Docker / deluge how to add a openvpn client?

hub.docker /r/linuxserver/deluge

docker-compose setup as persistent

Fri Dec 27 08:00:57 2019 ROUTE_GATEWAY 192.168.2.1/255.255.255.0 IFACE=enp7s0 HWADDR=b4:2e:99:89:35:84
Fri Dec 27 08:00:57 2019 ERROR: Cannot ioctl TUNSETIFF tun: Operation not permitted (errno=1)
Fri Dec 27 08:00:57 2019 Exiting due to fatal error

I added the TUN kernel module but could not get it working

apt install kmod
dpkg -i kernel.ubuntu.com/~kernel-ppa/mainline/v5.4.3/linux-modules-5.4.3-050403-generic_5.4.3-050403.201912130841_amd64.deb
modprobe tun

trying to get
https://ocean.surfshark.com/debian/pool/main/s/surfshark-release/surfshark-release_1.0.0-1.1_amd64.deb

working inside the deluge container or alternatively a basic openvpn container I could get working with it , I could not get linuxserver.openvpn-as to do what I wanted either

and just solved it

docker-compose.yml:

privileged: true

how can I get tun to load automatically on start now ?

and it looks like it does not do what I am wanting
how can I do this without affecting the host machine ?
trying to keep VPN contained so it does not affect my other docker services

make sure you take a look at https://blog.linuxserver.io/2019/09/14/customizing-our-containers/ so you can ensure your changes to the container are persistent through upgrades!

in terms of VPN, since the HOST can see your docker network IPs, I NAT, for example, transmission to a specific ip in my normal LAN; on my router (i have my vpn there) i then use a static route to send my traffic from that IP across the VPN. ymmv but it works for me.

tun0 is my vpn tunnel, ip route 192.168.1.200 255.255.255.255 tun0 is my static route. traffic comes back in and arp helps it get to the host which then “denats”