New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Init-fence not working on OpenVPN appliance on AWS #1328
Comments
I have confirmed that this is still an issue on v16.0... Argh! 😢 |
Ok, so after having a bit of a play, it seems that the firewall rules (which should be applied by /etc/init.d/turnkey-init-fence are not being applied. I.e.: with the service not running:
And with it running:
Having said that, if I stop the service, then the default (Lighty) site load fine. With the service running, nothing... So it's doing something, of some sort... |
I've played with this one some more and still haven't been able to resolve it. I can 100% confirm that the init-fence works as expected on all other appliances. However it appears that it's the additional I've tried adjusting it to see if there is a way that we could disable that initially and re-enable it after the init-fence comes down, but I couldn't get it work (most likely my lack of knowledge re networking and iptables rather than something wrong with it). Unless we can work out the issue and how to work around it without affecting the VPN functionality, I think that perhaps the best way to resolve this for OpenVPN appliance might be for the init-fence to function a little differently (and stop stunnel, openvpn & lighhtpd and host the init-fence html directly on ports 80/443)?! |
I think I might be the best person for this one. Moving to 17.0 for the time being but feel free to ping me if it remains unhandled. |
@OnGle - I'm going to assign you! :) |
It has been reported, and confirmed by me, that the web-page provided by the TurnKey init-fence is not serving on the OpenVPN appliance. I haven't yet tested others, so other apps may also be effected.
After some extensive investigations, it doesn't appear to be affecting anything else. After completeing the firstboot initialisation (i.e. inithooks) the default landing page (aka "control panel" aka web-cp) works fine. OpenVPN itself also appears to be working fine.
The text was updated successfully, but these errors were encountered: