So you install OpenVPN-AS via the tutorial located here –

OpenVPN Acess Server Install Debian + Proxmox

Now when you login to the admin console and click “Start Server” you get the following error:

iptables service not started because of error (SVC_RUN_EXCEPT)

This indicates that the IP tables service isn’t running on your VM. To fix the error carry out the following:

Stop the VM from your proxmox host server:

vzctl stop 101

Make the iptables state and nat modules accessible to containers.

vim /etc/vz/vz.conf

Add “ipt_state iptable_nat” to the end of the list of IPTABLES modules

vim /etc/vz/vz.conf

vz.conf

vz.conf

Allow the container to open the TUN/TAP interface.  These steps specifically affect container ID 101:

vzctl set 101 --devices c:10:200:rw --save

vzctl set 101 --capability net_admin:on --save 

These kernel modules and commands should be ran/installed on the host node before the container is started:

modprobe ipt_mark

modprobe ipt_MARK

modprobe tun

Now start the container:

vzctl start 101

After starting the container run these commands on the host node:

vzctl exec 101 mkdir -p /dev/net

vzctl exec 101 mknod /dev/net/tun c 10 200

vzctl exec 101 chmod 600 /dev/net/tun

Now reboot the host machine, login to OpenVPN admin and start theOpenVPN server. Hopefully all should be working well.

 

 

Written by Matt Cooper
Hi, I'm Matt Cooper. I started this blog to pretty much act as a brain dump area for things I learn from day to day. You can contact me at: matt@linuxtutorial.co.uk.