So you install OpenVPN-AS via the tutorial located here –

OpenVPN Acess Server Install Debian + Proxmox

Now when you login to the admin console and click “Start Server” you get the following error:

[html] iptables service not started because of error (SVC_RUN_EXCEPT) [/html]

This indicates that the IP tables service isn’t running on your VM. To fix the error carry out the following:

Stop the VM from your proxmox host server:

[html] vzctl stop 101 [/html]

Make the iptables state and nat modules accessible to containers.

[html]vim /etc/vz/vz.conf[/html]

Add “ipt_state iptable_nat” to the end of the list of IPTABLES modules

[html]vim /etc/vz/vz.conf[/html]

vz.conf

vz.conf

Allow the container to open the TUN/TAP interface.  These steps specifically affect container ID 101:

[html]vzctl set 101 –devices c:10:200:rw –save

vzctl set 101 –capability net_admin:on –save [/html]

These kernel modules and commands should be ran/installed on the host node before the container is started:

[html]modprobe ipt_mark

modprobe ipt_MARK

modprobe tun[/html]

Now start the container:

[html]vzctl start 101[/html]

After starting the container run these commands on the host node:

[html]vzctl exec 101 mkdir -p /dev/net

vzctl exec 101 mknod /dev/net/tun c 10 200

vzctl exec 101 chmod 600 /dev/net/tun[/html]

Now reboot the host machine, login to OpenVPN admin and start theOpenVPN server. Hopefully all should be working well.

 

 

Written by Matt Cooper
Hi, I'm Matt Cooper. I started this blog to pretty much act as a brain dump area for things I learn from day to day. You can contact me at: matt@matthewc424.sg-host.com.