Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bug: PIA stopped working with Gluetun. Wrong credentials #2589

Closed
monocodes opened this issue Nov 15, 2024 · 4 comments
Closed

Bug: PIA stopped working with Gluetun. Wrong credentials #2589

monocodes opened this issue Nov 15, 2024 · 4 comments

Comments

@monocodes
Copy link

Is this urgent?

Yes

Host OS

DSM 7.2.2-72806 Update 1

CPU arch

x86_64

VPN service provider

Private Internet Access

What are you using to run the container

docker-compose

What is the version of Gluetun

Running version latest built on 2024-11-12T09:15:25.331Z (commit f9bdb21)

What's the problem 🤔

All of a sudden Gluetun can't connect to PIA via OpenVPN with the message Your credentials might be wrong
This setup has been working for me for at least 2 years.

Nothing changed today on my side.

Last changes in homelab were the DSM updates couple of days ago.

I tried different PIA servers with no success. Gluetun can connect to the servers but with AUTH_FAILED
Also tried PIA macOS App and PIA Chrome App. Everything works fine with these.

Maybe PIA changed anything in the auth part? CA certificate?

Share your logs (at least 10 lines)

2024-11-15T16:55:12+01:00 INFO [routing] default route found: interface eth0, gateway 172.25.0.1, assigned IP 172.25.0.3 and family v4
2024-11-15T16:55:12+01:00 INFO [routing] adding route for 0.0.0.0/0
2024-11-15T16:55:12+01:00 INFO [firewall] setting allowed subnets...
2024-11-15T16:55:12+01:00 INFO [routing] default route found: interface eth0, gateway 172.25.0.1, assigned IP 172.25.0.3 and family v4
2024-11-15T16:55:12+01:00 INFO [routing] adding route for 192.168.1.0/24
2024-11-15T16:55:12+01:00 INFO [http server] http server listening on [::]:8000
2024-11-15T16:55:12+01:00 INFO [healthcheck] listening on 127.0.0.1:9999
2024-11-15T16:55:12+01:00 INFO [dns] using plaintext DNS at address 1.1.1.1
2024-11-15T16:55:12+01:00 INFO [firewall] allowing VPN connection...
2024-11-15T16:55:12+01:00 INFO [shadowsocks] listening TCP on [::]:8388
2024-11-15T16:55:12+01:00 INFO [shadowsocks] listening UDP on [::]:8388
2024-11-15T16:55:12+01:00 INFO [openvpn] OpenVPN 2.6.11 x86_64-alpine-linux-musl [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
2024-11-15T16:55:12+01:00 INFO [openvpn] library versions: OpenSSL 3.3.2 3 Sep 2024, LZO 2.10
2024-11-15T16:55:12+01:00 INFO [openvpn] TCP/UDP: Preserving recently used remote address: [AF_INET]188.213.34.101:502
2024-11-15T16:55:12+01:00 INFO [openvpn] Attempting to establish TCP connection with [AF_INET]188.213.34.101:502
2024-11-15T16:55:12+01:00 INFO [openvpn] TCP connection established with [AF_INET]188.213.34.101:502
2024-11-15T16:55:12+01:00 INFO [openvpn] TCPv4_CLIENT link local: (not bound)
2024-11-15T16:55:12+01:00 INFO [openvpn] TCPv4_CLIENT link remote: [AF_INET]188.213.34.101:502
2024-11-15T16:55:15+01:00 INFO [openvpn] [istanbul403] Peer Connection Initiated with [AF_INET]188.213.34.101:502
2024-11-15T16:55:16+01:00 ERROR [openvpn] AUTH: Received control message: AUTH_FAILED

Your credentials might be wrong 🤨

Share your configuration

version: "3.8"
services:
  vpn:
    image: qmcgaw/gluetun
    # image: qmcgaw/gluetun:v3.34.1
    container_name: vpn
    cap_add:
      - net_admin
    devices:
      - /dev/net/tun
    volumes:
      - /volume1/docker/gluetun:/gluetun
    environment:
      - VPN_SERVICE_PROVIDER=private internet access
      # - SERVER_REGIONS=Serbia
      # - SERVER_REGIONS=Georgia
      - SERVER_REGIONS=Turkey
      - PIA_ENCRYPTION=normal
      - OPENVPN_PROTOCOL=udp
      - VPN_PORT_FORWARDING=on
      - VPN_PORT_FORWARDING_STATUS_FILE
      - TZ=Asia/Yerevan
      - FIREWALL_OUTBOUND_SUBNETS=192.168.1.0/24
      - UPDATER_PERIOD=1h # Updates VPN servers list
      - SHADOWSOCKS=on
      # - SHADOWSOCKS_LOG=on
      - SHADOWSOCKS_CIPHER=aes-256-gcm
      # aes-256-gcm because iOS Potatso can't work with chacha20-ietf-poly1305

      # Unbound (DNS over TLS) logging, default is 1 and 0
      # - DOT_VERBOSITY=2
      # - DOT_VERBOSITY_DETAILS=1
    ports:
      - 8999:8999
      - 8000:8000
      - 8388:8388/tcp
      - 8388:8388/udp
    env_file:
      - ./vpn.env
    restart: unless-stopped
@github-actions GitHub Actions
Copy link
Contributor

@qdm12 is more or less the only maintainer of this project and works on it in his free time.
Please:

@samsepiol59
Copy link

samsepiol59 commented Nov 15, 2024
edited
Loading

EDIT 001 - it's now working. Sorry qdm12, it was either PIA's or OpenVPN's issue!

Me too, exact same thing but it's docker on Ubuntu 22.04. Using PIA, OpenVPN, etc... no issues ever up until now. Getting the same errors.

@monocodes
Copy link
Author

Yes, it's working now. PIA problem I believe.

@github-actions GitHub Actions
Copy link
Contributor

Closed issues are NOT monitored, so commenting here is likely to be not seen.
If you think this is still unresolved and have more information to bring, please create another issue.

This is an automated comment setup because @qdm12 is the sole maintainer of this project
which became too popular to monitor issues closed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@samsepiol59 @monocodes