-
-
Notifications
You must be signed in to change notification settings - Fork 350
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bug: IPv6 might leak with PIA and docker configured to enable IPv6 #425
Comments
Duplicate of #422 It seems very few users use IPv6 (not me as well), since most openvpn providers don't support ipv6 (except Mullvad I believe), but yeah it's something I need to dig into soon. |
thanks for adressing this, sorry that i did not hook up with the other Issue. i thought it would be slightly off topic there. Also thanks for the work with this container! I did test it with a container, and it works like a charm! |
Hey @kubax I have a Docker image
Note 1: you can now set your own Note 2: #422 got closed to reduce duplication of issues. |
Thanks for putting work into fixing this so fast! i will check if it fixes the problem tomorrow , and report back (hopefully i don't forget it 🙈) |
Ok, it seems like it works! I did try realy hard to reproduce the IPv6 leaking with my current setup, but could not have it leak my IPv6... Even without switching to the ipv6 tag. Took me some time to figure out why... seems like pushing the ipv6 branch also updated the latest branch, and i got the fix allready in my container. That said, i did make a sanity check with 3.15.0 and i can reproduce the "problem" there. So seems like you fix works :) Great job!!! |
Cool! Closed in 7ba98af |
Is this urgent?: it might be...
Host OS (approximate answer is fine too): Arch Linux
CPU arch or device name: amd64
What VPN provider are you using: PIA
What are you using to run your container?: Docker Compose (Portainer)
What is the version of the program:
What's the problem 🤔
In case of Docker is configured to use IPv6, "networkmode: bridge" leads to the container be able to use the Hosts IPv6 address, and bypass the OpenVPN (in case of PIA at least).
Changed my Docker-compose like so, to have only IPv4 in this container.
I might also be missing something... i recently enabled IPv6 on my docker Host, and just started switching from combined vpn + service container, to gluetun... hoping in simplyfying my structures... (wich seems promising so far)
The text was updated successfully, but these errors were encountered: