28 lines
676 B
Plaintext
28 lines
676 B
Plaintext
port 1194
|
|
proto udp
|
|
dev tun
|
|
|
|
ca /etc/openvpn/easy-rsa/pki/ca.crt
|
|
cert /etc/openvpn/easy-rsa/pki/issued/server.crt
|
|
key /etc/openvpn/easy-rsa/pki/private/server.key # keep secret
|
|
dh /etc/openvpn/easy-rsa/pki/dh.pem
|
|
crl-verify /etc/openvpn/easy-rsa/pki/crl.pem
|
|
|
|
topology subnet
|
|
server 10.8.0.0 255.255.255.0
|
|
ifconfig-pool-persist ipp.txt
|
|
push "route 192.168.10.0 255.255.255.0"
|
|
|
|
client-to-client
|
|
duplicate-cn
|
|
keepalive 10 120
|
|
cipher AES-256-CBC
|
|
|
|
persist-key
|
|
persist-tun
|
|
status /var/log/openvpn-status.log
|
|
verb 3
|
|
explicit-exit-notify 1
|
|
plugin /usr/lib/openvpn/openvpn-auth-ldap.so "/etc/openvpn/auth/ldap.conf" login
|
|
crl-verify /etc/openvpn/easy-rsa/pki/crl.pem
|