New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
OpenVZ & OpenVPN-AS
Hello, I'm seeing this error when I try to start OpenVPN-AS server on several providers and none seem to have an idea what needs to be done to fix it. Does anyone have an idea what is missing?
TUN/TAP is enabled in SolusVM.
iptables service not started because of error (SVC_RUN_EXCEPT)
Thanks you any input on this.
Comments
I think IPTables requires a module be enabled. (not tun/tap)
I run openvpn-AS on several openvz machines and it works just fine but I know that iptables/tun/tap are all enabled/allowed.
Probably put a ticket in with your provider, Solus and it's many bugs doesn't always put the proper settings in the config file when enabling the feature. Also, did you reboot the VPS?
Yeah I did put a ticket to all providers, and they dont seem to have any idea about it. :P
Time to switch providers to people that know what they are doing then.
Ask your provider if "ipt_state" is enabled, that was the issue with me and IPXcore that fixed it all when I got those errors.
@luma Yes, from now on I'll stick to XEN or KVM.
@David_P Thanks, I'll try that.
ask @Prometeus, he's the expert on this.
For XEN/KVM, it will work without problem.
For OpenVZ, some of provider here work without problem, but some of them can't help you.
Working OpenVZ provider when I tried them :
I forgot about the rest
I remember I did something to my node setup script to make sure this always worked, but took me some time to find what it was I did, but share this with the providers you are with and you should work.
http://openvpn.net/index.php/access-server/docs/admin-guides/186-how-to-run-access-server-on-a-vps-container.html
"Edit /etc/vz/vz.conf and add "ipt_state iptable_nat" to the end of the list of IPTABLES modules"
some missing module. As @LAKid pointed out I had a lot of fun with the xt_mark module
@prometeus a lot of "FUN"
sometimes you just need to reboot the vps, or hit the enable/disable button again.
I once hit the "enable tun/tap" and "enable PPP" button in solus at the same time, causing one of them is not working.
As tutorials say, you need to enable one, wait for reboot, enable the other, wait for reboot. If you do it too quickly, the latter will not get enabled, but will show as enabled in SolusVM.
M
100% correct
take a look at this. These commands need to be done on the main node
http://pastie.org/4614736
Yeah prometeus have an article where they hint on that issue
http://board.prometeus.net/viewtopic.php?f=8&t=15&sid=1c4b1df7ae79c5a7264e7498dedc43b3
I know it doesn't really matter, but I'm just being me: Why is iptables supported hashed out but other text that aren't commands aren't?
not too sure haha. but it works anyway
Much redundancy here, everything after "# iptables support" can be set globally for all containers in /etc/vz/vz.conf by setting the variable IPTABLES=""
No, they don't: http://cl.ly/image/2u2L0T083e2T
You were given a wrong answer, veth is not needed for OpenVPN-AS
veth isn't needed so you likely confused Anthony there. We got more than a few people just fine with OpenVPN-AS and I know i've used it in some test beds without much issue.
Just check your iptables rules I guess
Francisco
http://openvpn.net/index.php/access-server/docs/admin-guides/186-how-to-run-access-server-on-a-vps-container.html
Helps to fix the issue the customer saw.
Yes, httpzoom fixed my problem quickly. Thanks.
I'm still waiting for CubixCloud to fix my server, they wanted root access for some reason even though I told them howto fix it.
Hello,
Something has gone wrong on our side with this node.
Sorry for the delay.
-Eric