How to open OpenVPN port (1194) on server?

Solution 1:

Just to note, your nmap scan was against TCP/1194. By default, OpenVPN will use UDP/1194, so your scan, as specified, isn't looking at the right place. Add the -sU option to scan for UDP, like this: nmap -sU -p 1194 209.54.48.68.

In any case, make sure the openvpn daemon is running (ps auxw |grep openvpn) and the netstat command that Khaled posted. If you have default DENY on iptables, you will need to open up UDP/1194 also.

Solution 2:

First, you need to make sure the service is running and listening on the expected port. You can use:

$ netstat -lnp

Second, it is not clear whether you are running iptables on the same server or on another one. Make sure you enable IP forwarding if iptables is configured on another machine. If these rules are applied on the same VPN server, you need to add the accept rules to 'INPUT' chain.

Solution 3:

Don't you need to have the port open in the RH-Firewall-1-INPUT or INPUT chains ?

iptables -I RH-Firewall-1-INPUT -p udp -m udp --dport 1194 -j ACCEPT

or

iptables -I INPUT -p udp -m udp --dport 1194 -j ACCEPT