Hello, openvpn does not start in an unprivileged lxc container.
Tun interface is connected - instructions have been added to the container configuration:
But when starting openvpn, an error is issued:
Tun is owned by nobody/nogroup
Please help me solve this problem.
Tun interface is connected - instructions have been added to the container configuration:
Code:
lxc.mount.entry: /dev/net dev/net none bind,create=dir
lxc.cgroup.devices.allow: c 10:200 rwm
Code:
OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 20 2019
library versions: OpenSSL 1.1.1c 28 May 2019, LZO 2.10
Diffie-Hellman initialized with 2048 bit key
Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
ROUTE_GATEWAY 197.177.0.254/255.255.255.0 IFACE=eth0 HWADDR=5e:f3:68:01:a0:05
TUN/TAP device tun0 opened
Note: Cannot set tx queue length on tun0: Operation not permitted (errno=1)
/sbin/ip link set dev tun0 up mtu 1500
openvpn_execve: unable to fork: Resource temporarily unavailable (errno=11)
Exiting due to fatal error
Code:
ls -l /dev/net
итого 0
crw-rw-rw- 1 nobody nogroup 10, 200 июл 16 09:57 tun