I attempted to do this by disabling the update of the iptables rules as per one of the FAQs but every combination I've come up with prevents the server from starting even if the persistent iptables rules match what the server would have installed.
Code: Select all
# ./confdba --mod --key=iptables.vpn.disable.nat --value=True --prof=Default
# ./confdba --mod --key=iptables.vpn.disable.mangle --value=True --prof=Default
# ./confdba --mod --key=iptables.vpn.disable.filter --value=True --prof=Default
Code: Select all
{'errors': {'openvpn_0': [('error', "service failed to start due to unresolved dependencies: set(['user', 'iptables_live'])")], 'user': [('error', "service failed to start due to unresolved dependencies: set(['iptables_live'])")], 'openvpn_2': [('error', "service failed to start due to unresolved dependencies: set(['user', 'iptables_live'])")], 'openvpn_3': [('error', "service failed to start due to unresolved dependencies: set(['user', 'iptables_live'])")], 'iptables_live': [('error', "Service deferred error: 'NoneType' object is not iterable: internet/defer:323,sagent/wpsvc:167,sagent/iptlive:49,sagent/iptlive:76,sagent/iptlive:111 (exceptions.TypeError)")], 'crl': [('error', "service failed to start due to unresolved dependencies: set(['user'])")], 'openvpn_1': [('error', "service failed to start due to unresolved dependencies: set(['user', 'iptables_live'])")]}, 'service_status': {'bridge': 'started', 'log': 'started', 'license': 'started', 'iptables_web': 'started', 'iptables_openvpn': 'started', 'ip6tables_openvpn': 'started', 'openvpn_1': 'off', 'auth': 'started', 'ip6tables_live': 'started', 'client_query': 'started', 'db_push': 'started', 'api': 'started', 'daemon_pre': 'started', 'web': 'started', 'openvpn_2': 'off', 'openvpn_3': 'off', 'iptables_live': 'on', 'openvpn_0': 'off', 'crl': 'off', 'user': 'off'}}