1 | Server Conf |
---|
2 | port 65533 |
---|
3 | proto tcp |
---|
4 | dev tun |
---|
5 | ca easy-rsa/keys/ca.crt |
---|
6 | cert easy-rsa/keys/server.crt |
---|
7 | dh easy-rsa/keys/dh1024.pem |
---|
8 | server 10.8.0.0 255.255.255.0 |
---|
9 | ifconfig-pool-persist ipp.txt |
---|
10 | push "redirect-gateway def1 bypass-dhcp" |
---|
11 | client-to-client |
---|
12 | duplicate-cn |
---|
13 | keepalive 10 120 |
---|
14 | comp-lzo |
---|
15 | persist-key |
---|
16 | persist-tun |
---|
17 | status openvpn-status.log |
---|
18 | log openvpn.log |
---|
19 | verb 5 |
---|
20 | push "route 192.168.1.0 255.255.255.0" |
---|
21 | push "dhcp-option DNS 8.8.8.8" |
---|
22 | push "dhcp-option DNS 8.8.4.4" |
---|
23 | |
---|
24 | Client Conf |
---|
25 | client |
---|
26 | redirect-gateway |
---|
27 | redirect-gateway def1 |
---|
28 | dev tun |
---|
29 | proto tcp |
---|
30 | remote <host> 65533 |
---|
31 | comp-lzo |
---|
32 | <ca> |
---|
33 | -----BEGIN CERTIFICATE----- |
---|
34 | -----END CERTIFICATE----- |
---|
35 | </ca> |
---|
36 | <cert> |
---|
37 | -----BEGIN CERTIFICATE----- |
---|
38 | -----END CERTIFICATE----- |
---|
39 | </cert> |
---|
40 | <key> |
---|
41 | -----BEGIN PRIVATE KEY----- |
---|
42 | -----END PRIVATE KEY----- |
---|
43 | </key> |
---|
44 | # other options (mostly defaults) |
---|
45 | nobind |
---|
46 | persist-key |
---|
47 | persist-tun |
---|
48 | user nobody |
---|
49 | group nogroup |
---|
50 | resolv-retry infinite |
---|