OpenVZ Forum: Support » OpenVPN inside OpenVZ container - Socket bind failed on local address 192.168.0.91:1194: Address..

Home » General » Support » OpenVPN inside OpenVZ container - Socket bind failed on local address 192.168.0.91:1194: Address..

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

OpenVPN inside OpenVZ container - Socket bind failed on local address 192.168.0.91:1194: Address.. [message #35270]

Fri, 13 March 2009 12:34

lowlow2
Messages: 7
Registered: March 2009
Location: Belgium

Junior Member

Hello all,

I'm trying to implement OpenVPN inside a OpenVZ container (192.168.0.91) the host's IP is 192.168.0.90

When I (re)start the OpenVPN Server I get the error message that the "Socket bind failed" because "the address is already in use"

The output of openvpn /etc/openvpn/server.conf

root@vpnserv:~# openvpn /etc/openvpn/server.conf
Fri Mar 13 14:03:41 2009 OpenVPN 2.1_rc7 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] built on Jun 11 2008
Fri Mar 13 14:03:41 2009 Diffie-Hellman initialized with 1024 bit key
Fri Mar 13 14:03:41 2009 /usr/bin/openssl-vulnkey -q -b 1024 -m <modulus omitted>
Fri Mar 13 14:03:42 2009 Control Channel Authentication: using '/etc/openvpn/ta.key' as a OpenVPN static key file
Fri Mar 13 14:03:42 2009 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Mar 13 14:03:42 2009 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Mar 13 14:03:42 2009 TLS-Auth MTU parms [ L:1574 D:166 EF:66 EB:0 ET:0 EL:0 ]
Fri Mar 13 14:03:42 2009 TCP/UDP: Socket bind failed on local address 192.168.0.91:1194: Address already in use
Fri Mar 13 14:03:42 2009 Exiting

This is my server.conf

mode server
tls-server

local 192.168.0.91 ## ip/hostname of server
port 1194 ## default openvpn port
proto udp


#bridging directive
dev tap ## If you need multiple tap devices, add them here
#up "/etc/openvpn/up.sh br0"
#down "/etc/openvpn/down.sh br0"

persist-key
persist-tun

#certificates and encryption
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key  # This file should be kept secret
dh /etc/openvpn/easy-rsa/keys/dh1024.pem
tls-auth /etc/openvpn/ta.key 0 # This file is secret

cipher BF-CBC        # Blowfish (default)
comp-lzo

#DHCP Information
ifconfig-pool-persist ipp.txt
server 10.8.0.0 255.255.255.0
#server-bridge 192.168.0.90 255.255.255.0 192.168.0.100 192.168.0.110
push "dhcp-option DNS 192.168.0.1"
push "dhcp-option DOMAIN impactweb.imm.be"
max-clients 10 ## set this to the max number of clients that should be connected at a time

I'm not really sure about the server-bridge option and the local (IP) option, on the top of my server.conf ?

Are there may-be specific things necessary for the good working of VPN inside a OpenVZ container that I may have overcome?
(I'm new to OpenVZ & virtualization)

Thanks in advance!

[Updated on: Tue, 17 March 2009 09:26]

Report message to a moderator

Re: OpenVPN inside OpenVZ container - Socket bind failed on local address 192.168.0.91:1194: Addres [message #35272 is a reply to message #35270]

Fri, 13 March 2009 16:00

rr_d
Messages: 6
Registered: July 2008

Junior Member

Hi,

What is the tun0 setup?

Check :

http://wiki.openvz.org/VPN_via_the_TUN/TAP_device

Report message to a moderator

Re: OpenVPN inside OpenVZ container - Socket bind failed on local address 192.168.0.91:1194: Addres [message #35323 is a reply to message #35270]

Tue, 17 March 2009 15:10

lowlow2
Messages: 7
Registered: March 2009
Location: Belgium

Junior Member

Thanks for the reply, tun0 makes it quite easy. I modified my server.conf to:

mode server
tls-server

#local 127.0.0.1 ## ip/hostname of server
#remote 213.219.138.138 #necessary?
port 1194 ## default openvpn port
proto udp
dev tun0

persist-key
persist-tun

#certificates and encryption
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key  # This file should be kept secret
dh /etc/openvpn/easy-rsa/keys/dh1024.pem
tls-auth /etc/openvpn/ta.key 0 # This file is secret

cipher BF-CBC        # Blowfish (default)
comp-lzo

#DHCP Information
ifconfig-pool-persist ipp.txt
server 10.8.0.0 255.255.255.0
#server-bridge 192.168.0.91 255.255.255.0 192.168.0.100 192.168.0.110
push "dhcp-option DNS 192.168.0.1"
push "dhcp-option DOMAIN impactweb.xxx.be"
push "route 192.168.0.0 255.255.255.0"
max-clients 10

#log and security
user nobody
group nogroup
keepalive 10 120
status openvpn-status.log
verb 3

I set up the client and I can make connection (which made me happy already!).
Now I would like to know how my clients can each get a different IP address. Is it necessary the ip is 192.168.0.x as my internal network? I guess not...

What I would like to know, is how I can implement DHCP because now all my clients get the same IP: 10.8.0.6

Thanks in advance

Report message to a moderator

Previous Topic:	Error installing net-snmp centos-5 template
Next Topic:	kernel: Uncharging too much 3 h 0, res unused_privvmpages

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Fri Jul 19 23:23:20 GMT 2024

Total time taken to generate the page: 0.02337 seconds