Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PrivoxyVPN not forwarding port 8118 as expected #26

Open
n1nj4888 opened this issue Nov 16, 2022 · 2 comments
Open

PrivoxyVPN not forwarding port 8118 as expected #26

n1nj4888 opened this issue Nov 16, 2022 · 2 comments

Comments

@n1nj4888
Copy link

n1nj4888 commented Nov 16, 2022
edited
Loading

Hi There,

Until recently privoxyVPN worked great on my Ubuntu 20.04 swarm setup. I recently upgraded to Ubuntu 22.04 and I'm not sure whether that is a factor in this but now I can't seem to contact the privoxy server on port 8118 from outside the container.

Whilst netstat reports port 8118 as listening on the node, it is not contactable outside of the container, either directly on the host node or from across the network.

(1) Running the following on the node itself (outside the container) returns results instantly with the correct (non-VPN) info:

curl http://ipinfo.io
{
  "ip": "x.x.x.x",
  "city": "XYZ",
  "region": "XYZ",
  "country": "XYZ",
  "loc": "XYZ,XYZ",
  "org": "XYZ",
  "postal": "XYZ",
  "timezone": "XYZ",
  "readme": "https://ipinfo.io/missingauth"
}

(2) If I try to curl the same address via the privoxyvpn container, it just hangs and nothing is returned until I CTRL+C to exit the command:

curl http://ipinfo.io -x http://localhost:8118

(3) If I run the same commands (1) and (2) above but from within the privoxy container, they both return instantly with the IP details of the VPN connection/location.

Any ideas what might be going wrong here?
@n1nj4888 n1nj4888 changed the title PrivoxyVPJN not forwarding port 8118 as expected PrivoxyVPN not forwarding port 8118 as expected Nov 16, 2022
@n1nj4888
Copy link
Author

I've done some more investigation into this, and it seems to be because when launched in a docker swarm network, the container only binds port 8118 to IPV6 and not IPv4?

For example, when deploying the container as a docker swarm service, I see the following:

docker container inspect privoxyvpn_privoxyvpn.1.o2fwlr43yqvm9bu3ny6fbnpyq
[
...
            "ExposedPorts": {
                "8118/tcp": {}
            },
...
        },
        "NetworkSettings": {
            "Bridge": "",
            "SandboxID": "8850324505f29210aa4b68464e271844f3254284c0920074bb9766db427b5dfa",
            "HairpinMode": false,
            "LinkLocalIPv6Address": "",
            "LinkLocalIPv6PrefixLen": 0,
            "Ports": {
                "8118/tcp": null
            },
...
]

And netstat only shows the container listening on IPV6:

netstat -a | grep 8118
tcp6       0      0 [::]:8118               [::]:*                  LISTEN

But if I run the same commands on the container started with docker-compose I see:

docker container inspect swarm-services_privoxyvpn_1
[
    {
...
        "Config": {
            "Hostname": "d8de4e8d03b0",
            "Domainname": "",
            "User": "",
            "AttachStdin": false,
            "AttachStdout": false,
            "AttachStderr": false,
            "ExposedPorts": {
                "8118/tcp": {},
                "9118/tcp": {}
            },
...
        "NetworkSettings": {
            "Bridge": "",
            "SandboxID": "d9bca3b7e91c323275f3127c98ede9f884d7050295fcb6d19a84c24f8da512f6",
            "HairpinMode": false,
            "LinkLocalIPv6Address": "",
            "LinkLocalIPv6PrefixLen": 0,
            "Ports": {
                "8118/tcp": [
                    {
                        "HostIp": "0.0.0.0",
                        "HostPort": "8118"
                    },
                    {
                        "HostIp": "::",
                        "HostPort": "8118"
                    }
                ],
                "9118/tcp": [
                    {
                        "HostIp": "0.0.0.0",
                        "HostPort": "9118"
                    },
                    {
                        "HostIp": "::",
                        "HostPort": "9118"
                    }
                ]
            },
...
]

And netstat shows that the container started under docker-compose is listening on BOTH IPv4 and IPv6?

netstat -a | grep 8118
tcp        0      0 0.0.0.0:8118            0.0.0.0:*               LISTEN
tcp6       0      0 [::]:8118               [::]:*                  LISTEN

@n1nj4888
Copy link
Author

n1nj4888 commented Nov 16, 2022
edited
Loading

Some more information using curl -v from the host shows that the host does connect to the privoxyvpn container proxy on ipv6 port 8118, but then just hangs?

curl -v http://ipinfo.io -x http://localhost:8118
*   Trying 127.0.0.1:8118...
*   Trying ::1:8118...
* Connected to (nil) (::1) port 8118 (#0)
> GET http://ipinfo.io/ HTTP/1.1
> Host: ipinfo.io
> User-Agent: curl/7.81.0
> Accept: */*
> Proxy-Connection: Keep-Alive
>

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@n1nj4888