API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 4th, 2015
70
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.44 KB | None | 0 0
raw download clone embed print report
  1. ##############################################
  2. # Sample client-side OpenVPN 2.0 config file #
  3. # for connecting to multi-client server. #
  4. # #
  5. # This configuration can be used by multiple #
  6. # clients, however each client should have #
  7. # its own cert and key files. #
  8. # #
  9. # On Windows, you might want to rename this #
  10. # file so it has a .ovpn extension #
  11. ##############################################
  12.  
  13. # Specify that we are a client and that we
  14. # will be pulling certain config file directives
  15. # from the server.
  16. client
  17.  
  18. # Use the same setting as you are using on
  19. # the server.
  20. # On most systems, the VPN will not function
  21. # unless you partially or fully disable
  22. # the firewall for the TUN/TAP interface.
  23. ;dev tap
  24. dev tun
  25.  
  26. # Windows needs the TAP-Win32 adapter name
  27. # from the Network Connections panel
  28. # if you have more than one. On XP SP2,
  29. # you may need to disable the firewall
  30. # for the TAP adapter.
  31. ;dev-node MyTap
  32.  
  33. # Are we connecting to a TCP or
  34. # UDP server? Use the same setting as
  35. # on the server.
  36. ;proto tcp
  37. proto udp
  38.  
  39. # The hostname/IP and port of the server.
  40. # You can have multiple remote entries
  41. # to load balance between the servers.
  42. remote 74.91.122.204 1194
  43. ;remote my-server-2 1194
  44.  
  45. # Choose a random host from the remote
  46. # list for load-balancing. Otherwise
  47. # try hosts in the order specified.
  48. ;remote-random
  49.  
  50. # Keep trying indefinitely to resolve the
  51. # host name of the OpenVPN server. Very useful
  52. # on machines which are not permanently connected
  53. # to the internet such as laptops.
  54. resolv-retry infinite
  55.  
  56. # Most clients don't need to bind to
  57. # a specific local port number.
  58. nobind
  59.  
  60. # Downgrade privileges after initialization (non-Windows only)
  61. ;user nobody
  62. ;group nogroup
  63.  
  64. # Try to preserve some state across restarts.
  65. persist-key
  66. persist-tun
  67.  
  68. # If you are connecting through an
  69. # HTTP proxy to reach the actual OpenVPN
  70. # server, put the proxy server/IP and
  71. # port number here. See the man page
  72. # if your proxy server requires
  73. # authentication.
  74. ;http-proxy-retry # retry on connection failures
  75. ;http-proxy [proxy server] [proxy port #]
  76.  
  77. # Wireless networks often produce a lot
  78. # of duplicate packets. Set this flag
  79. # to silence duplicate packet warnings.
  80. ;mute-replay-warnings
  81.  
  82. # SSL/TLS parms.
  83. # See the server config file for more
  84. # description. It's best to use
  85. # a separate .crt/.key file pair
  86. # for each client. A single ca
  87. # file can be used for all clients.
  88.  
  89. # Verify server certificate by checking
  90. # that the certicate has the nsCertType
  91. # field set to "server". This is an
  92. # important precaution to protect against
  93. # a potential attack discussed here:
  94. # http://openvpn.net/howto.html#mitm
  95. #
  96. # To use this feature, you will need to generate
  97. # your server certificates with the nsCertType
  98. # field set to "server". The build-key-server
  99. # script in the easy-rsa folder will do this.
  100. ns-cert-type server
  101.  
  102. # If a tls-auth key is used on the server
  103. # then every client must also have the key.
  104. ;tls-auth ta.key 1
  105.  
  106. # Select a cryptographic cipher.
  107. # If the cipher option is used on the server
  108. # then you must also specify it here.
  109. ;cipher x
  110.  
  111. # Enable compression on the VPN link.
  112. # Don't enable this unless it is also
  113. # enabled in the server config file.
  114. comp-lzo
  115.  
  116. # Set log file verbosity.
  117. verb 3
  118.  
