{"id":13596758,"url":"https://github.com/binhex/arch-privoxyvpn","last_synced_at":"2026-03-03T15:01:07.573Z","repository":{"id":41039897,"uuid":"170867723","full_name":"binhex/arch-privoxyvpn","owner":"binhex","description":"Docker build script for Arch Linux base with Privoxy and OpenVPN","archived":false,"fork":false,"pushed_at":"2025-12-24T18:48:55.000Z","size":114,"stargazers_count":146,"open_issues_count":20,"forks_count":25,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-12-26T09:28:01.437Z","etag":null,"topics":["arch","arch-linux","docker","docker-image","openvpn","privoxy","socks","socks5"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/binhex.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2019-02-15T13:17:28.000Z","updated_at":"2025-12-24T18:48:59.000Z","dependencies_parsed_at":"2024-06-13T15:21:11.896Z","dependency_job_id":"85e0806d-127f-4931-906f-4b9d890ee2cc","html_url":"https://github.com/binhex/arch-privoxyvpn","commit_stats":{"total_commits":140,"total_committers":1,"mean_commits":140.0,"dds":0.0,"last_synced_commit":"8699d5eeab368599f38bffce3d99a019768b25eb"},"previous_names":[],"tags_count":59,"template":false,"template_full_name":null,"purl":"pkg:github/binhex/arch-privoxyvpn","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/binhex%2Farch-privoxyvpn","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/binhex%2Farch-privoxyvpn/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/binhex%2Farch-privoxyvpn/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/binhex%2Farch-privoxyvpn/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/binhex","download_url":"https://codeload.github.com/binhex/arch-privoxyvpn/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/binhex%2Farch-privoxyvpn/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30050222,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-03T14:38:37.398Z","status":"ssl_error","status_checked_at":"2026-03-03T14:38:06.721Z","response_time":61,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["arch","arch-linux","docker","docker-image","openvpn","privoxy","socks","socks5"],"created_at":"2024-08-01T16:02:46.022Z","updated_at":"2026-03-03T15:01:07.565Z","avatar_url":"https://github.com/binhex.png","language":"Shell","funding_links":["https://www.paypal.com/en_US/i/btn/btn_donate_SM.gif","https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick\u0026hosted_button_id=MM5E27UX6AUU4"],"categories":["Shell"],"sub_categories":[],"readme":"# Application\n\n\u003c!-- markdownlint-disable MD033 --\u003e\n\n[Privoxy](http://www.privoxy.org/)\n\n[microsocks](https://github.com/rofl0r/microsocks)\n\n[OpenVPN](https://openvpn.net/)\n\n[WireGuard](https://www.wireguard.com/)\n\n## Description\n\nPrivoxy is a free non-caching web proxy with filtering capabilities for\nenhancing privacy, manipulating cookies and modifying web page data and HTTP\nheaders before the page is rendered by the browser. Privoxy is a \"privacy\nenhancing proxy\", filtering web pages and removing advertisements. Privoxy can\nbe customized by users, for both stand-alone systems and multi-user networks.\nPrivoxy can be chained to other proxies and is frequently used in combination\nwith Squid and can be used to bypass Internet censorship.\n\nmicrosocks is a SOCKS5 service that you can run on your remote boxes to tunnel\nconnections through them, if for some reason SSH doesn't cut it for you. It's\nvery lightweight, and very light on resources too: for every client, a thread\nwith a stack size of 8KB is spawned. the main process basically doesn't consume\nany resources at all. The only limits are the amount of file descriptors and the\nRAM.\n\nThis Docker includes OpenVPN and WireGuard to ensure a secure and private\nconnection to the Internet, including use of iptables to prevent IP leakage when\nthe tunnel is down.\n\n## Build notes\n\nLatest stable Privoxy release from Arch Linux repo.\n\nLatest stable microsocks release from GitHub.\n\nLatest stable OpenVPN release from Arch Linux repo.\n\nLatest stable WireGuard release from Arch Linux repo.\n\n## Usage\n\n```text\ndocker run -d \\\n\n    --cap-add=NET_ADMIN \\\n    -p 8118:8118 \\\n    -p 9118:9118 \\\n    -p 58946:58946 \\\n    -p 58946:58946/udp \\\n    --name=\u003ccontainer name\u003e \\\n    -v \u003cpath for config files\u003e:/config \\\n    -v /etc/localtime:/etc/localtime:ro \\\n    -e VPN_ENABLED=\u003cyes|no\u003e \\\n    -e VPN_USER=\u003cvpn username\u003e \\\n    -e VPN_PASS=\u003cvpn password\u003e \\\n    -e VPN_PROV=\u003cpia|airvpn|protonvpn|custom\u003e \\\n    -e VPN_CLIENT=\u003copenvpn|wireguard\u003e \\\n    -e VPN_OPTIONS=\u003cadditional openvpn cli options\u003e \\\n    -e LAN_NETWORK=\u003clan ipv4 network\u003e/\u003ccidr notation\u003e \\\n    -e NAME_SERVERS=\u003cname server ip(s)\u003e \\\n    -e ENABLE_STARTUP_SCRIPTS=\u003cyes|no\u003e \\\n    -e ENABLE_PRIVOXY=\u003cyes|no\u003e \\\n    -e STRICT_PORT_FORWARD=\u003cyes|no\u003e \\\n    -e USERSPACE_WIREGUARD=\u003cyes|no\u003e \\\n    -e ENABLE_SOCKS=\u003cyes|no\u003e \\\n    -e SOCKS_USER=\u003csocks username\u003e \\\n    -e SOCKS_PASS=\u003csocks password\u003e \\\n    -e VPN_INPUT_PORTS=\u003cport number(s)\u003e \\\n    -e VPN_OUTPUT_PORTS=\u003cport number(s)\u003e \\\n    -e DEBUG=\u003ctrue|false\u003e \\\n    -e HEALTHCHECK_COMMAND=\u003ccommand\u003e \\\n    -e HEALTHCHECK_ACTION=\u003caction\u003e \\\n    -e HEALTHCHECK_HOSTNAME=\u003chostname\u003e \\\n    -e UMASK=\u003cumask for created files\u003e \\\n    -e PUID=\u003cuid for user\u003e \\\n    -e PGID=\u003cgid for user\u003e \\\n\n    binhex/arch-privoxyvpn\n\n```\n\nPlease replace all user variables in the above command defined by \u003c\u003e with the\ncorrect values.