So you install OpenVPN-AS via the tutorial located here –
OpenVPN Acess Server Install Debian + Proxmox
Now when you login to the admin console and click “Start Server” you get the following error:
iptables service not started because of error (SVC_RUN_EXCEPT)
This indicates that the IP tables service isn’t running on your VM. To fix the error carry out the following:
Stop the VM from your proxmox host server:
vzctl stop 101
Make the iptables state and nat modules accessible to containers.
vim /etc/vz/vz.conf
Add “ipt_state iptable_nat” to the end of the list of IPTABLES modules
vim /etc/vz/vz.conf

vz.conf
Allow the container to open the TUN/TAP interface. These steps specifically affect container ID 101:
vzctl set 101 --devices c:10:200:rw --save
vzctl set 101 --capability net_admin:on --save
These kernel modules and commands should be ran/installed on the host node before the container is started:
modprobe ipt_mark
modprobe ipt_MARK
modprobe tun
Now start the container:
vzctl start 101
After starting the container run these commands on the host node:
vzctl exec 101 mkdir -p /dev/net
vzctl exec 101 mknod /dev/net/tun c 10 200
vzctl exec 101 chmod 600 /dev/net/tun
Now reboot the host machine, login to OpenVPN admin and start theOpenVPN server. Hopefully all should be working well.
Recent Comments