|
楼主 |
发表于 2009-9-8 17:16:25
|
显示全部楼层
PhotonVPS + openVZ + openVPN = lots of fun :)
First the good news,
hopefully soon my "PhotonVPS" odyssey should end and they should be rdy now to setup openVZ + openVPN properly yay!
Here is a small setup review:
Day1: ordered a openVZ VPS and noted in the order "I need iptables + TUN device enabled to run openVPN"
.
some hours later
.
.
PhotonVPS: "Your VPS is rdy!"
Me: "Yay this was fast! Lets test the "speedy" connection!"
Me: "Um iptables has no NAT support and there is no /dev/net/tun device"
.
Support Mail(1): "iptables nat is missing and TUN also, pls fix"
.
PhotonVPS: "TUN is enabled now and iptables works fine!"
Me: "Yay finally!"
.
Support Mail(2): "iptables NAT is still missing and TUN also?"
.
PhotonVPS: "You must use SNAT in your iptables NAT rule, because Masquerading is not possible with the current Virtuozzo version since it has not been virtualized as a module yet."
.
Support Mail(3): "Im not sure how to do IP MASQUERADE with just SNAT and without MASQUERADE module, pls explain this to me"
PhotonVPS: "Forwarded to Level3 support"
.
some time next day
.
PhotonVPS (L3): "I loaded the MASQUERADE module. Pls try again."
.
Support Mail(4): "TUN device is still missing, maybe i should try a XEN vps is this setup is not possible?"
.
PhotonVPS: "NAT is now working correctly!"
Me after a reboot:
Support Mail(5): "iptables: No chain/target/match by that name and the /dev/net/tun device is gone again"
.
some time later
.
PhotonVPS: "The TUN device is there, whats your problem with the iptables?"
.
Support Mail(6): "iptables: No chain/target/match by that name and the /dev/net/tun device is gone again"
(Sidenote, why do i have to explain the error 2 times here?)
.
PhotonVPS: "Those MASQUERADE issue and the tun should be fixed. Pls run some tests."
.
Support Mail(6+7) are just some chat that i cant test atm since im working.
.
Support Mail(8): "… my root dir looks really strange and there are some /20 /100 dirs now that i did not created. Also after reboot /dev/net/tun is gone again, but yay NAT stayed and worked."
.
.
Support Mail(9-11): Just some questions about XEN and if its possible to move me to those machines since i can compile my own kernel.
.
.
PhotonVPS: They try to setup a script to keep the TUN from from vanishing.
.
.
tobe continued
BTW we are at day 3 after order.
While im writing this im still smiling and "hope" they will get it working. Im not really angry atm, no clue why :p
As a sidenode, myprohost needed 1 mail and 15mins to activate iptables + TUN for my openVPN server :p
Tobe fair i will do a speed review if they manage to finally set this up correctly. |
|