1. Posts must be related to the discussion of digital piracy
2. Don't request invites, trade, sell, or self-promote
3. Don't request or link to specific pirated titles, including DMs
4. Don't submit low-quality posts, be entitled, or harass others
📜 c/Piracy Wiki (Community Edition):
Torrenting/P2P:
Gaming:
💰 Please help cover server costs.
 |
 |
|---|---|
| Ko-fi | Liberapay |
I'm in virtually the same situation, although qbit is running in Docker through a Gluetun/Wireguard tunnel, so that part works fine.
I really wanted to do split tunnel on my Mac to access my tracker's site (all Linux ISOs, of course) through the same tunnel, and haven't had any success.
My workaround is running LibreWolf (modded Firefox) in the same stack, through the same tunnel. It's not ideal, but at least it works.
Do update if you find a solution!
The Docker version you’re using supports VPN? I used VPN+QBit Docker on my old Unraid server. You just put the VPN configuration file in the /config folder, and it worked seamlessly without disrupting any other services.
I have seen some people mention using a vm as an alternative. I’m not familiar with how it would work.
I have also tried using OpenVPN and WireGuard with AirVPN; however, Mac versions do not have the split tunnel feature at all.
Gluetun is running in a container in the same stack as Qbit, and Qbit knows to get its network through Gluetun.
network mode > service > gluetun or something similar (syntax is def. wrong) in the Compose.
Gluetun is connected to AirVPN through / with / using (?) WireGuard. I'm actually a bit foggy on the terminology 😅
/config is just a folder where you put vpn config files. Would you mind sharing your docker compose file.
### GLUETUN
services:
gluetun:
image: qmcgaw/gluetun
container_name: gluetun
cap_add:
- NET_ADMIN
devices:
- /dev/net/tun:/dev/net/tun
ports:
- 8888:8888/tcp # HTTP proxy
# - 8388:8388/tcp # Shadowsocks
# - 8388:8388/udp # Shadowsocks
- 8090:8090/tcp # qbittorrent
- xxxx:xxxx/tcp
- 3423:3000/tcp # librewolf
volumes:
- /volumex/docker/gluetun:/gluetun
environment:
- PUID=xxxx #CHANGE_TO_YOUR_UID
- PGID=xxxx #CHANGE_TO_YOUR_GID
- TZ=Europe/xxxx #CHANGE_TO_YOUR_TZ
- VPN_SERVICE_PROVIDER=airvpn
- VPN_TYPE=wireguard
- WIREGUARD_PRIVATE_KEY=xxxx
- WIREGUARD_PRESHARED_KEY=xxxx
- WIREGUARD_ADDRESSES=xxx.xxx.xxx.xxx
- SERVER_REGIONS=Europe
- HTTPPROXY=off #change to on if you wish to enable
- SHADOWSOCKS=off #change to on if you wish to enable
- FIREWALL_OUTBOUND_SUBNETS=172.20.0.0/16,192.168.0.0/24 #change this in line with your subnet see note on guide.
- FIREWALL_VPN_INPUT_PORTS=xxxx #uncomment this line and change the port as per the note on the guide
- UPDATER_PERIOD=24h
network_mode: bridge-xxxx
labels:
- com.centurylinklabs.watchtower.enable=false
security_opt:
- no-new-privileges:true
restart: always
### QBITTORRENT
qbittorrent:
image: linuxserver/qbittorrent:5.0.1
container_name: qbittorrent
environment:
- PUID=xxxx #CHANGE_TO_YOUR_UID
- PGID=xxxx #CHANGE_TO_YOUR_GID
- TZ=Europe/xxxx #CHANGE_TO_YOUR_TZ
- WEBUI_PORT=8090
- UMASK=022
volumes:
- /volumex/docker/qbittorrent:/config
- /volumex/linux-isos/:/data
network_mode: service:gluetun # run on the vpn network
depends_on:
gluetun:
condition: service_healthy
security_opt:
- no-new-privileges:true
restart: always
### LIBREWOLF
librewolf:
container_name: LibreWolf
image: ghcr.io/linuxserver/librewolf:latest
security_opt:
- no-new-privileges:false
- seccomp:unconfined
#healthcheck:
# test: timeout 10s bash -c ':> /dev/tcp/127.0.0.1/3000' || exit 1
#interval: 10s
#timeout: 5s
#retries: 3
#start_period: 90s
environment:
CUSTOM_USER: xxxx
PASSWORD: xxxx
TZ: Europe/xxxx
PUID: xxxx #CHANGE_TO_YOUR_UID
PGID: xxxx #CHANGE_TO_YOUR_GID
volumes:
- /volumex/docker/librewolf:/config:rw
network_mode: service:gluetun # run on the vpn network
restart: no
depends_on:
gluetun:
condition: service_healthy
shm_size: "5gb"
Not sure if they have a client for Mac but I dropped Eddie and started using WireSock on Windows. You just configure a Wireguard config on AirVPNs site and then import it. Wiresock allows you to configure split tunneling.
Heard about WireSock, but I'm on macOS, "sadly".
I imagine there must be some other third party clients that allow you to import a Wireguard or OpenVPN config with split tunneling.
Edit: I turned my imagination into googling and it looks like a Wireguard split tunnel might work on a Mac but probably might not also. OpenVPN seemed more promising but I didn't do a whole lot of reading.
That client doesn’t support it, but for your purposes, bind will do the same job.
So, I will have to look later for details. There is a reddit thread I found with a list of IPs to white list that will allow you to do everything with no VPN. Then you bind your torrent client and other downloaders to the VPN. This is what I'm doing currently, and I have had no issues
Edit: I forgot this was Mac. I don't know if that will make a difference
Eddie doesn't allow for split tunneling. I setup WireSock on Windows which allows you to split tunneling using a wireguard config generated from AirVPNs site. I don't know if they have a Mac client, but you might check into it.
It’s not available for Mac unfortunately.
Can you set the interface in qbit to tun?
Yes, I only want to use a VPN. However, when I turn on a VPN, I encounter several other problems. For instance, I have difficulty consistently verifying that I’m not a bot on most websites. Additionally, YouTube videos don’t play at all unless I’m logged in.
In that instance maybe run docker with gluetun and qbitnox. It’s a bit difficult to setup but will sort of achieve what you’re looking for.