I recently upgraded to openvpn-2.1_rc15 and encountered multiple problems. 1) it refused to start because I have my own up script 2) it incorrectly forced the use of the --nobind flag Aug 24 10:12:17 chemmis openvpn[6349]: Options error: --lport and --nobind don't make sense when used together Reproducible: Always Steps to Reproduce: chemmis:506 $ cat /etc/openvpn/bacon.conf dev tun remote server.whereever lport 5001 rport 5010 ping 45 ifconfig 192.168.99.108 192.168.99.6 fragment 1300 mssfix secret /etc/openvpn/keys/bacon.key up /usr/local/bin/openvpn-up.sh Actual Results: Aug 24 10:12:37 chemmis openvpn[6513]: Options error: --lport and --nobind don't make sense when used together It seems ill-advised for the start script of openvpn to preclude configurations that have worked fine for years. The necessity of the /etc/openvpn/up.sh script is dubious. It is entirely undocumented at http://en.gentoo-wiki.com/wiki/OpenVPN . It appears to address a problem I have never had. I have altered the /etc/init.d/openvpn script to read: # args="${args} --nobind --up-delay --up-restart" args="${args} --script-security 2" # args="${args} --up /etc/openvpn/up.sh" # args="${args} --down-pre --down /etc/openvpn/down.sh" If the /etc/openvpn/up.sh script is truly useful, then document it on the wiki and teach people how to reference it in their config files, but do not shove it down the throat of people who do not have the problems it is intended to solve.
--nobind is also incompatible when you specify "local x.x.x.x" in openvpn.conf.
Fix in cvs You can run your custom up/down script with /etc/openvpn/${SVCNAME}-{up,down}.sh like warn by the init script.
Comment #2 is incorrect because I have a single up script that works for all my services. It seems inappropriate and wasteful to duplicate it for each service.
(In reply to comment #3) > Comment #2 is incorrect because I have a single up script that works for all my > services. It seems inappropriate and wasteful to duplicate it for each > service. > Write one and make links for each services.