checking for ip leaks using Docker, Gluetun and qBittorrent

Hej everyone.

Until now I’ve used a linux install and vpn software (airvpn and eddie) when sailing the high seas. While this works well enough, there is always room for improvement.

I am in the process of setting up a docker stack which so far contains gluetun/airvpn and qbittorrent. Here is my compose file:


<span style="color:#323232;">version: "3"
</span><span style="color:#323232;">services:
</span><span style="color:#323232;">  gluetun:
</span><span style="color:#323232;">    image: qmcgaw/gluetun
</span><span style="color:#323232;">    container_name: gluetun
</span><span style="color:#323232;">    cap_add:
</span><span style="color:#323232;">     - NET_ADMIN
</span><span style="color:#323232;">    volumes:
</span><span style="color:#323232;">      - /appdata/gluetun:/gluetun
</span><span style="color:#323232;">    environment:
</span><span style="color:#323232;">      - VPN_SERVICE_PROVIDER=airvpn
</span><span style="color:#323232;">      - VPN_TYPE=wireguard
</span><span style="color:#323232;">      - WIREGUARD_PRIVATE_KEY=
</span><span style="color:#323232;">      - WIREGUARD_PRESHARED_KEY=
</span><span style="color:#323232;">      - WIREGUARD_ADDRESSES=10.188.90.221/32,fd7d:76ee:e68f:a993:63b2:6cc0:fe82:614b/128
</span><span style="color:#323232;">      - SERVER_COUNTRIES=
</span><span style="color:#323232;">      - FIREWALL_VPN_INPUT_PORTS=
</span><span style="color:#323232;">    ports:
</span><span style="color:#323232;">      - 8070:8070/tcp
</span><span style="color:#323232;">      - 60858:60858/tcp
</span><span style="color:#323232;">      - 60858:60858/udp
</span><span style="color:#323232;">    restart: unless-stopped
</span><span style="color:#323232;">
</span><span style="color:#323232;">  qbittorrent: 
</span><span style="color:#323232;">    image: lscr.io/linuxserver/qbittorrent:latest
</span><span style="color:#323232;">    container_name: qbittorrent 
</span><span style="color:#323232;">    network_mode: "service:gluetun" 
</span><span style="color:#323232;">    environment: 
</span><span style="color:#323232;">     - PUID=1000
</span><span style="color:#323232;">     - PGID=100
</span><span style="color:#323232;">     - TZ=Europe/Berlin
</span><span style="color:#323232;">     - WEBUI_PORT=8070 
</span><span style="color:#323232;">    volumes: 
</span><span style="color:#323232;">     - /appdata/qbittorrent/config/:/config 
</span><span style="color:#323232;">     - /data/videos/downloads:/downloads
</span><span style="color:#323232;">    depends_on:
</span><span style="color:#323232;">      - gluetun
</span><span style="color:#323232;">    restart: always
</span>

My first problem was related to the ip adress. For some reason, when I use an IPV6 adress, I got this error in gluetun:


<span style="color:#323232;">2023-10-06T17:30:42Z ERROR VPN settings: Wireguard settings: interface address is IPv6 but IPv6 is not supported: address fd7d:76ee:e68f:a993:63b2:6cc0:fe82:614b/128
</span>

Well, I removed that IPV6 and now everything works. Does anyone have a fix? :)

Now for the important part. I tested the setup with a linux iso and to my surprise - everything works. When I used ipleak.net or other websites, these websites only detect the ip from my vpn. Great.

Do I need to take any other precautions? I also bound the network interface tun0 in the qbit webui, just to be sure. When I stop the gluetun container, the webui stops working (as it should, but it is hard to check, if the download also stops). I’m just a bit paranoid because I don’t want to pay coin when downloading all the isos my heart desires.

Thank you so much for any input!

  • All
  • Subscribed
  • Moderated
  • Favorites
  • piracy@lemmy.dbzer0.com
  • localhost
  • All magazines
    •
    Loading…
    Loading the web debug toolbar…
    Attempt #