1 | mode server |
---|
2 | tls-server |
---|
3 | |
---|
4 | port 443 |
---|
5 | proto tcp |
---|
6 | |
---|
7 | port-share localhost 8443 |
---|
8 | |
---|
9 | dev tun |
---|
10 | up "/etc/openvpn/scripts/runme.sh" |
---|
11 | |
---|
12 | client-to-client |
---|
13 | #client-config-dir /etc/openvpn/ccd-tcp |
---|
14 | |
---|
15 | #learn-address /etc/openvpn/scripts/learn-address.sh |
---|
16 | |
---|
17 | persist-key |
---|
18 | persist-tun |
---|
19 | |
---|
20 | ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt |
---|
21 | cert /etc/openvpn/easy-rsa/2.0/keys/server.crt |
---|
22 | key /etc/openvpn/easy-rsa/2.0/keys/server.key |
---|
23 | dh /etc/openvpn/easy-rsa/2.0/keys/dh2048.pem |
---|
24 | tls-auth /etc/openvpn/easy-rsa/2.0/keys/ta.key 0 |
---|
25 | |
---|
26 | #cipher BF-CBC |
---|
27 | cipher AES-128-CBC |
---|
28 | auth SHA256 |
---|
29 | comp-lzo |
---|
30 | |
---|
31 | server 10.8.0.0 255.255.255.0 |
---|
32 | |
---|
33 | #push "topology subnet" |
---|
34 | push "dhcp-option DNS 8.8.8.8" |
---|
35 | push "dhcp-option DNS 8.8.4.4" |
---|
36 | |
---|
37 | max-clients 40 |
---|
38 | |
---|
39 | #crl-verify /etc/openvpn/easy-rsa/2.0/keys/crl.pem |
---|
40 | |
---|
41 | user nobody |
---|
42 | group nogroup |
---|
43 | keepalive 10 120 |
---|
44 | status /etc/openvpn/log/compatible-status.log |
---|
45 | log /etc/openvpn/log/compatible.log |
---|
46 | verb 4 |
---|
47 | mute 20 |
---|