Bug #16705 » config_ovpn_2507.txt
| 1 |
dev ovpns1 |
|---|---|
| 2 |
disable-dco |
| 3 |
verb 1 |
| 4 |
dev-type tun |
| 5 |
dev-node /dev/tun1 |
| 6 |
writepid /var/run/openvpn_server1.pid |
| 7 |
#user nobody |
| 8 |
#group nobody |
| 9 |
script-security 3 |
| 10 |
daemon |
| 11 |
keepalive 10 60 |
| 12 |
ping-timer-rem |
| 13 |
persist-tun |
| 14 |
persist-key |
| 15 |
proto udp4 |
| 16 |
auth SHA256 |
| 17 |
up /usr/local/sbin/ovpn-linkup |
| 18 |
down /usr/local/sbin/ovpn-linkdown |
| 19 |
local 172.21.56.1 |
| 20 |
tls-server |
| 21 |
ifconfig 10.138.0.1 10.138.0.2 |
| 22 |
tls-verify "/usr/local/sbin/ovpn_auth_verify tls 'openvpn_cert_s2s' 1" |
| 23 |
lport 1194 |
| 24 |
management /var/etc/openvpn/server1/sock unix |
| 25 |
remote-cert-tls client |
| 26 |
capath /var/etc/openvpn/server1/ca |
| 27 |
cert /var/etc/openvpn/server1/cert |
| 28 |
key /var/etc/openvpn/server1/key |
| 29 |
dh /etc/dh-parameters.2048 |
| 30 |
tls-auth /var/etc/openvpn/server1/tls-auth 0 |
| 31 |
data-ciphers AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305:AES-256-CBC |
| 32 |
data-ciphers-fallback AES-256-CBC |
| 33 |
allow-compression no |
