starred/docker-ipsec-vpn-server
1
0
Fork 0
mirror of https://github.com/hwdsl2/docker-ipsec-vpn-server.git synced 2026-04-26 01:55:53 +03:00
Code Issues Projects Releases Packages Wiki Activity

[GH-ISSUE #29] connect success,but can not vist google... #25

New issue
Closed
opened 2026-03-02 07:11:09 +03:00 by kerem · 5 comments
kerem commented 2026-03-02 07:11:09 +03:00
Owner
Copy link

Originally created by @ilaziness on GitHub (Jun 19, 2017).
Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/29

vpn status:

admin@ubuntu:~$ sudo docker exec -it ipsec-vpn-server ipsec whack --trafficstatus
[sudo] password for admin: 
006 #20: "l2tp-psk"[5] 113.110.229.42, type=ESP, add_time=0, inBytes=955, outBytes=120, id='192.168.1.108'

windows 10 os,can not vist google,facebook an so on.
I'm in china.

Originally created by @ilaziness on GitHub (Jun 19, 2017). Original GitHub issue: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/29 vpn status: ```shell admin@ubuntu:~$ sudo docker exec -it ipsec-vpn-server ipsec whack --trafficstatus [sudo] password for admin: 006 #20: "l2tp-psk"[5] 113.110.229.42, type=ESP, add_time=0, inBytes=955, outBytes=120, id='192.168.1.108' ``` windows 10 os,can not vist google,facebook an so on. I'm in china.
kerem closed this issue 2026-03-02 07:11:09 +03:00
kerem commented 2026-03-02 07:11:10 +03:00
Author
Owner
Copy link

@hwdsl2 commented on GitHub (Jun 19, 2017):

Can you visit any other website while connected to the VPN? If you can, try
flushing the windows DNS cache. Open an elevated command prompt, run
"ipconfig /flushdns". Then reboot your PC and reconnect the VPN. Also try a
different web browser.

<!-- gh-comment-id:309447581 --> @hwdsl2 commented on GitHub (Jun 19, 2017): Can you visit any other website while connected to the VPN? If you can, try flushing the windows DNS cache. Open an elevated command prompt, run "ipconfig /flushdns". Then reboot your PC and reconnect the VPN. Also try a different web browser.
kerem commented 2026-03-02 07:11:10 +03:00
Author
Owner
Copy link

@ilaziness commented on GitHub (Jun 19, 2017):

other website are normal. Still inaccessible to blocked websites .

admin@ubuntu:~$ sudo iptables -L
[sudo] password for admin: 
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         
ACCEPT     udp  --  anywhere             anywhere             multiport dports isakmp,ipsec-nat-t,l2f
ACCEPT     esp  --  anywhere             anywhere            
ACCEPT     udp  --  anywhere             anywhere             udp dpt:isakmp
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:isakmp
ACCEPT     udp  --  anywhere             anywhere             udp dpt:ipsec-nat-t
ACCEPT     udp  --  anywhere             anywhere             udp dpt:l2f
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:1723
ACCEPT     udp  --  anywhere             anywhere             udp dpt:isakmp
ACCEPT     udp  --  anywhere             anywhere             udp dpt:ipsec-nat-t

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         
DOCKER-ISOLATION  all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
DOCKER     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     all  --  192.168.18.0/24      anywhere            
ACCEPT     all  --  anywhere             anywhere             state RELATED,ESTABLISHED
ACCEPT     all  --  anywhere             anywhere             state RELATED,ESTABLISHED
ACCEPT     all  --  10.31.0.0/24         anywhere            
ACCEPT     all  --  10.31.1.0/24         anywhere            
ACCEPT     all  --  10.31.2.0/24         anywhere            

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         

Chain DOCKER (1 references)
target     prot opt source               destination         
ACCEPT     tcp  --  anywhere             172.17.0.4           tcp dpt:https
ACCEPT     tcp  --  anywhere             172.17.0.4           tcp dpt:http
ACCEPT     udp  --  anywhere             172.17.0.2           udp dpt:ipsec-nat-t
ACCEPT     udp  --  anywhere             172.17.0.2           udp dpt:isakmp

Chain DOCKER-ISOLATION (1 references)
target     prot opt source               destination         
RETURN     all  --  anywhere             anywhere
<!-- gh-comment-id:309470900 --> @ilaziness commented on GitHub (Jun 19, 2017): other website are normal. Still inaccessible to blocked websites . ```shell admin@ubuntu:~$ sudo iptables -L [sudo] password for admin: Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT udp -- anywhere anywhere multiport dports isakmp,ipsec-nat-t,l2f ACCEPT esp -- anywhere anywhere ACCEPT udp -- anywhere anywhere udp dpt:isakmp ACCEPT tcp -- anywhere anywhere tcp dpt:isakmp ACCEPT udp -- anywhere anywhere udp dpt:ipsec-nat-t ACCEPT udp -- anywhere anywhere udp dpt:l2f ACCEPT tcp -- anywhere anywhere tcp dpt:1723 ACCEPT udp -- anywhere anywhere udp dpt:isakmp ACCEPT udp -- anywhere anywhere udp dpt:ipsec-nat-t Chain FORWARD (policy ACCEPT) target prot opt source destination DOCKER-ISOLATION all -- anywhere anywhere ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED DOCKER all -- anywhere anywhere ACCEPT all -- anywhere anywhere ACCEPT all -- anywhere anywhere ACCEPT all -- 192.168.18.0/24 anywhere ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT all -- 10.31.0.0/24 anywhere ACCEPT all -- 10.31.1.0/24 anywhere ACCEPT all -- 10.31.2.0/24 anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain DOCKER (1 references) target prot opt source destination ACCEPT tcp -- anywhere 172.17.0.4 tcp dpt:https ACCEPT tcp -- anywhere 172.17.0.4 tcp dpt:http ACCEPT udp -- anywhere 172.17.0.2 udp dpt:ipsec-nat-t ACCEPT udp -- anywhere 172.17.0.2 udp dpt:isakmp Chain DOCKER-ISOLATION (1 references) target prot opt source destination RETURN all -- anywhere anywhere ```
kerem commented 2026-03-02 07:11:10 +03:00
Author
Owner
Copy link

@hwdsl2 commented on GitHub (Jun 19, 2017):

Where is your VPN server located? Is it in China?

Can you also reboot your VPN server (to clear the DNS cache) and try again?

<!-- gh-comment-id:309472529 --> @hwdsl2 commented on GitHub (Jun 19, 2017): Where is your VPN server located? Is it in China? Can you also reboot your VPN server (to clear the DNS cache) and try again?
kerem commented 2026-03-02 07:11:10 +03:00
Author
Owner
Copy link

@ilaziness commented on GitHub (Jun 20, 2017):

My server on US,vendor is linode.
I reboot VPN docker container,and it ok.
thanks.

<!-- gh-comment-id:309622069 --> @ilaziness commented on GitHub (Jun 20, 2017): My server on US,vendor is linode. I reboot VPN docker container,and it ok. thanks.
kerem commented 2026-03-02 07:11:10 +03:00
Author
Owner
Copy link

@hwdsl2 commented on GitHub (Jun 20, 2017):

Glad to hear it is working. Closing.

<!-- gh-comment-id:309638218 --> @hwdsl2 commented on GitHub (Jun 20, 2017): Glad to hear it is working. Closing.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
No results found.
Labels
Clear labels   
bug

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question
No labels
bug
pull-request
question
question
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/docker-ipsec-vpn-server#25
No description provided.