  119. # Silence repeating messages
  120. ;mute 20
  121. <ca>
  122. -----BEGIN CERTIFICATE-----
  123. MIIFEjCCA/qgAwIBAgIJAOZWExRz9vFmMA0GCSqGSIb3DQEBCwUAMIG2MQswCQYD
  124. VQQGEwJVUzELMAkGA1UECBMCQ0ExFTATBgNVBAcTDFNhbkZyYW5jaXNjbzEVMBMG
  125. A1UEChMMRm9ydC1GdW5zdG9uMR0wGwYDVQQLExRNeU9yZ2FuaXphdGlvbmFsVW5p
  126. dDEYMBYGA1UEAxMPRm9ydC1GdW5zdG9uIENBMRAwDgYDVQQpEwdFYXN5UlNBMSEw
  127. HwYJKoZIhvcNAQkBFhJtZUBteWhvc3QubXlkb21haW4wHhcNMTUwNDA0MTk0MzUz
  128. WhcNMjUwNDAxMTk0MzUzWjCBtjELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAkNBMRUw
  129. EwYDVQQHEwxTYW5GcmFuY2lzY28xFTATBgNVBAoTDEZvcnQtRnVuc3RvbjEdMBsG
  130. A1UECxMUTXlPcmdhbml6YXRpb25hbFVuaXQxGDAWBgNVBAMTD0ZvcnQtRnVuc3Rv
  131. biBDQTEQMA4GA1UEKRMHRWFzeVJTQTEhMB8GCSqGSIb3DQEJARYSbWVAbXlob3N0
  132. Lm15ZG9tYWluMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjIKNc1d
  133. 167Z0D+TL9W/AZna7hQC8GKL7VykVGm1bXF8owxLZHFYE5olZSY/oRt9v0KO2aJk
  134. ZlOOJhCcZG1cXeOhxmj2N/dK4p0LJ+LPJt/uCK4klCPqWNrjRFfxMVCEZ43em5GM
  135. ZI5SHC+qXzFYezrbOp5G73+MeKV66F/+4Jqbwxz6zBaZj6f8K+yiu1Nt/onTawwV
  136. Ar0y60t8cML4pkuEGWGA0x4RlS5Bkj25yeLa0XpJvkzX3t/mNecg5LQmBayQYBeb
  137. 82bIFVCSalcpyC8erCQewlq+K/GYPbdXnB1S9gpkMLr4IQQpZc/seZYUxoyp3m/U
  138. HiPFv3Dv0XP7ywIDAQABo4IBHzCCARswHQYDVR0OBBYEFKPhRpARXRpiwPIrmmWc
  139. GD6qs8VLMIHrBgNVHSMEgeMwgeCAFKPhRpARXRpiwPIrmmWcGD6qs8VLoYG8pIG5
  140. MIG2MQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0ExFTATBgNVBAcTDFNhbkZyYW5j
  141. aXNjbzEVMBMGA1UEChMMRm9ydC1GdW5zdG9uMR0wGwYDVQQLExRNeU9yZ2FuaXph
  142. dGlvbmFsVW5pdDEYMBYGA1UEAxMPRm9ydC1GdW5zdG9uIENBMRAwDgYDVQQpEwdF
  143. YXN5UlNBMSEwHwYJKoZIhvcNAQkBFhJtZUBteWhvc3QubXlkb21haW6CCQDmVhMU
  144. c/bxZjAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQCcEol3LSKoH/FR
  145. 6+FrzhxV9X7JSBUysYMU+yeKckgX9aqhcSwv7H1ToMSdF4+1OiDKNJ52YAMKOY8L
  146. tq2JC5SJEqRQfVFSJrNSA+sqgmgRZnWh2OM+w4mRvqLV7BtnocNmuO0IyKqrzvgG
  147. 81unwMUfnIvbD2u5WiKk+ZCFZL83NtCSqcDZEpfi+BAvi7CkNOg6Ge4ick+D4UJd
  148. aJ99tJHKaV3EgiI3Tpg81BP3/JNbVUZyCAzN5Z/gTPfP4ze2caI5f/Vzl2Z0ilNy
  149. bqPDT7xlMtUQhgxF84pl+aoaqQT1PqHJqjWfzM9IfwulOy8UxOtrYXHeg4D1/OE5
  150. RahEC3xu
  151. -----END CERTIFICATE-----
  152. </ca>
  153. <cert>
