ERROR [ip getter] and WARN [dns]
hypnosis4u2nv opened this issue ยท 19 comments
I see that others are having the same issue with other VPN's, but it seems I can't get Gluetun past these I/O errors. Also the server list for Surfshark needs to be updated, a few locations have changed names.
2024-03-22T13:31:01-04:00 INFO [vpn] starting
2024-03-22T13:31:01-04:00 INFO [firewall] allowing VPN connection...
2024-03-22T13:31:01-04:00 INFO [wireguard] Using available kernelspace implementation
2024-03-22T13:31:01-04:00 INFO [wireguard] Connecting to 37.19.211.29:51820
2024-03-22T13:31:01-04:00 INFO [wireguard] Wireguard setup is complete. Note Wireguard is a silent protocol and it may or may not work, without giving any error message. Typically i/o timeout errors indicate the Wireguard connection is not working.
2024-03-22T13:31:02-04:00 INFO [dns] downloading DNS over TLS cryptographic files
2024-03-22T13:31:05-04:00 ERROR [ip getter] Get "https://ipinfo.io/": dial tcp: lookup ipinfo.io on 1.1.1.1:53: read udp 10.14.0.2:33315->1.1.1.1:53: i/o timeout - retrying in 10s
2024-03-22T13:31:12-04:00 WARN [dns] cannot update files: Get "https://www.internic.net/domain/named.root": dial tcp: lookup www.internic.net on 1.1.1.1:53: read udp 10.14.0.2:46009->1.1.1.1:53: i/o timeout
2024-03-22T13:31:12-04:00 INFO [dns] attempting restart in 20s
2024-03-22T13:31:17-04:00 INFO [healthcheck] program has been unhealthy for 16s: restarting VPN
2024-03-22T13:31:17-04:00 INFO [healthcheck] ๐ See https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md
2024-03-22T13:31:17-04:00 INFO [healthcheck] DO NOT OPEN AN ISSUE UNLESS YOU READ AND TRIED EACH POSSIBLE SOLUTION
2024-03-22T13:31:17-04:00 INFO [vpn] stopping
Changing DOT_PROVIDERS to google
2024-03-22T13:42:45-04:00 INFO [vpn] starting
2024-03-22T13:42:45-04:00 INFO [firewall] allowing VPN connection...
2024-03-22T13:42:45-04:00 INFO [wireguard] Using available kernelspace implementation
2024-03-22T13:42:45-04:00 INFO [wireguard] Connecting to 149.88.97.2:51820
2024-03-22T13:42:45-04:00 INFO [wireguard] Wireguard setup is complete. Note Wireguard is a silent protocol and it may or may not work, without giving any error message. Typically i/o timeout errors indicate the Wireguard connection is not working.
2024-03-22T13:42:52-04:00 WARN [dns] cannot update files: Get "https://www.internic.net/domain/named.root": context deadline exceeded (Client.Timeout exceeded while awaiting headers)
2024-03-22T13:42:52-04:00 INFO [dns] attempting restart in 20s
2024-03-22T13:43:03-04:00 ERROR [ip getter] Get "https://ipinfo.io/": context deadline exceeded (Client.Timeout exceeded while awaiting headers) - retrying in 20s
2024-03-22T13:43:06-04:00 INFO [healthcheck] program has been unhealthy for 21s: restarting VPN
2024-03-22T13:43:06-04:00 INFO [healthcheck] ๐ See https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md
2024-03-22T13:43:06-04:00 INFO [healthcheck] DO NOT OPEN AN ISSUE UNLESS YOU READ AND TRIED EACH POSSIBLE SOLUTION
2024-03-22T13:43:06-04:00 INFO [vpn] stopping
Also, this is an issue with Wireguard as the OpenVPN configuration works fine.
I'm getting the exact same errors. Trying to set it up using Windscribe and no matter what I've tried, it comes back that way.
Is there any update on this? Maybe a working version of the image?
No image update yet. Created another container using OpenVPN settings for now since it only affects Wireguard containers.
same issue with wireguard + surfshark
Same issue with openvpn + surfshark
13:42:45
I confirmed that OpenVPN is working with surfshark on the latest image. Change the server as Surfshark has changed some of the server addresses and they haven't been updated yet.
I confirmed that OpenVPN is working with surfshark on the latest image. Change the server as Surfshark has changed some of the server addresses and they haven't been updated yet.
I copied the server directly from surfshark web login. Would really appreciate if you can look at this log and help figure out what's wrong. Full log is here - #62
2024-04-10T23:10:00-04:00 INFO Settings summary:
โโโ VPN settings:
| โโโ VPN provider settings:
| | โโโ Name: surfshark
| | โโโ Server selection settings:
| | โโโ VPN type: openvpn
| | โโโ Hostnames: ca-tor.prod.surfshark.com
| | โโโ OpenVPN server selection settings:
| | โโโ Protocol: UDP
| โโโ OpenVPN settings:
| โโโ OpenVPN version: 2.5
| โโโ User: [set]
| โโโ Password: [set]
| โโโ Network interface: tun0
| โโโ Run OpenVPN as: root
| โโโ Verbosity level: 1
โโโ DNS settings:
| โโโ Keep existing nameserver(s): yes
โโโ Firewall settings:
| โโโ Enabled: no
โโโ Log settings:
| โโโ Log level: INFO
โโโ Health settings:
| โโโ Server listening address: 127.0.0.1:9999
| โโโ Target address: cloudflare.com:443
| โโโ Duration to wait after success: 5s
| โโโ Read header timeout: 100ms
| โโโ Read timeout: 500ms
| โโโ VPN wait durations:
| โโโ Initial duration: 6s
| โโโ Additional duration: 5s
โโโ Shadowsocks server settings:
| โโโ Enabled: no
โโโ HTTP proxy settings:
| โโโ Enabled: no
โโโ Control server settings:
| โโโ Listening address: :8000
| โโโ Logging: yes
โโโ OS Alpine settings:
| โโโ Process UID: 568
| โโโ Process GID: 568
| โโโ Timezone: america/toronto
โโโ Public IP settings:
| โโโ Fetching: every 12h0m0s
| โโโ IP file path: /tmp/gluetun/ip
| โโโ Public IP data API: ipinfo
โโโ Version settings:
โโโ Enabled: yes
I confirmed that OpenVPN is working with surfshark on the latest image. Change the server as Surfshark has changed some of the server addresses and they haven't been updated yet.
I copied the server directly from surfshark web login. Would really appreciate if you can look at this log and help figure out what's wrong. Full log is here - #62
2024-04-10T23:10:00-04:00 INFO Settings summary: โโโ VPN settings: | โโโ VPN provider settings: | | โโโ Name: surfshark | | โโโ Server selection settings: | | โโโ VPN type: openvpn | | โโโ Hostnames: ca-tor.prod.surfshark.com | | โโโ OpenVPN server selection settings: | | โโโ Protocol: UDP | โโโ OpenVPN settings: | โโโ OpenVPN version: 2.5 | โโโ User: [set] | โโโ Password: [set] | โโโ Network interface: tun0 | โโโ Run OpenVPN as: root | โโโ Verbosity level: 1 โโโ DNS settings: | โโโ Keep existing nameserver(s): yes โโโ Firewall settings: | โโโ Enabled: no โโโ Log settings: | โโโ Log level: INFO โโโ Health settings: | โโโ Server listening address: 127.0.0.1:9999 | โโโ Target address: cloudflare.com:443 | โโโ Duration to wait after success: 5s | โโโ Read header timeout: 100ms | โโโ Read timeout: 500ms | โโโ VPN wait durations: | โโโ Initial duration: 6s | โโโ Additional duration: 5s โโโ Shadowsocks server settings: | โโโ Enabled: no โโโ HTTP proxy settings: | โโโ Enabled: no โโโ Control server settings: | โโโ Listening address: :8000 | โโโ Logging: yes โโโ OS Alpine settings: | โโโ Process UID: 568 | โโโ Process GID: 568 | โโโ Timezone: america/toronto โโโ Public IP settings: | โโโ Fetching: every 12h0m0s | โโโ IP file path: /tmp/gluetun/ip | โโโ Public IP data API: ipinfo โโโ Version settings: โโโ Enabled: yes
