129,1141,1153,1166,1183,1192,1201,1218 '1':134,341,376,990,1147 '1.1.1.1':620 '1.17.1':1161 '1/128':418 '10.0.0.0':410,427 '10.25.0.5':1047 '1000':255,257,502,505 '100ms':466 '1194':720,748,860,888,978 '127.0.0.1':354,408,424,452,645 '12h0m0s':511 '1500':936,1019 '1532':931 '15z':293,525,546,559,570,591,612,626,640,652,663,691,708,726,739 '1633':907 '1634':912 '169.254.0.0':416,430 '172.16.0.0':412,433 '172.29.0.1':534,579 '172.29.0.2':537,582 '185.107.56.235':859,887,977 '185.107.56.251':1227 '192.168.0.0':414,436 '192.40.57.231':719,747 '2':156,684,824 '2.10':702,842 '2.5':326 '2.5.8':667,807 '2022':685,825 '2023':700,840 '2024':520,541,554,565,586,607,621,635,647,658,686,703,721,734,749,769,778,787,798,826,843,861,874,889,913,937,962,979,992,1004,1020,1034,1049,1061,1072,1086,1095,1109,1125,1137,1149,1162,1179,1188,1197,1214 '21z':754,774,783,792,803,831,848,866,879 '22z':894,918,942,967 '23z':984,997,1009,1025,1039,1054,1066,1077 '24':698,838 '24h0m0s':364 '24z':1091,1100 '3':180,202,244 '3.1.4':697,837 '32z':1114,1130,1142,1154 '33z':1167,1184,1193,1202,1219 '4a5c':1175 '4f66':1176 '4mb/s':94 '500ms':469 '5s':462,478 '64':669,809 '6881':35,147,275,276,277 '6881/udp':37,278 '6s':475,762 '8000':494,634 '8080':34,53,60,235,236,262,273,274 '9999':453,646 'access':126 'account':21 'ad':400,549 'add':211,1044 'addit':476 'addr':1043 'address':351,451,455,493,619,716,856,1225 'admin':213 'aead':680,820 'af':717,745,857,885,975 'allow':388,563,655,795 'alpin':498,671,811 'alpine-linux-musl':670,810 'amsterdam':1231 'assign':535,580 'authorit':367 'avail':597 'away':177 'b/s':105 'bk':331 'bleed':1210 'block':396,399,402,405,1107 'bound':733,873 'built':681,821 'bypass':154 'cach':370 'cap':210 'case':186 'cloudflar':369 'cloudflare.com':1122 'cloudflare.com:443':456 'comp':946,960 'comp-lzo':945,959 'complet':1071 'compos':13 'config':952,957 'configur':183 'connect':166,657,797,972 'contain':122,207,250,270 'control':489 'countri':226,310 'creat':605 'cryptograph':1084 'default':528,573 'detail':378 'dev':1015,1031,1045 'devic':594,1001 'dial':1118,1119 'directori':604 'dns':342,349,355,393,614,617,1079,1081,1102,1132,1144,1156,1169,1195 'docker':12 'docker-compose.yml':199 'download':81,97,1080,1103 'durat':457,472,474,477 'edg':1211 'enabl':359,440,482,487,518 'endeavouro':71 'environ':214,253 'epol':678,818 'eth0':532,577 'europe/rome':259 'everi':363,510 'exist':345 'expos':55,58,153 'extrem':100 'fail':129,189,991 'famili':539,584 'fc00':419 'fe80':421 'fetch':509 'ffff':423,426,429,432,435 'file':200,513,602,1085 'filter':394 'firewal':438,561,654,794 'fl':330 'follow':46 'found':530,575 'free':20,228,312 'gateway':533,578 'generat':1170 'getter':1222 'gid':504 'github.com':767 'github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)':766 'gluetun':10,41,143,155,188,204,209,271 'go':176 'got':112 'guid':44 'header':464 'health':447 'healthcheck':642,756,1093,1116,1186 'healthi':1094,1187 'hello':1 'holland':1230 'home':16 'hostnam':1104 'http':484,628,630 'i/o':1123 'imag':73,205,247 'inconsist':902,926 'inet':718,746,858,886,976 'info':294,446,526,547,560,571,592,613,627,641,653,664,692,709,727,740,755,775,784,793,804,832,849,867,880,968,985,998,1010,1026,1040,1055,1067,1078,1092,1101,1115,1131,1143,1155,1168,1185,1194,1203,1220 'init':1133,1145 'initi':473,973,1069 'instead':50 'interfac':333,531,576 'internet':125,165 'ip':151,192,406,507,512,536,581,1106,1221,1224 'ipv6':372 'iso':72 'iter':1148 'keep':344 'keytag':1171 'laptop':76 'latest':249,1213 'launch':67 'leak':194 'level':340,375,379,383,445 'librari':694,834 'link':730,743,870,883,898,905,910,1013,1029 'link-mtu':897,904,909 'linux':672,812 'linux.org':128 'linuxserver/qbittorrent':248 'list':1108 'listen':450,492,632,643 'local':731,871,903,927,956 'log':287,382,442,444,495 'lookup':1121 'low':101 'lz4':677,817 'lzo':676,701,816,841,947,961 'm':3 'malici':397 'mh/pktinfo':679,819 'minut':85 'miss':954 'mode':269 'modul':1134,1146 'mtu':899,906,911,923,930,935,1018 'musl':673,813 'mypasswordher':224 'myuserher':221 'name':208,251,302 'nameserv':346 'need':139 'net':212 'netherland':227,311,1228 'network':268,332,389,407 'node-nl-164.protonvpn.net':970 'nodelay':989 'nonrootus':1060 'north':1229 'nov':683,823 'null':1177 'oct':699,839 'often':179 'open':39,141,146,598,1003 'openssl':675,696,815,836 'openvpn':219,222,309,316,322,324,336,665,666,693,710,728,741,805,806,833,850,868,881,896,920,944,969,986,999,1011,1027,1041,1056,1068 'os':497 'password':223,329 'path':514 'peer':89,971 'period':362 'pgid':256 'ping':127 'plaintext':616 'plenti':87 'port':33,52,59,136,234,261,272 'post':26 'present':949 'preserv':712,852 'process':500,503 'program':757 'protocol':320 'protonvpn':23,218,303 'provid':217,300 'proxi':485 'public':506,1223 'puid':254 'qbittorr':8,121,237,246,252 'qmcgaw/gluetun':206 'queri':1172 'question':132 'read':463,467 'readi':1196 'recent':713,853 'remot':715,744,855,884,908,932,951,958 'restart':238,279,763 'root':338,387 'rout':527,529,548,550,572,574 'run':335,1207 'second':109 'secur':184 'see':31,765 'seed':91 'select':305,318 'sequenc':1070 'server':17,225,304,314,317,350,368,449,480,490,629,631 'servic':203,216,245,1159 'set':6,295,298,301,306,319,323,328,343,358,366,395,439,443,448,481,486,491,499,508,517,562,1014,1030,1058 'setsockopt':987 'setup':162 'shadowsock':479 'slow':168 'speed':102 'ssl':674,814 'stall':115,119 'start':786,1157 'stop':241,282,777 'stuck':113 'subnet':564 'success':461 'summari':296 'surveil':403 'system':385 't19':291,523,544,557,568,589,610,624,638,650,661,689,706,724,737,752,772,781,790,801,829,846,864,877,892,916,940,965,982,995,1007,1023,1037,1052,1064,1075,1089,1098,1112,1128,1140,1152,1165,1182,1191,1200,1217 'ta':1174 'ta-4a5c-4f66':1173 'target':454 'tcp':988 'tcp/udp':711,851 'tcp4':1120 'teddit.zaggy.nl':28 'teddit.zaggy.nl/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/)':27 'timeout':465,468,1124 'tls':357,1083 'torrent':69 'tri':4 'tun':593,922,929,934 'tun-mtu':921,928,933 'tun/tap':1000 'tun0':334,1002,1016,1032,1046 'two':198 'type':308 'tz':258 'udp':321,729,742,869,882 'uid':501,1057 'unbound':365,1160 'unhealthi':760,1117 'unless':240,281 'unless-stop':239,280 'updat':361 'use':11,18,353,615,714,854,901,925 'user':220,327,386 'v4':540,585 'valid':381,1136 'verbos':339,374,377 'version':201,243,325,516,695,835 'volum':231,263 'vpn':80,215,297,299,307,470,656,764,776,785,796,1204 'wait':459,471 'warn':895,919,943 'webui':260 'work':65 'would':190 'wouldn':148 'wrong':159 'www.smarthomebeginner.com':48 'www.smarthomebeginner.com/gluetun-docker-guide/)':47 'x86':668,808 'yes':315,360,371,398,441,496,519"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1706021753
+visibility: "visible "
+apId: "https://lemmy.kde.social/post/709331"
+editedAt: null
+createdAt: DateTimeImmutable @1705952253 {#100
date: 2024-01-22 20:37:33.0 +01:00
}
} |
| 3 |
DENIED
|
edit
|
App\Entity\Entry {#1790
+user: Proxies\__CG__\App\Entity\User {#1911 …}
+magazine: App\Entity\Magazine {#314
+icon: Proxies\__CG__\App\Entity\Image {#295 …}
+name: "selfhosted@lemmy.world"
+title: "selfhosted"
+description: """
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n
\n
Rules:\n
\n
- Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n
- No spam posting.\n
- Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n
- Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n
- No trolling.\n
\n
Resources:\n
\n
- [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n
- [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n
- [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n
\n
> Any issues on the community? Report it using the report flag.\n
\n
> Questions? DM the mods!
