OpenVPN

Version 1

    This template retrieves replication status of an OpenVPN server installed on Linux or Unix computer.


    Prerequisites: SSH and Perl installed on the target server.

    Credentials: OpenVPN installation user.


    This template was tested on OpenVPN 2.0.10.

    Note: Before using this template, the correct argument should be set in all script monitors. All monitors require the following arguments:

    perl ${SCRIPT} path_to_sacli
    where
    path_to_sacli - This is full path to sacli command.

     

    Below is an example using the Scripts Arguments field:
    perl ${SCRIPT} /usr/local/openvpn_as/scripts/sacli


    Monitored Components

    OpenVPN Statistics

         The returned values are as follows:

         Bytes Received – This component returns the total number of received bytes.

         Bytes Sent – This component returns the total number of sent bytes.

         Active Clients – This component returns the number of clients that are connected currently to OpenVPN server.

         License Usage – This component returns the number of currently used licenses and total number of licenses.

     

    OpenVPN Components 1

         This monitor returns state of OpenVPN components: 0 – On; 1 – Off; 3 – Unknown. The returned values are as follows:

         api – This component returns the state of API component.

         auth – This component returns the state of Authentication module.

         bridge – This component returns the state of OpenVPN Bridge.

         client_query – This component returns the components state which allows clients to use OpenVPN.

         crl – This component returns the state of CRL (Certificate Revocation List) component.

         daemon_pre – This component returns the state of Daemon PRE.

         db_push – This component returns the components state responsible for receiving DB pushes.

         ip6tables_live – This component returns the status of IPv6 live firewall.

         ip6tables_openvpn – This component returns the status of IPv6 openvpn firewall.

     

    OpenVPN Components 2

         This monitor returns state of OpenVPN components: 0 – On; 1 – Off; 3 – Unknown. The returned values are as follows:

         iptables_live – This component returns the status of IPv4 live firewall.

         iptables_openvpn – This component returns the status of IPv4 live firewall.

         iptables_web – This component returns the status of IPv4 web firewall.

         license – This component returns the status of licensing component.

         log – This component returns the status of logging component.

         user – This component returns the status of user component..

         web – This component returns the status of web service.

     

    TCP Port: Web

         This component monitor tests the ability of OpenVPN web service to accept incoming sessions. It monitors TCP port: 943.


    Portions of this document are based on the following articles: https://docs.openvpn.net/docs/access-server/openvpn-access-server-command-line-tools.html#access-server-daemon-status-and-control.

    Last updated 8/19/2014