I'm actually using the same server. There's one setting that is different - try Enable Firewall Settings to yes (on)
Here's my settings and log
โโโ VPN settings:
| โโโ VPN provider settings:
| | โโโ Name: surfshark
| | โโโ Server selection settings:
| | โโโ VPN type: openvpn
| | โโโ Hostnames: ca-tor.prod.surfshark.com
| | โโโ OpenVPN server selection settings:
| | โโโ Protocol: UDP
| โโโ OpenVPN settings:
| โโโ OpenVPN version: 2.5
| โโโ User: [set]
| โโโ Password: [set]
| โโโ Network interface: tun0
| โโโ Run OpenVPN as: root
| โโโ Verbosity level: 1
โโโ DNS settings:
| โโโ Keep existing nameserver(s): no
| โโโ DNS server address to use: 127.0.0.1
| โโโ DNS over TLS settings:
| โโโ Enabled: yes
| โโโ Update period: every 24h0m0s
| โโโ Unbound settings:
| | โโโ Authoritative servers:
| | | โโโ cloudflare
| | โโโ Caching: yes
| | โโโ IPv6: no
| | โโโ Verbosity level: 1
| | โโโ Verbosity details level: 0
| | โโโ Validation log level: 0
| | โโโ System user: root
| | โโโ Allowed networks:
| | โโโ 0.0.0.0/0
| | โโโ ::/0
| โโโ DNS filtering settings:
| โโโ Block malicious: yes
| โโโ Block ads: no
| โโโ Block surveillance: no
| โโโ Blocked IP networks:
| โโโ 127.0.0.1/8
| โโโ 10.0.0.0/8
| โโโ 172.16.0.0/12
| โโโ 192.168.0.0/16
| โโโ 169.254.0.0/16
| โโโ ::1/128
| โโโ fc00::/7
| โโโ fe80::/10
| โโโ ::ffff:127.0.0.1/104
| โโโ ::ffff:10.0.0.0/104
| โโโ ::ffff:169.254.0.0/112
| โโโ ::ffff:172.16.0.0/108
| โโโ ::ffff:192.168.0.0/112
โโโ Firewall settings:
| โโโ Enabled: yes
โโโ Log settings:
| โโโ Log level: info
โโโ Health settings:
| โโโ Server listening address: 127.0.0.1:9999
| โโโ Target address: cloudflare.com:443
| โโโ Duration to wait after success: 5s
| โโโ Read header timeout: 100ms
| โโโ Read timeout: 500ms
| โโโ VPN wait durations:
| โโโ Initial duration: 6s
| โโโ Additional duration: 5s
โโโ Shadowsocks server settings:
| โโโ Enabled: no
| โโโ Public IP data API: ipinfo
โโโ Version settings:
โโโ Enabled: yes
2024-04-08T03:53:51-04:00 INFO [routing] default route found: interface eth0, gateway 10.0.3.1, assigned IP 10.0.3.12 and family v4
2024-04-08T03:53:51-04:00 INFO [routing] adding route for 0.0.0.0/0
2024-04-08T03:53:51-04:00 INFO [firewall] setting allowed subnets...
2024-04-08T03:53:51-04:00 INFO [routing] default route found: interface eth0, gateway 10.0.3.1, assigned IP 10.0.3.12 and family v4
2024-04-08T03:53:51-04:00 INFO TUN device is not available: open /dev/net/tun: no such file or directory; creating it...
2024-04-08T03:53:51-04:00 INFO [dns] using plaintext DNS at address 1.1.1.1
2024-04-08T03:53:51-04:00 INFO [http server] http server listening on [::]:8000
2024-04-08T03:53:51-04:00 INFO [healthcheck] listening on 127.0.0.1:9999
2024-04-08T03:53:51-04:00 INFO [firewall] allowing VPN connection...