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 222
+entryCommentCount: 3916
+postCount: 0
+postCommentCount: 0
+isAdult: false
+customCss: null
+lastActive: DateTime @1729582735 {#322
date: 2024-10-22 09:38:55.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#286 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#282 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#271 …}
+entries: Doctrine\ORM\PersistentCollection {#229 …}
+posts: Doctrine\ORM\PersistentCollection {#187 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#249 …}
+bans: Doctrine\ORM\PersistentCollection {#166 …}
+reports: Doctrine\ORM\PersistentCollection {#152 …}
+badges: Doctrine\ORM\PersistentCollection {#130 …}
+logs: Doctrine\ORM\PersistentCollection {#120 …}
+awards: Doctrine\ORM\PersistentCollection {#109 …}
+categories: Doctrine\ORM\PersistentCollection {#96 …}
-id: 120
+apId: "selfhosted@lemmy.world"
+apProfileId: "https://lemmy.world/c/selfhosted"
+apPublicUrl: "https://lemmy.world/c/selfhosted"
+apFollowersUrl: "https://lemmy.world/c/selfhosted/followers"
+apInboxUrl: "https://lemmy.world/inbox"
+apDomain: "lemmy.world"
+apPreferredUsername: "selfhosted"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1703473826 {#323
date: 2023-12-25 04:10:26.0 +01:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1703473826 {#317
date: 2023-12-25 04:10:26.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#2441 …}
+slug: "Doubts-over-Gluetun-QBitTorrent-setup"
+title: "Doubts over Gluetun + QBitTorrent setup"
+url: null
+body: """
Hello! I’m trying to set up qbittorrent and gluetun using docker compose on my home server, using the free account of ProtonVPN.\n
\n
on some [posts](https://teddit.zaggy.nl/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/) I see that ports 8080, 6881 and 6881/UDP are open in gluetun. in [the guide I followed](https://www.smarthomebeginner.com/gluetun-docker-guide/) instead only port 8080 is exposed. So I exposed port 8080 and it is not working. I launched the torrent of endeavourOS iso image (that my laptop (with the same vpn) downloads in a few minutes with plenty of peers and seeds at about 4Mb/s), and it downloaded at an EXTREME low speed (a few B/s) for a few seconds, and then got stuck at stalled. When it is stalled, the qbittorrent container has no internet access (`ping linux.org` fails).\n
\n
So my questions are:\n
\n
1. Which ports do I need to open on gluetun? if I open 6881 wouldn’t my IP be exposed bypassing gluetun?\n
2. What’s wrong with my setup? Why is internet connection so slow when there is, and why does it go away so often?\n
3. Is this configuration secure? in case of gluetun fail, would my IP be leaked?\n
\n
here’s the two docker-compose.yml files:\n
\n
```\n
\n
<span style="color:#323232;">version: "3"\n
</span><span style="color:#323232;">\n
</span><span style="color:#323232;">services:\n
</span><span style="color:#323232;"> gluetun:\n
</span><span style="color:#323232;"> image: qmcgaw/gluetun\n
</span><span style="color:#323232;"> container_name: gluetun\n
</span><span style="color:#323232;"> cap_add:\n
</span><span style="color:#323232;"> - NET_ADMIN\n
</span><span style="color:#323232;"> environment:\n
</span><span style="color:#323232;"> - VPN_SERVICE_PROVIDER=protonvpn\n
</span><span style="color:#323232;"> - OPENVPN_USER=MYUSERHERE\n
</span><span style="color:#323232;"> - OPENVPN_PASSWORD=MYPASSWORDHERE\n
</span><span style="color:#323232;"> - SERVER_COUNTRIES=Netherlands\n
</span><span style="color:#323232;"> - FREE_ONLY=on\n
</span><span style="color:#323232;"> volumes:\n
</span><span style="color:#323232;"> - ~/docker/gluetun/gluetun:/gluetun\n
</span><span style="color:#323232;"> ports:\n
</span><span style="color:#323232;"> - 8080:8080 # qBittorrent\n
</span><span style="color:#323232;"> restart: unless-stopped\n
</span>\n
```\n
\n
and\n
\n
```\n
\n
<span style="color:#323232;">version: "3"\n
</span><span style="color:#323232;">services:\n
</span><span style="color:#323232;"> qbittorrent:\n
</span><span style="color:#323232;"> image: linuxserver/qbittorrent:latest\n
</span><span style="color:#323232;"> container_name: qbittorrent\n
</span><span style="color:#323232;"> environment:\n
</span><span style="color:#323232;"> - PUID=1000\n
</span><span style="color:#323232;"> - PGID=1000\n
</span><span style="color:#323232;"> - TZ=Europe/Rome\n
</span><span style="color:#323232;"> - WEBUI_PORT=8080\n
</span><span style="color:#323232;"> volumes:\n
</span><span style="color:#323232;"> - ~/docker/qbittorrent/config:/config\n
</span><span style="color:#323232;"> - ~/docker/qbittorrent/downloads:/downloads\n
</span><span style="color:#323232;"> network_mode: "container:gluetun"\n
</span><span style="color:#323232;"> #ports:\n
</span><span style="color:#323232;"> # - 8080:8080\n
</span><span style="color:#323232;"> # - 6881:6881\n
</span><span style="color:#323232;"> # - 6881:6881/udp\n
</span><span style="color:#323232;"> restart: unless-stopped\n
</span>\n
```\n
\n
and here’s some logs:\n
\n
```\n
\n
<span style="color:#323232;">024-01-22T19:07:15Z INFO Settings summary:\n
</span><span style="color:#323232;">├── VPN settings:\n
</span><span style="color:#323232;">| ├── VPN provider settings:\n
</span><span style="color:#323232;">| | ├── Name: protonvpn\n
</span><span style="color:#323232;">| | └── Server selection settings:\n
</span><span style="color:#323232;">| | ├── VPN type: openvpn\n
</span><span style="color:#323232;">| | ├── Countries: netherlands\n
</span><span style="color:#323232;">| | ├── Free only servers: yes\n
</span><span style="color:#323232;">| | └── OpenVPN server selection settings:\n
</span><span style="color:#323232;">| | └── Protocol: UDP\n
</span><span style="color:#323232;">| └── OpenVPN settings:\n
</span><span style="color:#323232;">| ├── OpenVPN version: 2.5\n
</span><span style="color:#323232;">| ├── User: [set]\n
</span><span style="color:#323232;">| ├── Password: fL...BK\n
</span><span style="color:#323232;">| ├── Network interface: tun0\n
</span><span style="color:#323232;">| ├── Run OpenVPN as: root\n
</span><span style="color:#323232;">| └── Verbosity level: 1\n
</span><span style="color:#323232;">├── DNS settings:\n
</span><span style="color:#323232;">| ├── Keep existing nameserver(s): no\n
</span><span style="color:#323232;">| ├── DNS server address to use: 127.0.0.1\n
</span><span style="color:#323232;">| └── DNS over TLS settings:\n
</span><span style="color:#323232;">| ├── Enabled: yes\n
</span><span style="color:#323232;">| ├── Update period: every 24h0m0s\n
