28 lines
676 B
Plaintext
28 lines
676 B
Plaintext
|
port 1194
|
||
|
proto udp
|
||
|
dev tun
|
||
|
|
||
|
ca /etc/openvpn/easy-rsa/pki/ca.crt
|
||
|
cert /etc/openvpn/easy-rsa/pki/issued/server.crt
|
||
|
key /etc/openvpn/easy-rsa/pki/private/server.key # keep secret
|
||
|
dh /etc/openvpn/easy-rsa/pki/dh.pem
|
||
|
crl-verify /etc/openvpn/easy-rsa/pki/crl.pem
|
||
|
|
||
|
topology subnet
|
||
|
server 10.8.0.0 255.255.255.0
|
||
|
ifconfig-pool-persist ipp.txt
|
||
|
push "route 192.168.10.0 255.255.255.0"
|
||
|
|
||
|
client-to-client
|
||
|
duplicate-cn
|
||
|
keepalive 10 120
|
||
|
cipher AES-256-CBC
|
||
|
|
||
|
persist-key
|
||
|
persist-tun
|
||
|
status /var/log/openvpn-status.log
|
||
|
verb 3
|
||
|
explicit-exit-notify 1
|
||
|
plugin /usr/lib/openvpn/openvpn-auth-ldap.so "/etc/openvpn/auth/ldap.conf" login
|
||
|
crl-verify /etc/openvpn/easy-rsa/pki/crl.pem
|