# lsof -i |grep openvpn
openvpn 16213 root 6u IPv4 1417499007 0t0 UDP *:openvpn
# chkconfig --list openvpn
Note: This output shows SysV services only and does not include native
systemd services. SysV configuration data might be overridden by native
systemd configuration.
If you want to list systemd services use 'systemctl list-unit-files'.
To see services enabled on particular target use
'systemctl list-dependencies [target]'.
error reading information on service openvpn: No such file or directory
# chkconfig openvpn on
Now I’m regretting purchasing the pro module.
I have already wasted more time getting the “easy” way to
work vs manually setting up OpenVPN as I’ve done in the past.
The System Admin VPN server has literally nothing to do with iptables or fail2ban. If you are running on the FreePBX Distro, you have both PBX modules and system rpms fully up to date, you need do nothing more than browse to VPN Server to enable it. Sometimes a reboot is necessary after enabling. If service is enabled you run ifconfig and a new tun interface is present:
tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet 10.8.0.1 netmask 255.255.255.0 destination 10.8.0.1
If you don’t have the tunX interface, then open a support ticket.
Well I didn’t reboot so I’m not sure what that would’ve changed.
ipv4_forwarding was not enabled by turning on VPN server in SysAdmin Pro.
I had to manually do that.
Using SysAdmin Pro also must create it’s own start script somewhere, since OpenVPN is not
listed as a service. This make troubleshooting difficult, especially if I’m unaware how the
vpn binary is executed/started.
Now that I’ve spent a couple hours troubleshooting, I’m more aware of what SysAdmin Pro does and doesn’t do.
How/Where is SysAdmin Pro enabling ip4_forwarding?
If you’re only using the VPN for the PBX (calling, provisioning, UCP, etc), you shouldn’t need ipv4_forwarding. You’d set that if you want the VPN client to access other LAN devices or the PBX site’s internet connection.
I don’t have SysAdmin Pro, but upon installing the Distro, OpenVPN was there along with a config directory structure and considerable systemd stuff. I did not look at it in detail, but believe that if you have at least one server configured, systemd would start it automatically.