  154. Certificate:
  155. Data:
  156. Version: 3 (0x2)
  157. Serial Number: 2 (0x2)
  158. Signature Algorithm: sha256WithRSAEncryption
  159. Issuer: C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=MyOrganizationalUnit, CN=Fort-Funston CA/name=EasyRSA/emailAddress=me@myhost.mydomain
  160. Validity
  161. Not Before: Apr 4 19:43:53 2015 GMT
  162. Not After : Apr 1 19:43:53 2025 GMT
  163. Subject: C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=MyOrganizationalUnit, CN=client/name=EasyRSA/emailAddress=me@myhost.mydomain
  164. Subject Public Key Info:
  165. Public Key Algorithm: rsaEncryption
  166. Public-Key: (2048 bit)
  167. Modulus:
  168. 00:a8:f0:9c:18:7b:91:d2:3c:69:19:2f:29:ca:17:
  169. 71:a2:bf:fe:c0:d8:66:51:d8:16:63:b5:95:62:cf:
  170. cb:e6:d7:24:85:a3:4b:fd:d6:b0:d7:e8:8f:e0:ba:
  171. e7:11:3f:9f:81:82:57:26:30:2a:70:80:d7:23:39:
  172. e6:ff:d2:b4:7a:94:18:64:71:93:ef:2c:79:10:2a:
  173. 4a:c5:d8:a1:a0:0d:5a:ba:8c:55:8c:fa:38:62:da:
  174. ad:a0:f5:22:43:9a:fb:05:b1:f3:38:23:33:06:72:
  175. a4:fd:25:a6:32:7b:a0:87:67:6c:a7:c4:9f:48:ed:
  176. 9c:f7:9f:3d:21:9f:e3:dd:d2:da:35:08:53:b7:d4:
  177. e5:e0:07:75:be:9c:b7:b3:c3:37:de:bd:a9:9a:44:
  178. 7e:d8:53:98:fd:f6:70:31:cf:ca:5e:1e:d6:33:ce:
  179. 1c:82:c5:c4:1c:aa:bb:d0:66:f6:22:da:71:89:4b:
  180. a3:38:78:ec:a5:df:88:92:85:53:fc:8b:15:6e:25:
  181. 84:29:4f:d2:da:c8:a2:d0:91:f4:4e:01:d6:7f:62:
  182. bf:b5:b1:d5:a6:0e:4b:f7:3f:83:e7:b3:38:d4:f6:
  183. 4e:09:56:bf:61:0c:65:d9:93:26:8a:af:a6:bb:21:
  184. 3f:46:5f:57:7b:50:d6:29:fa:f1:76:c1:6e:a5:6e:
  185. e9:5f
  186. Exponent: 65537 (0x10001)
  187. X509v3 extensions:
  188. X509v3 Basic Constraints:
  189. CA:FALSE
  190. Netscape Comment:
  191. Easy-RSA Generated Certificate
  192. X509v3 Subject Key Identifier:
  193. 0C:CD:88:5A:BA:8C:A7:02:BB:0E:03:55:DC:19:41:A9:7A:B7:94:C8
  194. X509v3 Authority Key Identifier:
  195. keyid:A3:E1:46:90:11:5D:1A:62:C0:F2:2B:9A:65:9C:18:3E:AA:B3:C5:4B
  196. DirName:/C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/OU=MyOrganizationalUnit/CN=Fort-Funston CA/name=EasyRSA/emailAddress=me@myhost.mydomain
  197. serial:E6:56:13:14:73:F6:F1:66
  198.  
