immich-app/immich
1
0
Fork 0
mirror of https://github.com/immich-app/immich.git synced 2026-03-01 11:20:12 +03:00
Code Issues 783 Packages Projects Releases 12 Wiki Activity

VPN On-Demand fails #4010

New Issue
Closed
opened 2026-02-05 09:36:04 +03:00 by OVERLORD · 5 comments
OVERLORD commented 2026-02-05 09:36:04 +03:00
Owner
Copy Link

Originally created by @mind22 on GitHub (Aug 2, 2024).

The bug

Latest Immich iOS update does not work anymore in conjunction with VPN On-Demand. App freezes while opening at Immich logo. It seems that Immich App does not retry connecting or has a too long timeout after App opens and VPN is established. Enabling VPN before opening App works.

The OS that Immich Server is running on

Debian

Version of Immich Server

v1.111.0

Version of Immich Mobile App

v1.111.0 build .167

Platform with the issue

  • Server
  • Web
  • Mobile

Your docker-compose.yml content

#
# WARNING: Make sure to use the docker-compose.yml of the current release:
#
# https://github.com/immich-app/immich/releases/latest/download/docker-compose.yml
#
# The compose file on main may not be compatible with the latest release.
#

name: immich

services:
  immich-server:
    container_name: immich_server
    image: ghcr.io/immich-app/immich-server:${IMMICH_VERSION:-release}
    # extends:
    #   file: hwaccel.transcoding.yml
    #   service: cpu # set to one of [nvenc, quicksync, rkmpp, vaapi, vaapi-wsl] for accelerated transcoding
    volumes:
      # Do not edit the next line. If you want to change the media storage location on your system, edit the value of UPLOAD_LOCATION in the .env file
      - ${UPLOAD_LOCATION}:/usr/src/app/upload
      - /etc/localtime:/etc/localtime:ro
    env_file:
      - .env
    ports:
      - 2283:3001
    depends_on:
      - redis
      - database
    restart: always

  immich-machine-learning:
    container_name: immich_machine_learning
    # For hardware acceleration, add one of -[armnn, cuda, openvino] to the image tag.
    # Example tag: ${IMMICH_VERSION:-release}-cuda
    image: ghcr.io/immich-app/immich-machine-learning:${IMMICH_VERSION:-release}
    # extends: # uncomment this section for hardware acceleration - see https://immich.app/docs/features/ml-hardware-acceleration
    #   file: hwaccel.ml.yml
    #   service: cpu # set to one of [armnn, cuda, openvino, openvino-wsl] for accelerated inference - use the `-wsl` version for WSL2 where applicable
    volumes:
      - model-cache:/cache
    env_file:
      - .env
    restart: always

  redis:
    container_name: immich_redis
    image: docker.io/redis:6.2-alpine@sha256:e3b17ba9479deec4b7d1eeec1548a253acc5374d68d3b27937fcfe4df8d18c7e
    healthcheck:
      test: redis-cli ping || exit 1
    restart: always

  database:
    container_name: immich_postgres
    image: docker.io/tensorchord/pgvecto-rs:pg14-v0.2.0@sha256:90724186f0a3517cf6914295b5ab410db9ce23190a2d9d0b9dd6463e3fa298f0
    environment:
      POSTGRES_PASSWORD: ${DB_PASSWORD}
      POSTGRES_USER: ${DB_USERNAME}
      POSTGRES_DB: ${DB_DATABASE_NAME}
      POSTGRES_INITDB_ARGS: '--data-checksums'
    volumes:
      # Do not edit the next line. If you want to change the database storage location on your system, edit the value of DB_DATA_LOCATION in the .env file
      - ${DB_DATA_LOCATION}:/var/lib/postgresql/data
    healthcheck:
      test: pg_isready --dbname='${DB_DATABASE_NAME}' --username='${DB_USERNAME}' || exit 1; Chksum="$$(psql --dbname='${DB_DATABASE_NAME}' --username='${DB_USERNAME}' --tuples-only --no-align --command='SELECT COALESCE(SUM(checksum_failures), 0) FROM pg_stat_database')"; echo "checksum failure count is $$Chksum"; [ "$$Chksum" = '0' ] || exit 1
      interval: 5m
      start_interval: 30s
      start_period: 5m
    command: ["postgres", "-c" ,"shared_preload_libraries=vectors.so", "-c", 'search_path="$$user", public, vectors', "-c", "logging_collector=on", "-c", "max_wal_size=2GB", "-c", "shared_buffers=512MB", "-c", "wal_compression=on"]
    restart: always

volumes:
  model-cache:

Your .env content

# You can find documentation for all the supported env variables at https://immich.app/docs/install/environment-variables

# The location where your uploaded files are stored
UPLOAD_LOCATION=./library
# The location where your database files are stored
DB_DATA_LOCATION=./postgres

