Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Shells Virtual Desktop
BMail.ag - Secure Email Service
Server.net
CPLicense.net
VPS Server
Buy VPN
Vultr
VMs for AI
HostDare
HostDare
ReliableSite White-Label Dedicated Hosting for Resellers
InterServer VPS
BMail.ag - Secure Email Service
Best VPN
High-Performance Bare Metal Server Solutions
Karvl.com
Server Mania Cloud Hosting
DataWagon Hosting
AlphaVPS Hosting
Evoxt.com
Clouvider
VPS Hosting with NVMe
Residential IPs in the US & 4G Mobile Proxies in EU & US with Unlimited Bandwidth
ReliableSite White-Label Dedicated Hosting for Resellers
Rabisu - Hosting Solutions
Shells Virtual Desktop

Categories

In this Discussion

Home Announcements
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

[2024 EXTENDED] Black Friday / Cyber Monday: FLASH SALE & MEGATHREAD

16936946966986991337

Comments

  • SaragoldfarbSaragoldfarb Member, Megathread Squad

    @barbaros said:

    @beanman109 said:

    @barbaros said:
    Well after frustration of 15 minutes and rage re-install, I realized that default user in OVH is not root but debian. So I was trying to login with wrong user all this time FML

    usually you can log in with root but just get displayed a message to use the debian account right?

    I think root login is disabled with their Debian template. I even switch to rescue mode and changed root password and it still didn't work. I just need to switch my new servers to SSH key so it doesn't happen again -_-

    Yes, you'll have to enable root login. SSH in with keys, enable root login to make it work.

    Thanked by 3beanman109 barbaros r3k
  • SaragoldfarbSaragoldfarb Member, Megathread Squad

    @Zappie said:
    @admax @Firework this is your last chance :D

    Yes!

    Thanked by 2admax r3k
  • ZyraZyra Member

    @Zappie said:
    Its lunchtime here in New Zealand (granted, on a tuesday...) but I feel a little hungry for another (last) round of 90% discount on our New Zealand based servers

    GL01U9RZ8U

    This will be our little 10 slots so get em while they're hot.

    Captcha verification failed. Contact support for more information.

    Thanked by 1r3k
  • maverickmaverick Member

    @emgh said:

    @beanman109 said:

    @emgh said:

    @beanman109 said:

    @emgh said:

    @Yarmeli said:

    @emgh said:
    Ok I’ll be here for 30 minutes

    Help me help you help me

    If anyone solves the issue, he/she gets to choose if he/she wants a steam key in DM’s or if I should post one here

    In memory of @beanman109

    It'll be a decent one

    worth a try - any quick tl;dr of what the issue is?

    Alright, let me summarize

    I've got a EX44

    I bought this: https://docs.hetzner.com/robot/dedicated-server/ip/failover/

    I have this Wireguard container:

      wireguard:
    image: linuxserver/wireguard
    container_name: wireguard
    cap_add:
      - NET_ADMIN
    environment:
      - PUID=1000
      - PGID=1000
      - TZ=Europe/London
      - SERVERURL=[failover_ip]
      - SERVERPORT=51821
      - PEERS=1
      - PEERDNS=auto
      - INTERNAL_SUBNET=10.13.14.0/24
      - LOG_CONFS=true
    volumes:
      - ../data/config/wireguard:/config # WireGuard configuration
    ports:
      - "51821:51820/udp"
    sysctls:
      - net.ipv4.conf.all.src_valid_mark=1
    restart: unless-stopped

    I can connect to it just fine, but traffic is routed though the primary IP, not my failover one.

    From the host:

    root@xxx ~ # ip route
    default via [primary ip's gateway] dev enp5s0 proto static onlink
    [failover ip] via [failover ip] dev enp5s0 proto static
    --bunch of docker stuff--

    netplan:

    network:
  version: 2
  renderer: networkd
  ethernets:
    enp5s0:
      addresses:
        - [primary ip]/32
        - My i m it s hate ipv6
        - [failover ip]/32
      routes:
        - on-link: true
          to: 0.0.0.0/0
          via: [primary ip's gateway]
        - to: default
          via: My i m it s hate ipv6
        - to: [failover ip]/32
          via: [failover ip]
      nameservers:
        addresses:
          .....

    The wg0.conf:

    [Interface]
Address = 10.13.14.1
ListenPort = 51820
PrivateKey = xxx
PostUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -s 10.13.14.0/24 -o eth+ -j MASQUERADE
PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -s 10.13.14.0/24 -o eth+ -j MASQUERADE

    I highly suspect I need to do some --to-source magic instead of masquerade in the above, but as soon as I try something in regards to the PostUp & PostDown, I fuck up everything

    does setting the INTERFACE variable in the wg docker-compose work?

    As an envirement variable? Yes, but what would I put? The failover IP as I do with curl?

