OpenVPN

This template retrieves replication status of an OpenVPN server installed on Linux or Unix computer.


Prerequisites: SSH and Perl installed on the target server.

Credentials: OpenVPN installation user.


This template was tested on OpenVPN 2.0.10.

Note: Before using this template, the correct argument should be set in all script monitors. All monitors require the following arguments:

perl ${SCRIPT} path_to_sacli
where
path_to_sacli - This is full path to sacli command.

Below is an example using the Scripts Arguments field:
perl ${SCRIPT} /usr/local/openvpn_as/scripts/sacli


Monitored Components

OpenVPN Statistics

     The returned values are as follows:

     Bytes Received – This component returns the total number of received bytes.

     Bytes Sent – This component returns the total number of sent bytes.

     Active Clients – This component returns the number of clients that are connected currently to OpenVPN server.

     License Usage – This component returns the number of currently used licenses and total number of licenses.

OpenVPN Components 1

     This monitor returns state of OpenVPN components: 0 – On; 1 – Off; 3 – Unknown. The returned values are as follows:

     api – This component returns the state of API component.

     auth – This component returns the state of Authentication module.

     bridge – This component returns the state of OpenVPN Bridge.

     client_query – This component returns the components state which allows clients to use OpenVPN.

     crl – This component returns the state of CRL (Certificate Revocation List) component.

     daemon_pre – This component returns the state of Daemon PRE.

     db_push – This component returns the components state responsible for receiving DB pushes.

     ip6tables_live – This component returns the status of IPv6 live firewall.

     ip6tables_openvpn – This component returns the status of IPv6 openvpn firewall.

OpenVPN Components 2

     This monitor returns state of OpenVPN components: 0 – On; 1 – Off; 3 – Unknown. The returned values are as follows:

     iptables_live – This component returns the status of IPv4 live firewall.

     iptables_openvpn – This component returns the status of IPv4 live firewall.

     iptables_web – This component returns the status of IPv4 web firewall.

     license – This component returns the status of licensing component.

     log – This component returns the status of logging component.

     user – This component returns the status of user component..

     web – This component returns the status of web service.

TCP Port: Web

     This component monitor tests the ability of OpenVPN web service to accept incoming sessions. It monitors TCP port: 943.


Portions of this document are based on the following articles: https://docs.openvpn.net/docs/access-server/openvpn-access-server-command-line-tools.html#access-server-daemon-status-and-control.

Last updated 8/19/2014