# To set a timezone, uncomment the next line and change Etc/UTC to a TZ identifier from this list: https://en.wikipedia.org/wiki/List_of_tz_database_time_zones#List
# TZ=Etc/UTC

# The Immich version to use. You can pin this to a specific version like "v1.71.0"
IMMICH_VERSION=release

# Connection secret for postgres. You should change it to a random password
DB_PASSWORD=postgres

# The values below this line do not need to be changed
###################################################################################
DB_USERNAME=postgres
DB_DATABASE_NAME=immich

Reproduction steps

1. iOS shortcut "App open" -> enable VPN
2. Open Immich App

Relevant log output

No response

Additional information

No response

Originally created by @mind22 on GitHub (Aug 2, 2024). ### The bug Latest Immich iOS update does not work anymore in conjunction with VPN On-Demand. App freezes while opening at Immich logo. It seems that Immich App does not retry connecting or has a too long timeout after App opens and VPN is established. Enabling VPN before opening App works. ### The OS that Immich Server is running on Debian ### Version of Immich Server v1.111.0 ### Version of Immich Mobile App v1.111.0 build .167 ### Platform with the issue - [ ] Server - [ ] Web - [X] Mobile ### Your docker-compose.yml content ```YAML # # WARNING: Make sure to use the docker-compose.yml of the current release: # # https://github.com/immich-app/immich/releases/latest/download/docker-compose.yml # # The compose file on main may not be compatible with the latest release. # name: immich services: immich-server: container_name: immich_server image: ghcr.io/immich-app/immich-server:${IMMICH_VERSION:-release} # extends: # file: hwaccel.transcoding.yml # service: cpu # set to one of [nvenc, quicksync, rkmpp, vaapi, vaapi-wsl] for accelerated transcoding volumes: # Do not edit the next line. If you want to change the media storage location on your system, edit the value of UPLOAD_LOCATION in the .env file - ${UPLOAD_LOCATION}:/usr/src/app/upload - /etc/localtime:/etc/localtime:ro env_file: - .env ports: - 2283:3001 depends_on: - redis - database restart: always immich-machine-learning: container_name: immich_machine_learning # For hardware acceleration, add one of -[armnn, cuda, openvino] to the image tag. # Example tag: ${IMMICH_VERSION:-release}-cuda image: ghcr.io/immich-app/immich-machine-learning:${IMMICH_VERSION:-release} # extends: # uncomment this section for hardware acceleration - see https://immich.app/docs/features/ml-hardware-acceleration # file: hwaccel.ml.yml # service: cpu # set to one of [armnn, cuda, openvino, openvino-wsl] for accelerated inference - use the `-wsl` version for WSL2 where applicable volumes: - model-cache:/cache env_file: - .env restart: always redis: container_name: immich_redis image: docker.io/redis:6.2-alpine@sha256:e3b17ba9479deec4b7d1eeec1548a253acc5374d68d3b27937fcfe4df8d18c7e healthcheck: test: redis-cli ping || exit 1 restart: always database: container_name: immich_postgres image: docker.io/tensorchord/pgvecto-rs:pg14-v0.2.0@sha256:90724186f0a3517cf6914295b5ab410db9ce23190a2d9d0b9dd6463e3fa298f0 environment: POSTGRES_PASSWORD: ${DB_PASSWORD} POSTGRES_USER: ${DB_USERNAME} POSTGRES_DB: ${DB_DATABASE_NAME} POSTGRES_INITDB_ARGS: '--data-checksums' volumes: # Do not edit the next line. If you want to change the database storage location on your system, edit the value of DB_DATA_LOCATION in the .env file - ${DB_DATA_LOCATION}:/var/lib/postgresql/data healthcheck: test: pg_isready --dbname='${DB_DATABASE_NAME}' --username='${DB_USERNAME}' || exit 1; Chksum="$$(psql --dbname='${DB_DATABASE_NAME}' --username='${DB_USERNAME}' --tuples-only --no-align --command='SELECT COALESCE(SUM(checksum_failures), 0) FROM pg_stat_database')"; echo "checksum failure count is $$Chksum"; [ "$$Chksum" = '0' ] || exit 1 interval: 5m start_interval: 30s start_period: 5m command: ["postgres", "-c" ,"shared_preload_libraries=vectors.so", "-c", 'search_path="$$user", public, vectors', "-c", "logging_collector=on", "-c", "max_wal_size=2GB", "-c", "shared_buffers=512MB", "-c", "wal_compression=on"] restart: always volumes: model-cache: ``` ### Your .env content ```Shell # You can find documentation for all the supported env variables at https://immich.app/docs/install/environment-variables # The location where your uploaded files are stored UPLOAD_LOCATION=./library # The location where your database files are stored DB_DATA_LOCATION=./postgres # To set a timezone, uncomment the next line and change Etc/UTC to a TZ identifier from this list: https://en.wikipedia.org/wiki/List_of_tz_database_time_zones#List # TZ=Etc/UTC # The Immich version to use. You can pin this to a specific version like "v1.71.0" IMMICH_VERSION=release # Connection secret for postgres. You should change it to a random password DB_PASSWORD=postgres # The values below this line do not need to be changed ################################################################################### DB_USERNAME=postgres DB_DATABASE_NAME=immich ``` ### Reproduction steps ```bash 1. iOS shortcut "App open" -> enable VPN 2. Open Immich App ``` ### Relevant log output _No response_ ### Additional information _No response_
OVERLORD commented 2026-02-05 09:36:10 +03:00
Author
Owner
Copy Link