2024-04-08T03:53:51-04:00 INFO [openvpn] OpenVPN 2.5.8 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Nov 2 2022
2024-04-08T03:53:51-04:00 INFO [openvpn] library versions: OpenSSL 3.1.4 24 Oct 2023, LZO 2.10
2024-04-08T03:53:51-04:00 INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]37.19.211.94:1194
2024-04-08T03:53:51-04:00 INFO [openvpn] UDP link local: (not bound)
2024-04-08T03:53:51-04:00 INFO [openvpn] UDP link remote: [AF_INET]37.19.211.94:1194
2024-04-08T03:53:51-04:00 INFO [openvpn] [ca-tor-v083.prod.surfshark.com] Peer Connection Initiated with [AF_INET]37.19.211.94:1194
2024-04-08T03:53:52-04:00 ERROR [openvpn] Unrecognized option or missing or extra parameter(s) in [PUSH-OPTIONS]:7: block-outside-dns (2.5.8)
2024-04-08T03:53:52-04:00 INFO [openvpn] TUN/TAP device tun0 opened
2024-04-08T03:53:52-04:00 INFO [openvpn] /sbin/ip link set dev tun0 up mtu 1500
2024-04-08T03:53:52-04:00 INFO [openvpn] /sbin/ip link set dev tun0 up
2024-04-08T03:53:52-04:00 INFO [openvpn] /sbin/ip addr add dev tun0 10.8.8.2/24
2024-04-08T03:53:52-04:00 INFO [openvpn] UID set to nonrootuser
2024-04-08T03:53:52-04:00 INFO [openvpn] Initialization Sequence Completed
2024-04-08T03:53:52-04:00 INFO [dns] downloading DNS over TLS cryptographic files
2024-04-08T03:53:53-04:00 INFO [healthcheck] healthy!
had similar issue with wireguard and surfshark
solution: had to change incorrect server IP from gluetun wiki to updated from surfshark
had similar issue with wireguard and surfshark
solution: had to change incorrect server IP from gluetun wiki to updated from surfshark
Yep, I copied my server name directly from surfshark
Hostnames: ca-tor.prod.surfshark.com
Here's my settings and log
โโโ VPN settings: โโโ Firewall settings: | โโโ Enabled: yes
How do I set Firewall to true? This page doesn't show that option
https://github.com/qdm12/gluetun-wiki/blob/main/setup/providers/surfshark.md
running into the same issue with wireguard + windscribe, using openvpn works fine. Not sure if this matters, but I am running docker in a privileged LXC container on Proxmox.
same problem with windscribe. tried downloading a new wireguard config, no luck. Tried a new config with a new location, still no luck.
any pointers gratefully received. gluetun's been working fine for months but now suddenly not.
I'm getting the exact same errors. Trying to set it up using Windscribe and no matter what I've tried, it comes back that way.
did you find a fix? same windscribe issue here
First, have you read Typically i/o timeout errors indicate the Wireguard connection is not working. in your logs???
Second have you read
2024-03-22T13:31:17-04:00 INFO [healthcheck] ๐ See https://github.com/qdm12/gluetun-wiki/blob/main/faq/healthcheck.md
2024-03-22T13:31:17-04:00 INFO [healthcheck] DO NOT OPEN AN ISSUE UNLESS YOU READ AND TRIED EACH POSSIBLE
Have you updated your servers data??????
How do I set Firewall to true? This page doesn't show that option
This drives me mad. Don't touch it. It's undocumented on purpose. The firewall is enabled by default. I even renamed the environment variable to FIREWALL_ENABLED_DISABLING_IT_SHOOTS_YOU_IN_YOUR_FOOT so it's clear you should NOT use it!!!
Finally, this is the WIKI so not a place for reporting bugs (this is unlikely a bug on top of this). Please migrate this to Github discussion on the Gluetun repository, or qdm12/gluetun#2154 ๐คท
Closed issues are NOT monitored, so commenting here will NOT be seen by the maintainer.
If you think this is still unresolved and have more information to bring, please create another issue.
This is an automated comment setup because @qdm12 is the sole maintainer of this project
which became too popular to monitor closed issues for additional comments.