\n\n## Access Privoxy\n\n`http://\u003chost ip\u003e:8118`\n\n## Access microsocks\n\n`\u003chost ip\u003e:9118`\n\ndefault credentials: admin/socks\n\n## PIA example\n\n```bash\ndocker run -d \\\n    --cap-add=NET_ADMIN \\\n    -p 8118:8118 \\\n    -p 9118:9118 \\\n    -p 58946:58946 \\\n    -p 58946:58946/udp \\\n    --name=privoxyvpn \\\n    -v /root/docker/config:/config \\\n    -v /etc/localtime:/etc/localtime:ro \\\n    -e VPN_ENABLED=yes \\\n    -e VPN_USER=myusername \\\n    -e VPN_PASS=mypassword \\\n    -e VPN_PROV=pia \\\n    -e VPN_CLIENT=openvpn \\\n    -e LAN_NETWORK=192.168.1.0/24 \\\n    -e NAME_SERVERS=1.1.1.1,1.0.0.1 \\\n    -e ENABLE_STARTUP_SCRIPTS=no \\\n    -e ENABLE_PRIVOXY=yes \\\n    -e STRICT_PORT_FORWARD=no \\\n    -e USERSPACE_WIREGUARD=no \\\n    -e ENABLE_SOCKS=yes \\\n    -e SOCKS_USER=admin \\\n    -e SOCKS_PASS=socks \\\n    -e VPN_INPUT_PORTS=1234 \\\n    -e VPN_OUTPUT_PORTS=5678 \\\n    -e DEBUG=false \\\n    -e UMASK=000 \\\n    -e PUID=0 \\\n    -e PGID=0 \\\n    binhex/arch-privoxyvpn\n```\n\n## OpenVPN\n\nPlease note this Docker image does not include the required OpenVPN\nconfiguration file and certificates. These will typically be downloaded from\nyour VPN providers website (look for OpenVPN configuration files), and generally\nare zipped.\n\nPIA users - The URL to download the OpenVPN configuration files and certs is:-\n\n[PIA OpenVPN configuration](https://www.privateinternetaccess.com/openvpn/openvpn.zip)\n\nOnce you have downloaded the zip (normally a zip as they contain multiple ovpn\nfiles) then extract it to /config/openvpn/ folder (if that folder doesn't exist\nthen start and stop the docker container to force the creation of the folder).\n\nIf there are multiple ovpn files then please delete the ones you don't want to\nuse (normally filename follows location of the endpoint) leaving just a single\novpn file and the certificates referenced in the ovpn file (certificates will\nnormally have a crt and/or pem extension).\n\n## WireGuard\n\nIf you wish to use WireGuard (defined via 'VPN_CLIENT' env var value ) then due\nto the enhanced security and kernel integration WireGuard will require the\ncontainer to be defined with privileged permissions and sysctl support, so\nplease ensure you change the following docker options:-\n\nfrom\n\n``` bash\n\n    --cap-add=NET_ADMIN \\\n\n```\n\nto\n\n``` bash\n\n    --sysctl=\"net.ipv4.conf.all.src_valid_mark=1\" \\\n    --privileged=true \\\n\n```\n\n**PIA users** - The WireGuard configuration file will be auto generated and will\nbe stored in ```/config/wireguard/wg0.conf``` AFTER the first run, if you wish\nto change the endpoint you are connecting to then change the ```Endpoint``` line\nin the config file (default is Netherlands).\n\n**Other users** - Please download your WireGuard configuration file from your\nVPN provider, start and stop the container to generate the folder\n```/config/wireguard/``` and then place your WireGuard configuration file in\nthere.\n\n## Notes\n\nDue to Google and OpenDNS supporting EDNS Client Subnet it is recommended NOT to\nuse either of these NS providers.\nThe list of default NS providers in the above example(s) is as follows:-\n\n1.x.x.x = Cloudflare\n\n---\n\n### IMPORTANT\n\nPlease note `VPN_INPUT_PORTS` is **NOT** to define the incoming port for the\nVPN, this environment variable is used to define port(s) you want to allow in to\nthe VPN network when network binding multiple containers together, configuring\nthis incorrectly with the VPN provider assigned incoming port COULD result in IP\nleakage, you have been warned!.\n\n---\n\nUser ID (PUID) and Group ID (PGID) can be found by issuing the following command\nfor the user you want to run the container as:-\n\n`id \u003cusername\u003e`\n\n---\n\nIf you appreciate my work, then please consider buying me a beer  :D\n\n[![PayPal donation](https://www.paypal.com/en_US/i/btn/btn_donate_SM.gif)](https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick\u0026hosted_button_id=MM5E27UX6AUU4)\n\n[Documentation](https://github.com/binhex/documentation) | [Support forum](https://forums.unraid.net/topic/78028-support-binhex-privoxyvpn/)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbinhex%2Farch-privoxyvpn","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbinhex%2Farch-privoxyvpn","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbinhex%2Farch-privoxyvpn/lists"}