Bug #12332 » ovpn_server.txt
| 1 |
dev ovpns1 |
|---|---|
| 2 |
verb 3 |
| 3 |
dev-type tun |
| 4 |
dev-node /dev/tun1 |
| 5 |
writepid /var/run/openvpn_server1.pid |
| 6 |
#user nobody |
| 7 |
#group nobody |
| 8 |
script-security 3 |
| 9 |
daemon |
| 10 |
inactive 150 |
| 11 |
keepalive 5 30 |
| 12 |
ping-timer-rem |
| 13 |
persist-tun |
| 14 |
persist-key |
| 15 |
proto udp4 |
| 16 |
auth SHA256 |
| 17 |
up /usr/local/sbin/ovpn-linkup |
| 18 |
down /usr/local/sbin/ovpn-linkdown |
| 19 |
client-connect /usr/local/sbin/openvpn.attributes.sh |
| 20 |
client-disconnect /usr/local/sbin/openvpn.attributes.sh |
| 21 |
local 192.0.2.1 |
| 22 |
tls-server |
| 23 |
server 192.168.123.0 255.255.255.0 |
| 24 |
client-config-dir /var/etc/openvpn/server1/csc |
| 25 |
verify-client-cert none |
| 26 |
username-as-common-name |
| 27 |
plugin /usr/local/lib/openvpn/plugins/openvpn-plugin-auth-script.so /usr/local/sbin/ovpn_auth_verify_async user V0lOMSBOUFMgKFJBRElVUyk= false server1 1194 |
| 28 |
tls-verify "/usr/local/sbin/ovpn_auth_verify tls 'openVPN+cert' 1" |
| 29 |
lport 1194 |
| 30 |
management /var/etc/openvpn/server1/sock unix |
| 31 |
push "route 192.168.100.0 255.255.252.0" |
| 32 |
push "dhcp-option DNS 192.168.103.2" |
| 33 |
push "dhcp-option DNS 192.168.103.3" |
| 34 |
push "dhcp-option DNS 1.1.1.1" |
| 35 |
push "dhcp-option DNS 1.0.0.1" |
| 36 |
capath /var/etc/openvpn/server1/ca |
| 37 |
cert /var/etc/openvpn/server1/cert |
| 38 |
key /var/etc/openvpn/server1/key |
| 39 |
dh /etc/dh-parameters.2048 |
| 40 |
tls-auth /var/etc/openvpn/server1/tls-auth 0 |
| 41 |
ncp-disable |
| 42 |
cipher AES-256-CBC |
| 43 |
allow-compression no |
| 44 |
topology subnet |
| 45 |
push explicit-exit-notify |
| 46 |
push nobind |