    I thought you said the failover IP had it's own interface, maybe I'm getting mixed up

    No, same enp5s0

    but I can run

    curl --interaface [failover ip] https://ifconfig.me/

    and I'll get the failover IP

    @maverick dosen't this contradict your point? Maybe it doesn't I'm not good with networking

    technically yes

    which is then good news for you

    must admit that i never tried to exit from server specifically with the FO IP, so maybe that's why i (wrongly) think it's impossible (and by default everything uses primary ip)

    Thanked by 2emgh r3k
  • beanman109beanman109 Member, Host Rep, Megathread Squad

    @Saragoldfarb said:

    @barbaros said:

    @beanman109 said:

    @barbaros said:
    Well after frustration of 15 minutes and rage re-install, I realized that default user in OVH is not root but debian. So I was trying to login with wrong user all this time FML

    usually you can log in with root but just get displayed a message to use the debian account right?

    I think root login is disabled with their Debian template. I even switch to rescue mode and changed root password and it still didn't work. I just need to switch my new servers to SSH key so it doesn't happen again -_-

    Yes, you'll have to enable root login. SSH in with keys, enable root login to make it work.

    Or login with the Debian account then sudo su or su -
    Then just change permitrootlogin to yes and restart ssh

    Thanked by 1r3k
  • beanman109beanman109 Member, Host Rep, Megathread Squad

    @beanman109 said:

    @Saragoldfarb said:

    @barbaros said:

    @beanman109 said:

    @barbaros said:
    Well after frustration of 15 minutes and rage re-install, I realized that default user in OVH is not root but debian. So I was trying to login with wrong user all this time FML

    usually you can log in with root but just get displayed a message to use the debian account right?

    I think root login is disabled with their Debian template. I even switch to rescue mode and changed root password and it still didn't work. I just need to switch my new servers to SSH key so it doesn't happen again -_-

    Yes, you'll have to enable root login. SSH in with keys, enable root login to make it work.

    Or login with the Debian account then sudo su or su -
    Then just change permitrootlogin to yes and restart ssh

    dont forget to change the root password btw

    Thanked by 1r3k
  • SaragoldfarbSaragoldfarb Member, Megathread Squad
    edited December 2024

    Thank you dear God almighty. By that I mean @Zappie ,!

    Thanked by 7maverick Zappie plumberg beanman109 admax FAT32 r3k
  • plumbergplumberg Veteran, Megathread Squad

    @Zappie said:
    Its lunchtime here in New Zealand (granted, on a tuesday...) but I feel a little hungry for another (last) round of 90% discount on our New Zealand based servers

    GL01U9RZ8U

    This will be our little 10 slots so get em while they're hot.

    Already gone...

    @Zappie

    The promotion code entered has already been used

    Thanked by 2maverick r3k
  • zakkuunozakkuuno Member

    @emgh said:

    @zakkuuno said:

    @emgh said:

    @zakkuuno said:

    @emgh said:
    Ok I’ll be here for 30 minutes

    Help me help you help me

    If anyone solves the issue, he/she gets to choose if he/she wants a steam key in DM’s or if I should post one here

    In memory of @beanman109

    It'll be a decent one

    Are you trying to connect using both ips or you want to specify the outbound ip?

    specify outbound

    Yeah you need to do SNAT. But there's another layer of NAT from inside the container so doing SNAT in there will mess things up. The easy way is to just set network_mode: host and supply your own wg config which I remember the docker image supports.

    PostUp = iptables -A FORWARD -i <wireguard_interface> -j ACCEPT; iptables -A FORWARD -o <outbound_interface> -j ACCEPT; iptables -t nat -A POSTROUTING -s 10.13.14.0/24 -o <outbound_interface> -j SNAT --to-source <failover_ip>
    PostDown = iptables -D FORWARD -i <wireguard_interface> -j ACCEPT; iptables -D FORWARD -o <outbound_interface> -j ACCEPT; iptables -t nat -D POSTROUTING -s 10.13.14.0/24 -o <outbound_interface> -j SNAT --to-source <failover_ip>

    Hold on

    Will try

    If this works, key is yours

    I will help for free. I've never setup a wireguard server inside a container so tell me if it works.

    Thanked by 1r3k
  • doobydoedoobydoe Member

    @Zappie again lost it.

    Thanked by 1r3k
  • admaxadmax Member, Megathread Squad
    edited December 2024

    @Zappie said:
    Its lunchtime here in New Zealand (granted, on a tuesday...) but I feel a little hungry for another (last) round of 90% discount on our New Zealand based servers

    GL01U9RZ8U

    This will be our little 10 slots so get em while they're hot.