</span><span style="color:#323232;">| ├── Unbound settings:\n
</span><span style="color:#323232;">| | ├── Authoritative servers:\n
</span><span style="color:#323232;">| | | └── cloudflare\n
</span><span style="color:#323232;">| | ├── Caching: yes\n
</span><span style="color:#323232;">| | ├── IPv6: no\n
</span><span style="color:#323232;">| | ├── Verbosity level: 1\n
</span><span style="color:#323232;">| | ├── Verbosity details level: 0\n
</span><span style="color:#323232;">| | ├── Validation log level: 0\n
</span><span style="color:#323232;">| | ├── System user: root\n
</span><span style="color:#323232;">| | └── Allowed networks:\n
</span><span style="color:#323232;">| | ├── 0.0.0.0/0\n
</span><span style="color:#323232;">| | └── ::/0\n
</span><span style="color:#323232;">| └── DNS filtering settings:\n
</span><span style="color:#323232;">| ├── Block malicious: yes\n
</span><span style="color:#323232;">| ├── Block ads: no\n
</span><span style="color:#323232;">| ├── Block surveillance: no\n
</span><span style="color:#323232;">| └── Blocked IP networks:\n
</span><span style="color:#323232;">| ├── 127.0.0.1/8\n
</span><span style="color:#323232;">| ├── 10.0.0.0/8\n
</span><span style="color:#323232;">| ├── 172.16.0.0/12\n
</span><span style="color:#323232;">| ├── 192.168.0.0/16\n
</span><span style="color:#323232;">| ├── 169.254.0.0/16\n
</span><span style="color:#323232;">| ├── ::1/128\n
</span><span style="color:#323232;">| ├── fc00::/7\n
</span><span style="color:#323232;">| ├── fe80::/10\n
</span><span style="color:#323232;">| ├── ::ffff:127.0.0.1/104\n
</span><span style="color:#323232;">| ├── ::ffff:10.0.0.0/104\n
</span><span style="color:#323232;">| ├── ::ffff:169.254.0.0/112\n
</span><span style="color:#323232;">| ├── ::ffff:172.16.0.0/108\n
</span><span style="color:#323232;">| └── ::ffff:192.168.0.0/112\n
</span><span style="color:#323232;">├── Firewall settings:\n
</span><span style="color:#323232;">| └── Enabled: yes\n
</span><span style="color:#323232;">├── Log settings:\n
</span><span style="color:#323232;">| └── Log level: INFO\n
</span><span style="color:#323232;">├── Health settings:\n
</span><span style="color:#323232;">| ├── Server listening address: 127.0.0.1:9999\n
</span><span style="color:#323232;">| ├── Target address: cloudflare.com:443\n
</span><span style="color:#323232;">| ├── Duration to wait after success: 5s\n
</span><span style="color:#323232;">| ├── Read header timeout: 100ms\n
</span><span style="color:#323232;">| ├── Read timeout: 500ms\n
</span><span style="color:#323232;">| └── VPN wait durations:\n
</span><span style="color:#323232;">| ├── Initial duration: 6s\n
</span><span style="color:#323232;">| └── Additional duration: 5s\n
</span><span style="color:#323232;">├── Shadowsocks server settings:\n
</span><span style="color:#323232;">| └── Enabled: no\n
</span><span style="color:#323232;">├── HTTP proxy settings:\n
</span><span style="color:#323232;">| └── Enabled: no\n
</span><span style="color:#323232;">├── Control server settings:\n
</span><span style="color:#323232;">| ├── Listening address: :8000\n
</span><span style="color:#323232;">| └── Logging: yes\n
</span><span style="color:#323232;">├── OS Alpine settings:\n
</span><span style="color:#323232;">| ├── Process UID: 1000\n
</span><span style="color:#323232;">| └── Process GID: 1000\n
</span><span style="color:#323232;">├── Public IP settings:\n
</span><span style="color:#323232;">| ├── Fetching: every 12h0m0s\n
</span><span style="color:#323232;">| └── IP file path: /tmp/gluetun/ip\n
</span><span style="color:#323232;">└── Version settings:\n
</span><span style="color:#323232;">└── Enabled: yes\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] default route found: interface eth0, gateway 172.29.0.1, assigned IP 172.29.0.2 and family v4\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] adding route for 0.0.0.0/0\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [firewall] setting allowed subnets...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] default route found: interface eth0, gateway 172.29.0.1, assigned IP 172.29.0.2 and family v4\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO TUN device is not available: open /dev/net/tun: no such file or directory; creating it...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [dns] using plaintext DNS at address 1.1.1.1\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [http server] http server listening on [::]:8000\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [healthcheck] listening on 127.0.0.1:9999\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [firewall] allowing VPN connection...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]192.40.57.231:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] UDP link local: (not bound)\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] UDP link remote: [AF_INET]192.40.57.231:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [vpn] stopping\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [vpn] starting\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [firewall] allowing VPN connection...\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] UDP link local: (not bound)\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] UDP link remote: [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'tun-mtu' is used inconsistently, local='tun-mtu 1532', remote='tun-mtu 1500'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z INFO [openvpn] [node-nl-164.protonvpn.net] Peer Connection Initiated with [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] setsockopt TCP_NODELAY=1 failed\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] TUN/TAP device tun0 opened\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip link set dev tun0 up\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip addr add dev tun0 10.25.0.5/16\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] UID set to nonrootuser\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] Initialization Sequence Completed\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [dns] downloading DNS over TLS cryptographic files\n
</span><span style="color:#323232;">2024-01-22T19:07:24Z INFO [healthcheck] healthy!\n
