I'm currently have three unmanaged VPS on three different providers. I need /dev/net/tun and iptable_nat to be enabled to use OpenVPN and other stuff. By default, these two are disabled initially on all VPS provider.
Then I asked each provider technical support to enable /dev/net/tun and iptable_nat on my vps and only two of them managed to do it. The other one tried to enable it but in the end the technical support just said they are unmanaged VPS provider and I should look on openvz forum on how to make OpenVPN work (enabling the /dev/net/tun and iptable_nat) on my VPS. My OpenVPN setup has been run sucessfully on two other VPS (one of them already run without problems for almost 2 years)
Here is the log file of openvpn:
Mon Jun 29 02:22:42 2009 us=575678 Note: Cannot open TUN/TAP dev /dev/net/tun: Permission denied (errno=13)
Mon Jun 29 02:22:42 2009 us=575691 Note: Attempting fallback to kernel 2.2 TUN/TAP interface
Mon Jun 29 02:22:42 2009 us=576485 Cannot allocate TUN/TAP dev dynamically
Mon Jun 29 02:22:42 2009 us=576498 Exiting
and here's why I need to enable iptable_nat
[[email protected] openvpn]# iptables -t nat -s 10.8.0.0/24 -A POSTROUTING -j SNAT --to XX.XX.XX.XX (IP ADDRESS REMOVED)
iptables v1.3.5: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
The question, is it possible to do it from my end? if so, how? or I need to them do do it? (because its need to be done on the host machine not the vps).
Thank you for the confirmation its need to be done on the host. I'll give them that link you posted above.
I'm giving them a few days to resolve this issue. If they can't then I'll state their name in here. Hint: I get the offer from VPS offers forum I searched about them they did have quite large issue around 6 months ago but it seems the issue has been resolved. I tried it anyway because its quite cheap, doesn't tie me with long term plan (pay monthly) so I can get out whenever I want and this won't become my primary system except after I satisfied with performance and reliability of the host