Permission help requested

Business solution to host your own OpenVPN server with web management interface and bundled clients.
Post Reply
ptruman
OpenVpn Newbie
Posts: 1
Joined: Tue Apr 17, 2018 9:08 pm

Permission help requested

Post by ptruman » Tue Apr 17, 2018 9:12 pm

Hi

I've recently rebuilt my machine, and now find that OpenVPNAS is restarting every minute...

There are two users setup via installation of openvpnas it seems : openvpn and openvpn_as

From what I see in the as.conf those users are set to run the process.
systemctl start openvpnas works (or seems to) but if I login to the admin GUI, or connect a client, after a minute or so, it restarts, although systemctl status openvpnas shows:

Apr 17 21:48:03 MediaVault systemd[1]: PID file /var/run/openvpnas.pid not readable (yet?) after start.
Apr 17 21:48:03 MediaVault systemd[1]: Started OpenVPN Access Server Service.

Partial log below. What is going on? From my previous running drive, I can't see any sticky/SETUID bits on anything. The two users are just members of their own group (same as the username). This is clearly a perms issue but I'm damned if I can figure out what...

Clues welcome!

2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "iptables_openvpn": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "iptables_web": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "license": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "log": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "openvpn_0": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "openvpn_1": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "openvpn_2": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "openvpn_3": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "user": "started",
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] "web": "started"
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] }
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] }
2018-04-17 21:28:07+0100 [OMIClientAuth,0,] Server Agent started
2018-04-17 21:28:12+0100 [-] License Info {'apc': False, 'concurrent_connections': 2}
2018-04-17 21:29:02+0100 [OMIClientAuth,0,] OMI Cancel pending deferred ['exit']
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: "Tue Apr 17 20:29:02 2018 MANAGEMENT: CMD 'exit'"
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Client disconnected'
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Triggering management exit'
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: 'Tue Apr 17 20:29:02 2018 Closing TUN/TAP interface'
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: 'Tue Apr 17 20:29:02 2018 /sbin/ifconfig as0t3 0.0.0.0'
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: 'Tue Apr 17 20:29:02 2018 Linux ip addr del failed: could not execute external program'
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: 'Tue Apr 17 20:29:02 2018 SIGTERM[soft,management-exit] received, process exiting'
2018-04-17 21:29:02+0100 [-] OVPN 3 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: >STATE:1523996942,EXITING,management-exit,,,,,'
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: "Tue Apr 17 20:29:02 2018 MANAGEMENT: CMD 'exit'"
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Client disconnected'
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Triggering management exit'
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: 'Tue Apr 17 20:29:02 2018 Closing TUN/TAP interface'
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: 'Tue Apr 17 20:29:02 2018 /sbin/ifconfig as0t2 0.0.0.0'
2018-04-17 21:29:02+0100 [OMIClientAuth,0,] OMI Cancel pending deferred ['exit']
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: 'Tue Apr 17 20:29:02 2018 Linux ip addr del failed: could not execute external program'
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: 'Tue Apr 17 20:29:02 2018 SIGTERM[soft,management-exit] received, process exiting'
2018-04-17 21:29:02+0100 [-] OVPN 2 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: >STATE:1523996942,EXITING,management-exit,,,,,'
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: "Tue Apr 17 20:29:02 2018 MANAGEMENT: CMD 'exit'"
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Client disconnected'
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Triggering management exit'
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 Closing TUN/TAP interface'
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 /sbin/ifconfig as0t1 0.0.0.0'
2018-04-17 21:29:02+0100 [OMIClientAuth,0,] OMI Cancel pending deferred ['exit']
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 Linux ip addr del failed: could not execute external program'
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 SIGTERM[soft,management-exit] received, process exiting'
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: >STATE:1523996942,EXITING,management-exit,,,,,'
2018-04-17 21:29:02+0100 [-] OVPN 1 OUT: 'Tue Apr 17 20:29:02 2018 PORT SHARE PROXY: proxy exiting'
2018-04-17 21:29:02+0100 [OMIClientAuth,0,] OMI Cancel pending deferred ['exit']
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: "Tue Apr 17 20:29:02 2018 MANAGEMENT: CMD 'exit'"
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Client disconnected'
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: Triggering management exit'
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 Closing TUN/TAP interface'
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 /sbin/ifconfig as0t0 0.0.0.0'
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 Linux ip addr del failed: could not execute external program'
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 SIGTERM[soft,management-exit] received, process exiting'
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 MANAGEMENT: >STATE:1523996942,EXITING,management-exit,,,,,'
2018-04-17 21:29:02+0100 [-] OVPN 0 OUT: 'Tue Apr 17 20:29:02 2018 PORT SHARE PROXY: proxy exiting'
2018-04-17 21:29:02+0100 [-] IPTABLES_LIVE ERR: 'IPTABLES_RESTORE: Sending SIGTERM to pid 22702'
2018-04-17 21:29:02+0100 [-] PROC RESTORE /proc/sys/net/ipv4/ip_forward -> 1
2018-04-17 21:29:02+0100 [-] PROC RESTORE /proc/sys/net/netfilter/nf_conntrack_tcp_be_liberal -> 1
2018-04-17 21:29:02+0100 [-] WEB: Sending SIGTERM to pid 22648
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] Received SIGTERM, shutting down.'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 909 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 908 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 907 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 906 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 905 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 904 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 11194 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] (Port 943 Closed)'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] Main loop terminated.'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] Warning: No permission to delete pid file'
2018-04-17 21:29:02+0100 [-] WEB OUT: '2018-04-17 21:29:02+0100 [-] Server Shut Down.'
2018-04-17 21:29:02+0100 [-] Server Agent shutting down, stop status: {'errors': {}, 'service_status': {'bridge': 'off', 'log': 'off', 'license': 'off', 'ip$
2018-04-17 21:29:02+0100 [-] (Port None Closed)
2018-04-17 21:29:02+0100 [-] (Port None Closed)
2018-04-17 21:29:02+0100 [-] (Port None Closed)
2018-04-17 21:29:02+0100 [-] Received SIGTERM, shutting down.
2018-04-17 21:29:02+0100 [-] Main loop terminated.
2018-04-17 21:29:02+0100 [-] Server Shut Down.
2018-04-17 21:29:04+0100 [-] Log opened.
2018-04-17 21:29:04+0100 [-] twistd 9.0.0 (/usr/local/openvpn_as/bin/python 2.7.11) starting up.
2018-04-17 21:29:04+0100 [-] reactor class: twisted.internet.epollreactor.EPollReactor.
2018-04-17 21:29:04+0100 [-] rmdir /usr/local/openvpn_as/etc/db_push
2018-04-17 21:29:04+0100 [-] ACCESS SERVER starting, version=2.5
2018-04-17 21:29:04+0100 [-] Max open files set to (4096, 4096)
2018-04-17 21:29:04+0100 [-] /etc/resolv.conf changed, reparsing
2018-04-17 21:29:04+0100 [-] Resolver added ('127.0.0.1', 53) to server list
2018-04-17 21:29:05+0100 [-] twisted.web.server.Site starting on "u'/usr/local/openvpn_as/etc/sock/sagent'"
2018-04-17 21:29:05+0100 [-] twisted.web.server.Site starting on "u'/usr/local/openvpn_as/etc/sock/sagent.localroot'"
2018-04-17 21:29:05+0100 [-] twisted.web.server.Site starting on "u'/usr/local/openvpn_as/etc/sock/sagent.api'"
Top
User avatar
novaflash
OpenVPN Inc.
Posts: 1073
Joined: Fri Apr 13, 2012 8:43 pm

Re: Permission help requested

Post by novaflash » Wed Apr 18, 2018 7:52 am

Could you try installing the required program 'net-tools'?
I'm still alive, just posting under the openvpn_inc alias now as part of a larger group.
Top
Post Reply

Return to “The OpenVPN Access Server”