nobody43
commented
2 years ago Hi. Could you provide the error message?
Open bigli0n opened 2 years ago
nobody43
commented
2 years ago Hi. Could you provide the error message?
nobody43
commented
2 years ago Anyway, you could checkout this profile: https://github.com/roddhjav/apparmor.d/blob/master/apparmor.d/groups/network/openvpn It's more advanced.
When using this profile in enforce mode, openvpn cannot launch. The syntax in the profile is incorrect, and although the PID should be whitelisted, it is denied by apparmor. Debian 11. Starting openvpn via systemctl with apparmor in complain mode, then setting it to enforce works because the pid file has already been created but this is not ideal