[karmic] openvpn service starts before dhclient

Does this also happen when you use a static IP?

I doubt it.

This might be an upstart race.

Regards
chuck

I had the same problem with a static ip. I think the problem is that openvpn starts before ip-binding does. Even when openvpn is the last script in the rc, the problem occurs furthermore.

I solved the problem by removing the line "local xxx.xxx.xxx.xxx." out of the server.conf.

Problem still exists in 10.04 (probably also 10.10).
Another workaround: Add a sleep time at the autostart section of /etc/init.d/openvpn before the "start_vpn" command.
if ! ip addr show dev eth0 | grep -q 'inet' ; then
  sleep 10
fi

Of course change eth0 to whatever device OpenVPN is listening on.

Problem also occurs on a 10.04.1 machine, where OpenVPN is supposed to be listening to connections coming in on a bridged interface (ultimately to place client sessions on that same interface).

Section of syslog:
Dec 8 11:45:40 moonshine ovpn-areo[849]: TCP/UDP: Socket bind failed on local address [AF_INET]10.1.1.2:1194: Cannot assign requested address
Dec 8 11:45:40 moonshine ovpn-areo[849]: Exiting
Dec 8 11:45:41 moonshine kernel: [ 9.870963] e1000e: officenet NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX/TX
Dec 8 11:45:41 moonshine kernel: [ 9.871441] ADDRCONF(NETDEV_CHANGE): officenet: link becomes ready
Dec 8 11:45:41 moonshine kernel: [ 9.871659] officebr: port 1(officenet) entering learning state
Dec 8 11:45:41 moonshine ntpd[1179]: listening on 127.0.0.1
Dec 8 11:45:41 moonshine ntpd[1179]: listening on 10.90.1.1
Dec 8 11:45:41 moonshine ntpd[1179]: listening on ::1
Dec 8 11:45:41 moonshine ntpd[1179]: listening on fe80::206:4fff:fe86:e747%prodnet
Dec 8 11:45:41 moonshine ntpd[1179]: listening on fe80::213:72ff:fe2d:ddd6%officenet
Dec 8 11:45:41 moonshine ntpd[1179]: fatal: bind: Cannot assign requested address
Dec 8 11:45:41 moonshine ntpd[1178]: dispatch_imsg in main: pipe closed
Dec 8 11:45:41 moonshine ntpd[1178]: Terminating
Dec 8 11:45:43 moonshine kernel: [ 11.909297] ip_tables: (C) 2000-2006 Netfilter Core Team
Dec 8 11:45:43 moonshine kernel: [ 11.962461] nf_conntrack version 0.5.0 (16384 buckets, 65536 max)
Dec 8 11:45:43 moonshine kernel: [ 11.962707] CONFIG_NF_CT_ACCT is deprecated and will be removed soon. Please use
Dec 8 11:45:43 moonshine kernel: [ 11.962710] nf_conntrack.acct=1 kernel parameter, acct=1 nf_conntrack module option or
Dec 8 11:45:43 moonshine kernel: [ 11.962712] sysctl net.netfilter.nf_conntrack_acct=1 to enable it.
Dec 8 11:45:48 moonshine kernel: [ 17.021256] prodnet: no IPv6 routers present
Dec 8 11:45:48 moonshine kernel: [ 17.490006] officebr: no IPv6 routers present
Dec 8 11:45:50 moonshine kernel: [ 18.870010] officebr: port 1(officenet) entering forwarding state

Looking at that log segment, we can also see that ntpd has failed in the same way, so this is not an openvpn-specific problem

Same issue here as describen by Jim Cheetham on 2010-12-09. This is ubuntu server 10.04.2 all updates installed as 2011-07-12.

tried to change start sequence with: update-rc.d openvpn defaults 99 10

but this not help.

If I boot machine, log and "sudo service openvpn start" it just works.

is there a workaround to automatically start the vpn as last service?

I am also facing the same problem. Any workarounds available?

Sure, use /etc/rc.local.

service openvpn restart

I just ran into this problem on Ubuntu Server 10.04.4. Glad to see there is a work-around.

I noticed the errant behaviour does not exist starting with Ubuntu 11.04.

Marking as Fix released based on Peter's comment (#11). Thanks