</span><span style="color:#323232;">2024-01-22T19:07:24Z INFO [dns] downloading hostnames and IP block lists\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] init module 0: validator\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] init module 1: iterator\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] start of service (unbound 1.17.1).\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [dns] generate keytag query _ta-4a5c-4f66. NULL IN\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [healthcheck] healthy!\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [dns] ready\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [vpn] You are running on the bleeding edge of latest!\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [ip getter] Public IP address is 185.107.56.251 (Netherlands, North Holland, Amsterdam)\n
</span>\n
```
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 6
+favouriteCount: 18
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1727959050 {#2407
date: 2024-10-03 14:37:30.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#2419 …}
+votes: Doctrine\ORM\PersistentCollection {#1882 …}
+reports: Doctrine\ORM\PersistentCollection {#1853 …}
+favourites: Doctrine\ORM\PersistentCollection {#1958 …}
+notifications: Doctrine\ORM\PersistentCollection {#1935 …}
+badges: Doctrine\ORM\PersistentCollection {#1392 …}
+children: []
-id: 32464
-titleTs: "'doubt':1 'gluetun':3 'qbittorr':4 'setup':5"
-bodyTs: "'-01':289,521,542,555,566,587,608,622,636,648,659,687,704,722,735,750,770,779,788,799,827,844,862,875,890,914,938,963,980,993,1005,1021,1035,1050,1062,1073,1087,1096,1110,1126,1138,1150,1163,1180,1189,1198,1215 '-22':290,522,543,556,567,588,609,623,637,649,660,688,705,723,736,751,771,780,789,800,828,845,863,876,891,915,939,964,981,994,1006,1022,1036,1051,1063,1074,1088,1097,1111,1127,1139,1151,1164,1181,1190,1199,1216 '/0':391,392,553 '/10':422 '/104':425,428 '/108':434 '/112':431,437 '/12':413 '/16':415,417,1048 '/7':420 '/8':409,411 '/config':265 '/dev/net/tun':599 '/docker/gluetun/gluetun':232 '/docker/qbittorrent/config':264 '/docker/qbittorrent/downloads':266 '/downloads':267 '/gluetun':233 '/gluetun-docker-guide/)':49 '/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)':768 '/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/)':29 '/sbin/ip':1012,1028,1042 '/tmp/gluetun/ip':515 '0':380,384,1135 '0.0.0.0':390,552 '024':288 '07':292,524,545,558,569,590,611,625,639,651,662,690,707,725,738,753,773,782,791,802,830,847,865,878,893,917,941,966,983,996,1008,1024,1038,1053,1065,1076,1090,1099,1113,1129,1141,1153,1166,1183,1192,1201,1218 '1':134,341,376,990,1147 '1.1.1.1':620 '1.17.1':1161 '1/128':418 '10.0.0.0':410,427 '10.25.0.5':1047 '1000':255,257,502,505 '100ms':466 '1194':720,748,860,888,978 '127.0.0.1':354,408,424,452,645 '12h0m0s':511 '1500':936,1019 '1532':931 '15z':293,525,546,559,570,591,612,626,640,652,663,691,708,726,739 '1633':907 '1634':912 '169.254.0.0':416,430 '172.16.0.0':412,433 '172.29.0.1':534,579 '172.29.0.2':537,582 '185.107.56.235':859,887,977 '185.107.56.251':1227 '192.168.0.0':414,436 '192.40.57.231':719,747 '2':156,684,824 '2.10':702,842 '2.5':326 '2.5.8':667,807 '2022':685,825 '2023':700,840 '2024':520,541,554,565,586,607,621,635,647,658,686,703,721,734,749,769,778,787,798,826,843,861,874,889,913,937,962,979,992,1004,1020,1034,1049,1061,1072,1086,1095,1109,1125,1137,1149,1162,1179,1188,1197,1214 '21z':754,774,783,792,803,831,848,866,879 '22z':894,918,942,967 '23z':984,997,1009,1025,1039,1054,1066,1077 '24':698,838 '24h0m0s':364 '24z':1091,1100 '3':180,202,244 '3.1.4':697,837 '32z':1114,1130,1142,1154 '33z':1167,1184,1193,1202,1219 '4a5c':1175 '4f66':1176 '4mb/s':94 '500ms':469 '5s':462,478 '64':669,809 '6881':35,147,275,276,277 '6881/udp':37,278 '6s':475,762 '8000':494,634 '8080':34,53,60,235,236,262,273,274 '9999':453,646 'access':126 'account':21 'ad':400,549 'add':211,1044 'addit':476 'addr':1043 'address':351,451,455,493,619,716,856,1225 'admin':213 'aead':680,820 'af':717,745,857,885,975 'allow':388,563,655,795 'alpin':498,671,811 'alpine-linux-musl':670,810 'amsterdam':1231 'assign':535,580 'authorit':367 'avail':597 'away':177 'b/s':105 'bk':331 'bleed':1210 'block':396,399,402,405,1107 'bound':733,873 'built':681,821 'bypass':154 'cach':370 'cap':210 'case':186 'cloudflar':369 'cloudflare.com':1122 'cloudflare.com:443':456 'comp':946,960 'comp-lzo':945,959 'complet':1071 'compos':13 'config':952,957 'configur':183 'connect':166,657,797,972 'contain':122,207,250,270 'control':489 'countri':226,310 'creat':605 'cryptograph':1084 'default':528,573 'detail':378 'dev':1015,1031,1045 'devic':594,1001 'dial':1118,1119 'directori':604 'dns':342,349,355,393,614,617,1079,1081,1102,1132,1144,1156,1169,1195 'docker':12 'docker-compose.yml':199 'download':81,97,1080,1103 'durat':457,472,474,477 'edg':1211 'enabl':359,440,482,487,518 'endeavouro':71 'environ':214,253 'epol':678,818 'eth0':532,577 'europe/rome':259 'everi':363,510 'exist':345 'expos':55,58,153 'extrem':100 'fail':129,189,991 'famili':539,584 'fc00':419 'fe80':421 'fetch':509 'ffff':423,426,429,432,435 'file':200,513,602,1085 'filter':394 'firewal':438,561,654,794 'fl':330 'follow':46 'found':530,575 'free':20,228,312 'gateway':533,578 'generat':1170 'getter':1222 'gid':504 'github.com':767 'github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)':766 'gluetun':10,41,143,155,188,204,209,271 'go':176 'got':112 'guid':44 'header':464 'health':447 'healthcheck':642,756,1093,1116,1186 'healthi':1094,1187 'hello':1 'holland':1230 'home':16 'hostnam':1104 'http':484,628,630 'i/o':1123 'imag':73,205,247 'inconsist':902,926 'inet':718,746,858,886,976 'info':294,446,526,547,560,571,592,613,627,641,653,664,692,709,727,740,755,775,784,793,804,832,849,867,880,968,985,998,1010,1026,1040,1055,1067,1078,1092,1101,1115,1131,1143,1155,1168,1185,1194,1203,1220 'init':1133,1145 'initi':473,973,1069 'instead':50 'interfac':333,531,576 'internet':125,165 'ip':151,192,406,507,512,536,581,1106,1221,1224 'ipv6':372 'iso':72 'iter':1148 'keep':344 'keytag':1171 'laptop':76 'latest':249,1213 'launch':67 'leak':194 'level':340,375,379,383,445 'librari':694,834 'link':730,743,870,883,898,905,910,1013,1029 'link-mtu':897,904,909 'linux':672,812 'linux.org':128 'linuxserver/qbittorrent':248 'list':1108 'listen':450,492,632,643 'local':731,871,903,927,956 'log':287,382,442,444,495 'lookup':1121 'low':101 'lz4':677,817 'lzo':676,701,816,841,947,961 'm':3 'malici':397 'mh/pktinfo':679,819 'minut':85 'miss':954 'mode':269 'modul':1134,1146 'mtu':899,906,911,923,930,935,1018 'musl':673,813 'mypasswordher':224 'myuserher':221 'name':208,251,302 'nameserv':346 'need':139 'net':212 'netherland':227,311,1228 'network':268,332,389,407 'node-nl-164.protonvpn.net':970 'nodelay':989 'nonrootus':1060 'north':1229 'nov':683,823 'null':1177 'oct':699,839 'often':179 