-
Notifications
You must be signed in to change notification settings - Fork 53
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
unable to connect with latest version #55
Comments
i resolved for the moment by reverting to polkaned/expressvpn:3.57.0.3-1.653ac494 |
I had the same problem. ExpressVPN would connect, but other containers couldn't use it for networking. Reverting to the previous version also solved it for me. |
reverting also worked for me, I also updated expressvpn from within the container and all is working fine. |
came here to report same. |
Strange, tests went well. |
pulled new, still unable to connect.
reverting to: 3.57.0.3-1.653ac494 works fine
using container manager via Synology DSM 7.2 update 3 |
watching |
Also unable to connect with latest version. Simple Unable to Connect error, no info in logs or in diagnostics. Able to ping directly outside of local network but not connect via expressvpn confirm that 3.57.0.3-1.653ac494 works fine |
Fixed in my case by switching to legacy iptables:
|
Same (or similar) issue. I have one expressvpn container then other containers which share its network stack with With latest version DNS is broken within the other containers. Works fine within the actual VPN container, but requests from the containers sharing the VPN network stack just timeout.
Contents of resolv.conf is the same with 3.57 Hosts are pingable by IPs in sub containers, its just DNS which doesnt work. Side note seems strange to me when sharing a network stack with |
Yep, I ended up with the same behaviour as @didster with the network stack but haven't had time to figure it out. I ended up removing |
I've done a few tests myself, and I'm not seeing any issues in the expressvpn container without @tariq-a 's fix. I can ping domains (google.com, github.com, etc), and I can ping IP addresses (8.8.8.8, 1.1.1.1). As @didster says, hosts connecting to the container fail to resolve with DNS. To test whether this is simply a DNS issue for connecting containers, I did the following prior to adding @tariq-a 's change.
While the container is unable to resolve DNS, internet traffic is not leaked and is instead sent down the VPN tunnel. After applying @tariq-a 's change, I tested again. The container using expressvpn as a network container succeeds in using DNS as expected, but the traffic is again leaked as can be seen in the image below (ignore the no replies, I can ping google.com as expected). To me, this seems like DNS to non-expressvpn DNS servers is being blocked within the expressvpn container. This would be expected if the network lock for expressvpn is functioning as expected. Prior to having IPTables, it was possible for the network traffic to be leaked since expressvpn had no control over where the network traffic would flow. This means the network traffic would sometimes go to expressvpn, sometimes not. I'm going to do some more tests throughout today and see what it takes to forward all DNS requests that come through the container to the expressvpn DNS servers. I'm unable to test the issue of the VPN not connecting with iptables since that doesn't happen for me. I'd personally recommend reverting the iptables changes made to the recent images since traffic is once again being leaked. |
@tariq-a, are you willing to test a container running efreal/expressvpn-deluge:latest as your target for The changes I implemented can be seen in my setup file here: https://github.com/ephreal/expressvpn-deluge/blob/main/setup.sh |
@polkaned the changes to use So I'm not sure exactly why that particular change was needed but it looks like it isn't a one-size-fits-all solution. The container is running on:
|
@ephreal Tried it but get the same problem with expressvpn failing to connect. I'm only able to get it to connect by using |
I tested with latest version and I have this issue. @RichBrew suggestion about revert to older version fix the issue in my case. I am unable to use latest on my setup. It been working perfectly fine in a Proxmox LXC container for a year or so, but latest is not working for me :-( |
Thanks for your reply. I find a way to fix this. First we need to understand that Docker overwrite resolv.conf with its dns server ip (which is a loopback IP).
It is a bit ugly, but it seems to work. |
Until you implement this, if image doesn't work with iptables, you can remove it at the runtime. |
I push a new temporary image without iptables: expressvpn-wo-iptables https://hub.docker.com/r/polkaned/expressvpn-wo-iptables So you have 3 ways to handle that for the moment. |
@polkaned , I followed your workaround #55 (comment)
I'm using Unraid. So I mounted the volume and the file in the network-tool like this :
I mounted this volume in each container using expressvpn and it seems to work. |
I'm still using polkaned/expressvpn:3.57.0.3-1.653ac494 and just updating expressvpn from within the container for now. Has :latest been updated/fixed? |
I am attempting to use this on an UNRAID system and the docker. I have modified a terminal command with my activation code. The first time I ran the code it appeared to be working correctly but, I needed to make modifications to it. When I uninstalled it, attempted to run docker run polkaned/expressvpn with the modifications, it keeps coming back with my activation failing. What might I need to modify or delete to get past this? Unable to find image 'polkaned/expressvpn:latest' locally To enable Threat Manager, type 'expressvpn preferences set block_trackers true'. Enter activation code: This activation code has either expired or is incorrect. Please log in to our website to get your correct activation code and try again. If you have any questions, please contact us. |
since the updated image was released last week, vpn will no longer connect
i have been using the container for about a year with no issues until now
no other changes have been made to the container settings
The text was updated successfully, but these errors were encountered: