Thanks for sharing but I wish you would have included how you setup your PIA Container! The link to the video by craft computing shows him setting this up as a VM not a CT.
Just a quick note: With the latest ProxMox 7.x version the line "lxc.cgroup.devices.allow: c 10:200 rwm" has to be changed to "lxc.cgroup2.devices.allow: c 10:200 rwm" so "cgroup" changes to "cgroup2", because of the new default cgroup version in PVE7.x. It took me a complete evening to figure that one out. Without the change to "cgroup2" the /dev/net/tun device is created but has no permission to be used from within the lxc-container since the wrong group is used and thus openvpn throws errors and does not connect to PIA. The changed line fixes this.
I used the tutorial and everything works perfectly. Thanks! But I'm wondering, is it possible to use this same container to make external access to my network?
hi, i've tried your setup, on the vpn provider lxc container, it worked. the ip changed and all. however when i try to use it on another container, via the gateway, it doesn't work. the curl command just not responding to anything.
I set this up and the container is behind the VPN and showing an IP that is given by PIA VPN. I cant get my client machines to connect to the container and get internet access. I have put the IP of the VpN as my gateway. I am using proxmox7 did the steps and built 3 containers with same issue. does anyone have any tips? I was trying to use a Debian 11 template with no success. I used a Debian 10 template and it is working now.
@@p20ph37 Did anyone figure this - I can get the VPN to work, I'm unsure what the gateway address is. I've tried the IP of the VPN container, I've tried my gateway - all with no joy.
if you look @3:31 in the video you can see the gateway of the server -it's just the IP of the container (.72). That said I've tried this and the other containers hang when I try to check the IP address (routing it via my OpenVPN).
Dear Lo-Res DIY, i would like to first thank you for all the content! It's very helpful and great! However there's one culprit i faces. If i were to first deployed my VPN first and then deploy the iptables rules, it would worked. However, i dont understand that the systemd service we use, it's deploying the firewall first then the vpn. Which to me is abit confusing because my LXC simply unable connect to the vpn because iptables will block if it's not a tunneled VPN connection. But how can it be possible to connect to VPN when the first rule is deploying the iptables, and it blocks all connection that is not already a vpn?
hey im getting the following error when try to connect to the vpn: " Temporary failure in name" this is only happening after i run the iptables command, before that i can connect to the vpn without issue, anyone can help me?
Thanks for sharing but I wish you would have included how you setup your PIA Container! The link to the video by craft computing shows him setting this up as a VM not a CT.
Fantastic! Super helpful video. You sorted out a few of my problems and now everything is working great!
Great to hear!
Thanks for the video and Lets go Blues!
You Bet
Lets Go Blues!!!
Just a quick note:
With the latest ProxMox 7.x version the line "lxc.cgroup.devices.allow: c 10:200 rwm" has to be changed to "lxc.cgroup2.devices.allow: c 10:200 rwm" so "cgroup" changes to "cgroup2", because of the new default cgroup version in PVE7.x.
It took me a complete evening to figure that one out.
Without the change to "cgroup2" the /dev/net/tun device is created but has no permission to be used from within the lxc-container since the wrong group is used and thus openvpn throws errors and does not connect to PIA. The changed line fixes this.
Thanks for sharing
Thank you so much kind sir. Your input helped someone!
Thanks, you helped someone else out
how about proxmox 8?
@@autoentropy I know its been 4 months but for Proxmox 8 use cgroup2 as well.
Thanks. I just found your channel and subscribed. Setting up my homelab and a new Plex server instead of doing thing manually. All of this will help.
Thanks for the sub!
I used the tutorial and everything works perfectly. Thanks!
But I'm wondering, is it possible to use this same container to make external access to my network?
Great video and exactly what I was looking for, a simple vpn gateway. Also works with unraid in a VM
Great to hear!
hi, i've tried your setup, on the vpn provider lxc container, it worked. the ip changed and all. however when i try to use it on another container, via the gateway, it doesn't work. the curl command just not responding to anything.
Loved this! Going to make it too
Hope you like it!
Downloading movies/series/music or software isn't illegal. The uploading is, in most countries, what is not allowed
if i get this working - how do i have another container connect through this?
This video was great! Thank you. I wondering if anyone knows how to accomplish this same thing, but using a docker container?
I set this up and the container is behind the VPN and showing an IP that is given by PIA VPN. I cant get my client machines to connect to the container and get internet access. I have put the IP of the VpN as my gateway. I am using proxmox7 did the steps and built 3 containers with same issue. does anyone have any tips? I was trying to use a Debian 11 template with no success. I used a Debian 10 template and it is working now.
I'm having the same issue. He glossed over the "just set the gateway and it works". This doesn't appear to be the case for me either.
@@p20ph37 Did anyone figure this - I can get the VPN to work, I'm unsure what the gateway address is. I've tried the IP of the VPN container, I've tried my gateway - all with no joy.
if you look @3:31 in the video you can see the gateway of the server -it's just the IP of the container (.72). That said I've tried this and the other containers hang when I try to check the IP address (routing it via my OpenVPN).
Dear Lo-Res DIY, i would like to first thank you for all the content! It's very helpful and great! However there's one culprit i faces. If i were to first deployed my VPN first and then deploy the iptables rules, it would worked.
However, i dont understand that the systemd service we use, it's deploying the firewall first then the vpn. Which to me is abit confusing because my LXC simply unable connect to the vpn because iptables will block if it's not a tunneled VPN connection. But how can it be possible to connect to VPN when the first rule is deploying the iptables, and it blocks all connection that is not already a vpn?
I believe you will need to turn off the firewall for the container.
Let me know if that works.
Now I'm curious how you have a dark proxmox theme. My r610 is dang near identical to yours at this point because of your videos
Follow this link and follow the instructions. github.com/Weilbyte/PVEDiscordDark
It's quick and simple and I'm glad the video's are helping
what if there are no existing config files in /etc/pve/lxc even though I have running vms?
there wont be anytihng in the lxc folder unless you have containers. a VM is not a container.
does it need to be a privileged container?
yes mine is a privileged container
pia takes a paid subscribtion?
Yes it does
hey im getting the following error when try to connect to the vpn: " Temporary failure in name" this is only happening after i run the iptables command, before that i can connect to the vpn without issue, anyone can help me?
Same here!!
Third!