Comments (7)
Hello fellow french compatriot 🇫🇷
I think your problem is that you use Host networking and that this image hasn't been tailored for that.
I don't use OMV docker interface, I find it simpler to use raw docker compose files.
As long as your using bridge networking or macvlan, the ethernet name inside docker is eth0.
By using host network mode, you're exposing your real networks cards into docker.
I don't get the point of trying host networking, as ALL your OMV traffic would go through nordvpn. I think it's unlikely you really want with plex, as you cannot have port forwarding on nordvpn.
vpnclient:
cap_add:
- net_admin
container_name: vpnclient
dns:
- 8.8.8.8
- 8.8.4.4
environment:
CATEGORY: P2P
COUNTRY: France
NETWORK: 192.168.0.0/23
PASS: PASSWORD
PROTOCOL: openvpn_udp
TZ: Europe/Paris
USER: USERNAME
expose:
- 8112
- 22
- 80
- 443
image: azinchen/nordvpn
networks:
macnet0:
ipv4_address: 192.168.0.210
restart: unless-stopped
security_opt:
- label:disable
stdin_open: true
tmpfs:
- /tmp
tty: true
volumes:
- /dev/net:/dev/net:z
The macnet0 is an external network using macvlan driver to use a dedicated IP in my Lan environment (192.168.0.0/23 network), so I can connect to associated service using a real world ip without depending on NAT on a single ip already crowded by other services.
My other docker-compose that use nordvpn use this as network_mode: "container:vpnclient"
Thought it may fail upstart because of broken dependancies, it's easier to pull them all in the same docker-compose and use "depends_on" to avoid this.
If you really want to use network_mode: host, I guess you need more help that I can offer.
I guess the network name could be an .env variable and script that use network device name generated dynamically through sed or a template system ?
Any thoughts about this @azinchen ?
from nordvpn.
I agree, it is a bad idea to use Host networking with any VPN client images. VPN client creates own network environment, and it would be better to isolate it. (by setting Bridge networking).
from nordvpn.
I use macvlan on purpose because I prefer to organise my container that way for stuff that I don't wan't to NAT.
It also let me use my VPN containers as a router without a proxy with other computers ;)
from nordvpn.
I run it with similar condition and got no error.
I'm on Open Media Vault, based on debian 9.
I got multiple Ethernet card, but no eth0.
I just did a docker-compose pull and restarted but it works.
Did you add the /dev/net volume ?
from nordvpn.
Thanks for your reply.
That's great I'm also using OMV on debian 9.
Attached the screen shots of how I've configured the docker.
And each time I launched the docker, it removes a line in iptables and I have to recreate it :
iptables -I OUTPUT 4 -p all -o enp3s0 -j ACCEPT
from nordvpn.
The macnet0 is an external network using macvlan driver to use a dedicated IP in my Lan environment (192.168.0.0/23 network), so I can connect to associated service using a real world ip without depending on NAT on a single ip already crowded by other services.
It works Ok without macvlan on my server. Exclude 'networks' section at all from your compose file and change 'expose' section to 'ports'.
from nordvpn.
OK I've tried Bridge networking and all is ok now.
Thank you very much guys for the help from France :)
Sorry but I'm not used to docker.
from nordvpn.
Related Issues (20)
- IP leaked when nordvpn is disconnected HOT 6
- Fix code scanning alert - Low severity - CVE-2022-42916 vulnerability in curl
- Remove deprecated save-state and set-output commands
- Traefik, NordVPN, QBittorrent HOT 2
- Accessing qBittorrent / NordVPN HOT 1
- Fix code scanning alert - Low severity - CVE-2022-43552 vulnerability in curl
- Sudden /dev/net/tun disappearence HOT 1
- Fixed packages in Dockerfile HOT 2
- cannot to connect to any server: parse error: Invalid numeric literal at line 1, column 7 HOT 1
- Container doenst connect to my vpn since 2.7.0. HOT 6
- Username and PW login now disabled HOT 2
- docker intall error "missing signature key" HOT 1
- Having trouble finding the logs HOT 2
- UDP and HTTP trackers are being blocked
- Please add a way to specify a city
- Is Privoxy available?
- Unrecognized option or missing or extra parameter HOT 5
- High CPU usage and AEAD Decrypt errors
- Including dnsmasq in Image? HOT 1
- Some help with forwarding requests from an adapter TO the VPN HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from nordvpn.