'open':39,141,146,598,1003 'openssl':675,696,815,836 'openvpn':219,222,309,316,322,324,336,665,666,693,710,728,741,805,806,833,850,868,881,896,920,944,969,986,999,1011,1027,1041,1056,1068 'os':497 'password':223,329 'path':514 'peer':89,971 'period':362 'pgid':256 'ping':127 'plaintext':616 'plenti':87 'port':33,52,59,136,234,261,272 'post':26 'present':949 'preserv':712,852 'process':500,503 'program':757 'protocol':320 'protonvpn':23,218,303 'provid':217,300 'proxi':485 'public':506,1223 'puid':254 'qbittorr':8,121,237,246,252 'qmcgaw/gluetun':206 'queri':1172 'question':132 'read':463,467 'readi':1196 'recent':713,853 'remot':715,744,855,884,908,932,951,958 'restart':238,279,763 'root':338,387 'rout':527,529,548,550,572,574 'run':335,1207 'second':109 'secur':184 'see':31,765 'seed':91 'select':305,318 'sequenc':1070 'server':17,225,304,314,317,350,368,449,480,490,629,631 'servic':203,216,245,1159 'set':6,295,298,301,306,319,323,328,343,358,366,395,439,443,448,481,486,491,499,508,517,562,1014,1030,1058 'setsockopt':987 'setup':162 'shadowsock':479 'slow':168 'speed':102 'ssl':674,814 'stall':115,119 'start':786,1157 'stop':241,282,777 'stuck':113 'subnet':564 'success':461 'summari':296 'surveil':403 'system':385 't19':291,523,544,557,568,589,610,624,638,650,661,689,706,724,737,752,772,781,790,801,829,846,864,877,892,916,940,965,982,995,1007,1023,1037,1052,1064,1075,1089,1098,1112,1128,1140,1152,1165,1182,1191,1200,1217 'ta':1174 'ta-4a5c-4f66':1173 'target':454 'tcp':988 'tcp/udp':711,851 'tcp4':1120 'teddit.zaggy.nl':28 'teddit.zaggy.nl/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/)':27 'timeout':465,468,1124 'tls':357,1083 'torrent':69 'tri':4 'tun':593,922,929,934 'tun-mtu':921,928,933 'tun/tap':1000 'tun0':334,1002,1016,1032,1046 'two':198 'type':308 'tz':258 'udp':321,729,742,869,882 'uid':501,1057 'unbound':365,1160 'unhealthi':760,1117 'unless':240,281 'unless-stop':239,280 'updat':361 'use':11,18,353,615,714,854,901,925 'user':220,327,386 'v4':540,585 'valid':381,1136 'verbos':339,374,377 'version':201,243,325,516,695,835 'volum':231,263 'vpn':80,215,297,299,307,470,656,764,776,785,796,1204 'wait':459,471 'warn':895,919,943 'webui':260 'work':65 'would':190 'wouldn':148 'wrong':159 'www.smarthomebeginner.com':48 'www.smarthomebeginner.com/gluetun-docker-guide/)':47 'x86':668,808 'yes':315,360,371,398,441,496,519"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1706021753
+visibility: "visible "
+apId: "https://lemmy.kde.social/post/709331"
+editedAt: null
+createdAt: DateTimeImmutable @1705952253 {#100
date: 2024-01-22 20:37:33.0 +01:00
}
} |
| 4 |
DENIED
|
moderate
|
App\Entity\Entry {#1790
+user: Proxies\__CG__\App\Entity\User {#1911 …}
+magazine: App\Entity\Magazine {#314
+icon: Proxies\__CG__\App\Entity\Image {#295 …}
+name: "selfhosted@lemmy.world"
+title: "selfhosted"
+description: """
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n
\n
Rules:\n
\n
- Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n
- No spam posting.\n
- Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n
- Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n
- No trolling.\n
\n
Resources:\n
\n
- [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n
- [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n
- [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n
\n
> Any issues on the community? Report it using the report flag.\n
\n
> Questions? DM the mods!
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 222
+entryCommentCount: 3916
+postCount: 0
+postCommentCount: 0
+isAdult: false
+customCss: null
+lastActive: DateTime @1729582735 {#322
date: 2024-10-22 09:38:55.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#286 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#282 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#271 …}
+entries: Doctrine\ORM\PersistentCollection {#229 …}
+posts: Doctrine\ORM\PersistentCollection {#187 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#249 …}
+bans: Doctrine\ORM\PersistentCollection {#166 …}
+reports: Doctrine\ORM\PersistentCollection {#152 …}
+badges: Doctrine\ORM\PersistentCollection {#130 …}
+logs: Doctrine\ORM\PersistentCollection {#120 …}
+awards: Doctrine\ORM\PersistentCollection {#109 …}
+categories: Doctrine\ORM\PersistentCollection {#96 …}
-id: 120
+apId: "selfhosted@lemmy.world"
+apProfileId: "https://lemmy.world/c/selfhosted"
+apPublicUrl: "https://lemmy.world/c/selfhosted"
+apFollowersUrl: "https://lemmy.world/c/selfhosted/followers"
+apInboxUrl: "https://lemmy.world/inbox"
+apDomain: "lemmy.world"
+apPreferredUsername: "selfhosted"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1703473826 {#323
date: 2023-12-25 04:10:26.0 +01:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1703473826 {#317
date: 2023-12-25 04:10:26.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#2441 …}
+slug: "Doubts-over-Gluetun-QBitTorrent-setup"
+title: "Doubts over Gluetun + QBitTorrent setup"
+url: null
+body: """
Hello! I’m trying to set up qbittorrent and gluetun using docker compose on my home server, using the free account of ProtonVPN.\n
\n
on some [posts](https://teddit.zaggy.nl/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/) I see that ports 8080, 6881 and 6881/UDP are open in gluetun. in [the guide I followed](https://www.smarthomebeginner.com/gluetun-docker-guide/) instead only port 8080 is exposed. So I exposed port 8080 and it is not working. I launched the torrent of endeavourOS iso image (that my laptop (with the same vpn) downloads in a few minutes with plenty of peers and seeds at about 4Mb/s), and it downloaded at an EXTREME low speed (a few B/s) for a few seconds, and then got stuck at stalled. When it is stalled, the qbittorrent container has no internet access (`ping linux.org` fails).\n
\n
So my questions are:\n
\n
1. Which ports do I need to open on gluetun? if I open 6881 wouldn’t my IP be exposed bypassing gluetun?\n
2. What’s wrong with my setup? Why is internet connection so slow when there is, and why does it go away so often?\n
3. Is this configuration secure? in case of gluetun fail, would my IP be leaked?\n
\n
here’s the two docker-compose.yml files:\n
\n
```\n
\n
<span style="color:#323232;">version: "3"\n
</span><span style="color:#323232;">\n
</span><span style="color:#323232;">services:\n
</span><span style="color:#323232;"> gluetun:\n
</span><span style="color:#323232;"> image: qmcgaw/gluetun\n
</span><span style="color:#323232;"> container_name: gluetun\n
</span><span style="color:#323232;"> cap_add:\n
</span><span style="color:#323232;"> - NET_ADMIN\n
</span><span style="color:#323232;"> environment:\n
</span><span style="color:#323232;"> - VPN_SERVICE_PROVIDER=protonvpn\n
</span><span style="color:#323232;"> - OPENVPN_USER=MYUSERHERE\n
</span><span style="color:#323232;"> - OPENVPN_PASSWORD=MYPASSWORDHERE\n
</span><span style="color:#323232;"> - SERVER_COUNTRIES=Netherlands\n
</span><span style="color:#323232;"> - FREE_ONLY=on\n
</span><span style="color:#323232;"> volumes:\n
</span><span style="color:#323232;"> - ~/docker/gluetun/gluetun:/gluetun\n
</span><span style="color:#323232;"> ports:\n
</span><span style="color:#323232;"> - 8080:8080 # qBittorrent\n
</span><span style="color:#323232;"> restart: unless-stopped\n
</span>\n
```\n
\n
and\n
\n
```\n
\n
<span style="color:#323232;">version: "3"\n
</span><span style="color:#323232;">services:\n
</span><span style="color:#323232;"> qbittorrent:\n
</span><span style="color:#323232;"> image: linuxserver/qbittorrent:latest\n
</span><span style="color:#323232;"> container_name: qbittorrent\n
</span><span style="color:#323232;"> environment:\n
</span><span style="color:#323232;"> - PUID=1000\n
</span><span style="color:#323232;"> - PGID=1000\n
</span><span style="color:#323232;"> - TZ=Europe/Rome\n
</span><span style="color:#323232;"> - WEBUI_PORT=8080\n
</span><span style="color:#323232;"> volumes:\n
</span><span style="color:#323232;"> - ~/docker/qbittorrent/config:/config\n
</span><span style="color:#323232;"> - ~/docker/qbittorrent/downloads:/downloads\n
</span><span style="color:#323232;"> network_mode: "container:gluetun"\n
</span><span style="color:#323232;"> #ports:\n
</span><span style="color:#323232;"> # - 8080:8080\n
</span><span style="color:#323232;"> # - 6881:6881\n
</span><span style="color:#323232;"> # - 6881:6881/udp\n
</span><span style="color:#323232;"> restart: unless-stopped\n
</span>\n
```\n
\n
and here’s some logs:\n
\n
```\n
\n
<span style="color:#323232;">024-01-22T19:07:15Z INFO Settings summary:\n
</span><span style="color:#323232;">├── VPN settings:\n
</span><span style="color:#323232;">| ├── VPN provider settings:\n
</span><span style="color:#323232;">| | ├── Name: protonvpn\n
</span><span style="color:#323232;">| | └── Server selection settings:\n
</span><span style="color:#323232;">| | ├── VPN type: openvpn\n
</span><span style="color:#323232;">| | ├── Countries: netherlands\n
</span><span style="color:#323232;">| | ├── Free only servers: yes\n
</span><span style="color:#323232;">| | └── OpenVPN server selection settings:\n
</span><span style="color:#323232;">| | └── Protocol: UDP\n
</span><span style="color:#323232;">| └── OpenVPN settings:\n
</span><span style="color:#323232;">| ├── OpenVPN version: 2.5\n
</span><span style="color:#323232;">| ├── User: [set]\n
</span><span style="color:#323232;">| ├── Password: fL...BK\n
</span><span style="color:#323232;">| ├── Network interface: tun0\n
</span><span style="color:#323232;">| ├── Run OpenVPN as: root\n
</span><span style="color:#323232;">| └── Verbosity level: 1\n
</span><span style="color:#323232;">├── DNS settings:\n
</span><span style="color:#323232;">| ├── Keep existing nameserver(s): no\n
</span><span style="color:#323232;">| ├── DNS server address to use: 127.0.0.1\n
</span><span style="color:#323232;">| └── DNS over TLS settings:\n
</span><span style="color:#323232;">| ├── Enabled: yes\n
</span><span style="color:#323232;">| ├── Update period: every 24h0m0s\n
</span><span style="color:#323232;">| ├── Unbound settings:\n
</span><span style="color:#323232;">| | ├── Authoritative servers:\n
</span><span style="color:#323232;">| | | └── cloudflare\n
</span><span style="color:#323232;">| | ├── Caching: yes\n
</span><span style="color:#323232;">| | ├── IPv6: no\n
</span><span style="color:#323232;">| | ├── Verbosity level: 1\n
</span><span style="color:#323232;">| | ├── Verbosity details level: 0\n
</span><span style="color:#323232;">| | ├── Validation log level: 0\n
</span><span style="color:#323232;">| | ├── System user: root\n
</span><span style="color:#323232;">| | └── Allowed networks:\n
</span><span style="color:#323232;">| | ├── 0.0.0.0/0\n
</span><span style="color:#323232;">| | └── ::/0\n
</span><span style="color:#323232;">| └── DNS filtering settings:\n
</span><span style="color:#323232;">| ├── Block malicious: yes\n
</span><span style="color:#323232;">| ├── Block ads: no\n
</span><span style="color:#323232;">| ├── Block surveillance: no\n
</span><span style="color:#323232;">| └── Blocked IP networks:\n
</span><span style="color:#323232;">| ├── 127.0.0.1/8\n
</span><span style="color:#323232;">| ├── 10.0.0.0/8\n
</span><span style="color:#323232;">| ├── 172.16.0.0/12\n
</span><span style="color:#323232;">| ├── 192.168.0.0/16\n
</span><span style="color:#323232;">| ├── 169.254.0.0/16\n
</span><span style="color:#323232;">| ├── ::1/128\n
</span><span style="color:#323232;">| ├── fc00::/7\n
</span><span style="color:#323232;">| ├── fe80::/10\n
</span><span style="color:#323232;">| ├── ::ffff:127.0.0.1/104\n
</span><span style="color:#323232;">| ├── ::ffff:10.0.0.0/104\n
</span><span style="color:#323232;">| ├── ::ffff:169.254.0.0/112\n
</span><span style="color:#323232;">| ├── ::ffff:172.16.0.0/108\n
</span><span style="color:#323232;">| └── ::ffff:192.168.0.0/112\n
</span><span style="color:#323232;">├── Firewall settings:\n
</span><span style="color:#323232;">| └── Enabled: yes\n
</span><span style="color:#323232;">├── Log settings:\n
</span><span style="color:#323232;">| └── Log level: INFO\n
</span><span style="color:#323232;">├── Health settings:\n
</span><span style="color:#323232;">| ├── Server listening address: 127.0.0.1:9999\n
</span><span style="color:#323232;">| ├── Target address: cloudflare.com:443\n
</span><span style="color:#323232;">| ├── Duration to wait after success: 5s\n
</span><span style="color:#323232;">| ├── Read header timeout: 100ms\n
</span><span style="color:#323232;">| ├── Read timeout: 500ms\n
</span><span style="color:#323232;">| └── VPN wait durations:\n
</span><span style="color:#323232;">| ├── Initial duration: 6s\n
</span><span style="color:#323232;">| └── Additional duration: 5s\n
</span><span style="color:#323232;">├── Shadowsocks server settings:\n
</span><span style="color:#323232;">| └── Enabled: no\n
</span><span style="color:#323232;">├── HTTP proxy settings:\n
</span><span style="color:#323232;">| └── Enabled: no\n
</span><span style="color:#323232;">├── Control server settings:\n
</span><span style="color:#323232;">| ├── Listening address: :8000\n
</span><span style="color:#323232;">| └── Logging: yes\n
</span><span style="color:#323232;">├── OS Alpine settings:\n
</span><span style="color:#323232;">| ├── Process UID: 1000\n
</span><span style="color:#323232;">| └── Process GID: 1000\n
</span><span style="color:#323232;">├── Public IP settings:\n
</span><span style="color:#323232;">| ├── Fetching: every 12h0m0s\n
</span><span style="color:#323232;">| └── IP file path: /tmp/gluetun/ip\n
</span><span style="color:#323232;">└── Version settings:\n
</span><span style="color:#323232;">└── Enabled: yes\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] default route found: interface eth0, gateway 172.29.0.1, assigned IP 172.29.0.2 and family v4\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] adding route for 0.0.0.0/0\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [firewall] setting allowed subnets...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [routing] default route found: interface eth0, gateway 172.29.0.1, assigned IP 172.29.0.2 and family v4\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO TUN device is not available: open /dev/net/tun: no such file or directory; creating it...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [dns] using plaintext DNS at address 1.1.1.1\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [http server] http server listening on [::]:8000\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [healthcheck] listening on 127.0.0.1:9999\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [firewall] allowing VPN connection...\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]192.40.57.231:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] UDP link local: (not bound)\n
</span><span style="color:#323232;">2024-01-22T19:07:15Z INFO [openvpn] UDP link remote: [AF_INET]192.40.57.231:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [healthcheck] program has been unhealthy for 6s: restarting VPN (see https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [vpn] stopping\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [vpn] starting\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [firewall] allowing VPN connection...\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] UDP link local: (not bound)\n
</span><span style="color:#323232;">2024-01-22T19:07:21Z INFO [openvpn] UDP link remote: [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'tun-mtu' is used inconsistently, local='tun-mtu 1532', remote='tun-mtu 1500'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z WARN [openvpn] 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo'\n
</span><span style="color:#323232;">2024-01-22T19:07:22Z INFO [openvpn] [node-nl-164.protonvpn.net] Peer Connection Initiated with [AF_INET]185.107.56.235:1194\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] setsockopt TCP_NODELAY=1 failed\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] TUN/TAP device tun0 opened\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip link set dev tun0 up\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] /sbin/ip addr add dev tun0 10.25.0.5/16\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] UID set to nonrootuser\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [openvpn] Initialization Sequence Completed\n
</span><span style="color:#323232;">2024-01-22T19:07:23Z INFO [dns] downloading DNS over TLS cryptographic files\n
</span><span style="color:#323232;">2024-01-22T19:07:24Z INFO [healthcheck] healthy!\n
</span><span style="color:#323232;">2024-01-22T19:07:24Z INFO [dns] downloading hostnames and IP block lists\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [healthcheck] unhealthy: dialing: dial tcp4: lookup cloudflare.com: i/o timeout\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] init module 0: validator\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] init module 1: iterator\n
</span><span style="color:#323232;">2024-01-22T19:07:32Z INFO [dns] start of service (unbound 1.17.1).\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [dns] generate keytag query _ta-4a5c-4f66. NULL IN\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [healthcheck] healthy!\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [dns] ready\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [vpn] You are running on the bleeding edge of latest!\n
</span><span style="color:#323232;">2024-01-22T19:07:33Z INFO [ip getter] Public IP address is 185.107.56.251 (Netherlands, North Holland, Amsterdam)\n
</span>\n
```
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 6
+favouriteCount: 18
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1727959050 {#2407
date: 2024-10-03 14:37:30.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#2419 …}
+votes: Doctrine\ORM\PersistentCollection {#1882 …}
+reports: Doctrine\ORM\PersistentCollection {#1853 …}
+favourites: Doctrine\ORM\PersistentCollection {#1958 …}
+notifications: Doctrine\ORM\PersistentCollection {#1935 …}
+badges: Doctrine\ORM\PersistentCollection {#1392 …}
+children: []
-id: 32464
-titleTs: "'doubt':1 'gluetun':3 'qbittorr':4 'setup':5"
-bodyTs: "'-01':289,521,542,555,566,587,608,622,636,648,659,687,704,722,735,750,770,779,788,799,827,844,862,875,890,914,938,963,980,993,1005,1021,1035,1050,1062,1073,1087,1096,1110,1126,1138,1150,1163,1180,1189,1198,1215 '-22':290,522,543,556,567,588,609,623,637,649,660,688,705,723,736,751,771,780,789,800,828,845,863,876,891,915,939,964,981,994,1006,1022,1036,1051,1063,1074,1088,1097,1111,1127,1139,1151,1164,1181,1190,1199,1216 '/0':391,392,553 '/10':422 '/104':425,428 '/108':434 '/112':431,437 '/12':413 '/16':415,417,1048 '/7':420 '/8':409,411 '/config':265 '/dev/net/tun':599 '/docker/gluetun/gluetun':232 '/docker/qbittorrent/config':264 '/docker/qbittorrent/downloads':266 '/downloads':267 '/gluetun':233 '/gluetun-docker-guide/)':49 '/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)':768 '/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/)':29 '/sbin/ip':1012,1028,1042 '/tmp/gluetun/ip':515 '0':380,384,1135 '0.0.0.0':390,552 '024':288 '07':292,524,545,558,569,590,611,625,639,651,662,690,707,725,738,753,773,782,791,802,830,847,865,878,893,917,941,966,983,996,1008,1024,1038,1053,1065,1076,1090,1099,1113,1129,1141,1153,1166,1183,1192,1201,1218 '1':134,341,376,990,1147 '1.1.1.1':620 '1.17.1':1161 '1/128':418 '10.0.0.0':410,427 '10.25.0.5':1047 '1000':255,257,502,505 '100ms':466 '1194':720,748,860,888,978 '127.0.0.1':354,408,424,452,645 '12h0m0s':511 '1500':936,1019 '1532':931 '15z':293,525,546,559,570,591,612,626,640,652,663,691,708,726,739 '1633':907 '1634':912 '169.254.0.0':416,430 '172.16.0.0':412,433 '172.29.0.1':534,579 '172.29.0.2':537,582 '185.107.56.235':859,887,977 '185.107.56.251':1227 '192.168.0.0':414,436 '192.40.57.231':719,747 '2':156,684,824 '2.10':702,842 '2.5':326 '2.5.8':667,807 '2022':685,825 '2023':700,840 '2024':520,541,554,565,586,607,621,635,647,658,686,703,721,734,749,769,778,787,798,826,843,861,874,889,913,937,962,979,992,1004,1020,1034,1049,1061,1072,1086,1095,1109,1125,1137,1149,1162,1179,1188,1197,1214 '21z':754,774,783,792,803,831,848,866,879 '22z':894,918,942,967 '23z':984,997,1009,1025,1039,1054,1066,1077 '24':698,838 '24h0m0s':364 '24z':1091,1100 '3':180,202,244 '3.1.4':697,837 '32z':1114,1130,1142,1154 '33z':1167,1184,1193,1202,1219 '4a5c':1175 '4f66':1176 '4mb/s':94 '500ms':469 '5s':462,478 '64':669,809 '6881':35,147,275,276,277 '6881/udp':37,278 '6s':475,762 '8000':494,634 '8080':34,53,60,235,236,262,273,274 '9999':453,646 'access':126 'account':21 'ad':400,549 'add':211,1044 'addit':476 'addr':1043 'address':351,451,455,493,619,716,856,1225 'admin':213 'aead':680,820 'af':717,745,857,885,975 'allow':388,563,655,795 'alpin':498,671,811 'alpine-linux-musl':670,810 'amsterdam':1231 'assign':535,580 'authorit':367 'avail':597 'away':177 'b/s':105 'bk':331 'bleed':1210 'block':396,399,402,405,1107 'bound':733,873 'built':681,821 'bypass':154 'cach':370 'cap':210 'case':186 'cloudflar':369 'cloudflare.com':1122 'cloudflare.com:443':456 'comp':946,960 'comp-lzo':945,959 'complet':1071 'compos':13 'config':952,957 'configur':183 'connect':166,657,797,972 'contain':122,207,250,270 'control':489 'countri':226,310 'creat':605 'cryptograph':1084 'default':528,573 'detail':378 'dev':1015,1031,1045 'devic':594,1001 'dial':1118,1119 'directori':604 'dns':342,349,355,393,614,617,1079,1081,1102,1132,1144,1156,1169,1195 'docker':12 'docker-compose.yml':199 'download':81,97,1080,1103 'durat':457,472,474,477 'edg':1211 'enabl':359,440,482,487,518 'endeavouro':71 'environ':214,253 'epol':678,818 'eth0':532,577 'europe/rome':259 'everi':363,510 'exist':345 'expos':55,58,153 'extrem':100 'fail':129,189,991 'famili':539,584 'fc00':419 'fe80':421 'fetch':509 'ffff':423,426,429,432,435 'file':200,513,602,1085 'filter':394 'firewal':438,561,654,794 'fl':330 'follow':46 'found':530,575 'free':20,228,312 'gateway':533,578 'generat':1170 'getter':1222 'gid':504 'github.com':767 'github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md)':766 'gluetun':10,41,143,155,188,204,209,271 'go':176 'got':112 'guid':44 'header':464 'health':447 'healthcheck':642,756,1093,1116,1186 'healthi':1094,1187 'hello':1 'holland':1230 'home':16 'hostnam':1104 'http':484,628,630 'i/o':1123 'imag':73,205,247 'inconsist':902,926 'inet':718,746,858,886,976 'info':294,446,526,547,560,571,592,613,627,641,653,664,692,709,727,740,755,775,784,793,804,832,849,867,880,968,985,998,1010,1026,1040,1055,1067,1078,1092,1101,1115,1131,1143,1155,1168,1185,1194,1203,1220 'init':1133,1145 'initi':473,973,1069 'instead':50 'interfac':333,531,576 'internet':125,165 'ip':151,192,406,507,512,536,581,1106,1221,1224 'ipv6':372 'iso':72 'iter':1148 'keep':344 'keytag':1171 'laptop':76 'latest':249,1213 'launch':67 'leak':194 'level':340,375,379,383,445 'librari':694,834 'link':730,743,870,883,898,905,910,1013,1029 'link-mtu':897,904,909 'linux':672,812 'linux.org':128 'linuxserver/qbittorrent':248 'list':1108 'listen':450,492,632,643 'local':731,871,903,927,956 'log':287,382,442,444,495 'lookup':1121 'low':101 'lz4':677,817 'lzo':676,701,816,841,947,961 'm':3 'malici':397 'mh/pktinfo':679,819 'minut':85 'miss':954 'mode':269 'modul':1134,1146 'mtu':899,906,911,923,930,935,1018 'musl':673,813 'mypasswordher':224 'myuserher':221 'name':208,251,302 'nameserv':346 'need':139 'net':212 'netherland':227,311,1228 'network':268,332,389,407 'node-nl-164.protonvpn.net':970 'nodelay':989 'nonrootus':1060 'north':1229 'nov':683,823 'null':1177 'oct':699,839 'often':179 'open':39,141,146,598,1003 'openssl':675,696,815,836 'openvpn':219,222,309,316,322,324,336,665,666,693,710,728,741,805,806,833,850,868,881,896,920,944,969,986,999,1011,1027,1041,1056,1068 'os':497 'password':223,329 'path':514 'peer':89,971 'period':362 'pgid':256 'ping':127 'plaintext':616 'plenti':87 'port':33,52,59,136,234,261,272 'post':26 'present':949 'preserv':712,852 'process':500,503 'program':757 'protocol':320 'protonvpn':23,218,303 'provid':217,300 'proxi':485 'public':506,1223 'puid':254 'qbittorr':8,121,237,246,252 'qmcgaw/gluetun':206 'queri':1172 'question':132 'read':463,467 'readi':1196 'recent':713,853 'remot':715,744,855,884,908,932,951,958 'restart':238,279,763 'root':338,387 'rout':527,529,548,550,572,574 'run':335,1207 'second':109 'secur':184 'see':31,765 'seed':91 'select':305,318 'sequenc':1070 'server':17,225,304,314,317,350,368,449,480,490,629,631 'servic':203,216,245,1159 'set':6,295,298,301,306,319,323,328,343,358,366,395,439,443,448,481,486,491,499,508,517,562,1014,1030,1058 'setsockopt':987 'setup':162 'shadowsock':479 'slow':168 'speed':102 'ssl':674,814 'stall':115,119 'start':786,1157 'stop':241,282,777 'stuck':113 'subnet':564 'success':461 'summari':296 'surveil':403 'system':385 't19':291,523,544,557,568,589,610,624,638,650,661,689,706,724,737,752,772,781,790,801,829,846,864,877,892,916,940,965,982,995,1007,1023,1037,1052,1064,1075,1089,1098,1112,1128,1140,1152,1165,1182,1191,1200,1217 'ta':1174 'ta-4a5c-4f66':1173 'target':454 'tcp':988 'tcp/udp':711,851 'tcp4':1120 'teddit.zaggy.nl':28 'teddit.zaggy.nl/r/selfhosted/comments/15oe631/gluetun_and_qbittorrent_correct_setup_in/)':27 'timeout':465,468,1124 'tls':357,1083 'torrent':69 'tri':4 'tun':593,922,929,934 'tun-mtu':921,928,933 'tun/tap':1000 'tun0':334,1002,1016,1032,1046 'two':198 'type':308 'tz':258 'udp':321,729,742,869,882 'uid':501,1057 'unbound':365,1160 'unhealthi':760,1117 'unless':240,281 'unless-stop':239,280 'updat':361 'use':11,18,353,615,714,854,901,925 'user':220,327,386 'v4':540,585 'valid':381,1136 'verbos':339,374,377 'version':201,243,325,516,695,835 'volum':231,263 'vpn':80,215,297,299,307,470,656,764,776,785,796,1204 'wait':459,471 'warn':895,919,943 'webui':260 'work':65 'would':190 'wouldn':148 'wrong':159 'www.smarthomebeginner.com':48 'www.smarthomebeginner.com/gluetun-docker-guide/)':47 'x86':668,808 'yes':315,360,371,398,441,496,519"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1706021753
+visibility: "visible "
+apId: "https://lemmy.kde.social/post/709331"
+editedAt: null
+createdAt: DateTimeImmutable @1705952253 {#100
date: 2024-01-22 20:37:33.0 +01:00
}
} |