    I love you so much! Zappie!!!!!!!!!!!!!!! I finally managed to get one!!!!!!!!!! <3 <3 <3

    Thanked by 7plumberg Yarmeli Zappie aviadmini FAT32 maverick r3k
  • cybertechcybertech Member

    @Zappie said:
    Its lunchtime here in New Zealand (granted, on a tuesday...) but I feel a little hungry for another (last) round of 90% discount on our New Zealand based servers

    GL01U9RZ8U

    This will be our little 10 slots so get em while they're hot.

    damn applied but used up when invoice generated 😕

    Thanked by 1r3k
  • doobydoedoobydoe Member

    @Zappie coupon still available or all of them got used.

    Thanked by 1r3k
  • emghemgh Member, Megathread Squad

    Now as soon as the wireguard container starts, all network access is lost to the server :D

    I'll try to extremely quickly shut down the docker container when I get in to ssh on boot

    probably my fault though

    Thanked by 5plumberg beanman109 barbaros maverick r3k
  • stephanukstephanuk Member

    @FAT32 said: VirMach: $7.9/yr+ 768MB+ KVM in US/EU

    VirMach in the house xd

    Thanked by 1r3k
  • plumbergplumberg Veteran, Megathread Squad

    @emgh said:

    >

    probably my fault though

    Yeah.

    💯 your fault.
    First you crash your prod system earlier.
    Now this

    Whay is going on?

    You need to get some help bruh

    Thanked by 3emgh maverick r3k
  • beanman109beanman109 Member, Host Rep, Megathread Squad

    @emgh said:
    Now as soon as the wireguard container starts, all network access is lost to the server :D

    I'll try to extremely quickly shut down the docker container when I get in to ssh on boot

    probably my fault though

    absolutely nothing beats that feeling of trying to fix something and somehow making it 10 times worse

    Thanked by 10Yarmeli plumberg Saragoldfarb emgh zakkuuno lukast__ FAT32 Decicus maverick r3k
  • SaragoldfarbSaragoldfarb Member, Megathread Squad

    This year has been sweet with greatvexo> @stephanuk said:

    @FAT32 said: VirMach: $7.9/yr+ 768MB+ KVM in US/EU

    VirMach in the house xd

    Seems rather expensive.

    Thanked by 2stephanuk r3k
  • plumbergplumberg Veteran, Megathread Squad

    @beanman109 said:

    @emgh said:
    Now as soon as the wireguard container starts, all network access is lost to the server :D

    I'll try to extremely quickly shut down the docker container when I get in to ssh on boot

    probably my fault though

    absolutely nothing beats that feeling of trying to fix something and somehow making it 10 times worse

    💯

    I mean, what's the fun when the fix works the first time?

    Thanked by 2emgh r3k
  • admaxadmax Member, Megathread Squad
    edited December 2024

    I’m in such a good mood today, I’m getting really hyped. Maybe it’s because I’ve gotten way too hooked on my New Zealand VPS!!!!!! <3 <3 <3

    Thanked by 4plumberg Zappie maverick r3k
  • FAT32FAT32 Administrator, Deal Compiler Extraordinaire

    MORNING

    Thanked by 23Zyra plumberg slownedstark lukast__ zakkuuno beanman109 yopp aviadmini Yarmeli emgh admax cybertech barbaros skio Saragoldfarb BalleKlasker darkspyre0 jolo22 nullnothere ebietsy Decicus maverick r3k
  • ZyraZyra Member

    @FAT32 said:
    MORNING

    you barely slept though

    Thanked by 5FAT32 emgh admax maverick r3k
  • FAT32FAT32 Administrator, Deal Compiler Extraordinaire

    Did I just missed some good New Zealand stuff

    Thanked by 7Zyra emgh aviadmini admax Saragoldfarb maverick r3k
  • aviadminiaviadmini Member

    @FAT32 said:
    MORNING

    How do you sleep 2 hours a day
    Also morning

    Thanked by 4FAT32 admax maverick r3k
  • beanman109beanman109 Member, Host Rep, Megathread Squad

    @FAT32 said:
    MORNING

    Thanked by 2FAT32 r3k
  • FAT32FAT32 Administrator, Deal Compiler Extraordinaire

    @aviadmini said:

    @FAT32 said:
    MORNING

    How do you sleep 2 hours a day
    Also morning

    I want to continue sleeping, but there's so many unread pages

    Thanked by 3aviadmini maverick r3k
  • YarmeliYarmeli Member

    @FAT32 said:
    MORNING

    You're back already? It's only been a few hours 😯

    Thanked by 2FAT32 r3k
  • admaxadmax Member, Megathread Squad

    @FAT32 said:
    Did I just missed some good New Zealand stuff

    :D

    Thanked by 2FAT32 r3k
  • emghemgh Member, Megathread Squad

    it's fine guys I did a quick bash script that ssh's into the server and shuts down the container, it'll very super fast this time

    Thanked by 12FAT32 admax lukast__ barbaros beanman109 zakkuuno Yarmeli plumberg samzam Decicus maverick r3k
  • aviadminiaviadmini Member

    @admax congrats on getting it btw

    Thanked by 3admax maverick r3k
This discussion has been closed.