@allddd commented on GitHub (Aug 10, 2024):

Can confirm that I'm having the same problem on iOS v1.111.0 build.167

@allddd commented on GitHub (Aug 10, 2024): Can confirm that I'm having the same problem on iOS `v1.111.0 build.167`
OVERLORD commented 2026-02-05 09:36:12 +03:00
Author
Owner
Copy Link

@mind22 commented on GitHub (Aug 14, 2024):

#11769 This might be related. I wrongly assumed that the app is just frozen at the loading logo forever, but after a timeout of 1 min and 15 sec it retries and builds up the timeline. The 1m15s is very consistent, measured several times.

@mind22 commented on GitHub (Aug 14, 2024): #11769 This might be related. I wrongly assumed that the app is just frozen at the loading logo forever, but after a timeout of 1 min and 15 sec it retries and builds up the timeline. The 1m15s is very consistent, measured several times.
OVERLORD commented 2026-02-05 09:36:17 +03:00
Author
Owner
Copy Link

@mmomjian commented on GitHub (Aug 15, 2024):

Closing this as a duplicate of #11769 , which contains more details. Please feel free to add more info there. Thanks!

Edit: actually this looks like a different issue. In this case, is the server online?

@mmomjian commented on GitHub (Aug 15, 2024): Closing this as a duplicate of #11769 , which contains more details. Please feel free to add more info there. Thanks! Edit: actually this looks like a different issue. In this case, is the server online?
OVERLORD commented 2026-02-05 09:36:18 +03:00
Author
Owner
Copy Link

@mind22 commented on GitHub (Aug 16, 2024):

Closing this as a duplicate of #11769 , which contains more details. Please feel free to add more info there. Thanks!

Edit: actually this looks like a different issue. In this case, is the server online?

In the moment of establishing the VPN the server is not online in the view of the app, but actually it is.

Backend:

  • Full backend is online.
  • No error logs in the docker containers.

Frontend - iOS Mobile App:

  • app opens
  • VPN Wireguard is establishing connection but not ready
  • app can't connect to server because VPN is not ready - at this point the app sees the server as offline
  • app goes into a timeout of 1m15s and is frozen at immich logo
  • after 1s VPN is ready - server would be reachable, but app does not retry until 1m15s is reached
  • timeout expires, app connects to server and all is working properly

I think the problem is pretty clear in the mobile app. This is all the info I can give and is necessary.

@mind22 commented on GitHub (Aug 16, 2024): > Closing this as a duplicate of #11769 , which contains more details. Please feel free to add more info there. Thanks! > > Edit: actually this looks like a different issue. In this case, is the server online? In the moment of establishing the VPN the server is not online in the view of the app, but actually it is. Backend: - Full backend is online. - No error logs in the docker containers. Frontend - iOS Mobile App: - app opens - VPN Wireguard is establishing connection but not ready - app can't connect to server because VPN is not ready - at this point the app sees the server as offline - app goes into a timeout of 1m15s and is frozen at immich logo - after 1s VPN is ready - server would be reachable, but app does not retry until 1m15s is reached - timeout expires, app connects to server and all is working properly I think the problem is pretty clear in the mobile app. This is all the info I can give and is necessary.
OVERLORD commented 2026-02-05 09:36:20 +03:00
Author
Owner
Copy Link

@mind22 commented on GitHub (Sep 4, 2024):

Thanks, the mobile OS update 113.1 solved the issue, or at least made it less annoying due to a shorter timeout of about 6-7s. It is somewhat acceptable.

@mind22 commented on GitHub (Sep 4, 2024): Thanks, the mobile OS update 113.1 solved the issue, or at least made it less annoying due to a shorter timeout of about 6-7s. It is somewhat acceptable.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
accessibility
changelog:enhancement
changelog:security
changelog:skip
changelog:translation
cli
date-time
dependencies
documentation
external-library
format
good first issue
mobile-beta
mobile-beta
mobile-beta
needs-answer
nice to have
pull-request
Mirrored from GitHub Pull Request
 sharing
tech-debt
📱mobile
🖥️web
🗄️server
🧠machine-learning
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: immich-app/immich#4010
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?