  199. X509v3 Extended Key Usage:
  200. TLS Web Client Authentication
  201. X509v3 Key Usage:
  202. Digital Signature
  203. Signature Algorithm: sha256WithRSAEncryption
  204. 1a:a7:30:5d:b3:6e:83:75:3c:0d:ce:e1:ee:15:10:8c:17:0a:
  205. 4d:09:b5:c3:aa:48:66:63:47:59:90:0b:8a:62:ad:e8:7e:f4:
  206. df:70:0a:98:c7:9d:1b:2a:d7:1b:69:85:11:a2:08:78:74:0a:
  207. 07:e5:7d:f7:f3:5a:6a:a5:51:fb:77:9e:bb:b5:68:2c:92:bf:
  208. 0d:2b:88:6a:b8:68:f9:55:f9:83:c5:9c:34:10:e9:b4:9d:46:
  209. d3:2f:9c:d6:a4:5d:57:1d:c4:c7:a2:f3:c7:92:8d:34:cf:7a:
  210. 07:56:27:c6:76:d5:d2:b8:bc:68:19:a9:2f:0a:c0:df:57:13:
  211. 90:00:81:48:2a:a4:15:f4:44:c3:38:51:2e:fc:83:8a:49:e6:
  212. 3b:58:90:d7:32:c8:1b:4d:e9:b3:f2:29:0f:02:4e:c2:c9:8c:
  213. 07:96:34:92:3a:5d:63:dd:6a:7e:70:5b:8d:ac:08:a5:da:d1:
  214. 1f:61:23:3b:9c:ce:53:62:38:21:c2:1f:a7:a3:7e:a4:13:a4:
  215. b3:80:22:9e:1e:fa:59:f0:3c:f4:94:1e:d7:b8:ad:f0:4b:a8:
  216. 43:1b:08:ee:bf:8b:bb:2f:4f:52:3c:6d:f4:96:8d:91:ea:55:
  217. b6:78:3c:c6:31:17:1d:01:6a:50:f7:0a:e6:b1:c9:17:42:9d:
  218. 1d:b8:49:81
  219. -----BEGIN CERTIFICATE-----
  220. MIIFTzCCBDegAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBtjELMAkGA1UEBhMCVVMx
  221. CzAJBgNVBAgTAkNBMRUwEwYDVQQHEwxTYW5GcmFuY2lzY28xFTATBgNVBAoTDEZv
  222. cnQtRnVuc3RvbjEdMBsGA1UECxMUTXlPcmdhbml6YXRpb25hbFVuaXQxGDAWBgNV
  223. BAMTD0ZvcnQtRnVuc3RvbiBDQTEQMA4GA1UEKRMHRWFzeVJTQTEhMB8GCSqGSIb3
  224. DQEJARYSbWVAbXlob3N0Lm15ZG9tYWluMB4XDTE1MDQwNDE5NDM1M1oXDTI1MDQw
  225. MTE5NDM1M1owga0xCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJDQTEVMBMGA1UEBxMM
  226. U2FuRnJhbmNpc2NvMRUwEwYDVQQKEwxGb3J0LUZ1bnN0b24xHTAbBgNVBAsTFE15
  227. T3JnYW5pemF0aW9uYWxVbml0MQ8wDQYDVQQDEwZjbGllbnQxEDAOBgNVBCkTB0Vh
  228. c3lSU0ExITAfBgkqhkiG9w0BCQEWEm1lQG15aG9zdC5teWRvbWFpbjCCASIwDQYJ
  229. KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKjwnBh7kdI8aRkvKcoXcaK//sDYZlHY
  230. FmO1lWLPy+bXJIWjS/3WsNfoj+C65xE/n4GCVyYwKnCA1yM55v/StHqUGGRxk+8s
  231. eRAqSsXYoaANWrqMVYz6OGLaraD1IkOa+wWx8zgjMwZypP0lpjJ7oIdnbKfEn0jt
  232. nPefPSGf493S2jUIU7fU5eAHdb6ct7PDN969qZpEfthTmP32cDHPyl4e1jPOHILF
  233. xByqu9Bm9iLacYlLozh47KXfiJKFU/yLFW4lhClP0trIotCR9E4B1n9iv7Wx1aYO
  234. S/c/g+ezONT2TglWv2EMZdmTJoqvprshP0ZfV3tQ1in68XbBbqVu6V8CAwEAAaOC
  235. AW0wggFpMAkGA1UdEwQCMAAwLQYJYIZIAYb4QgENBCAWHkVhc3ktUlNBIEdlbmVy
  236. YXRlZCBDZXJ0aWZpY2F0ZTAdBgNVHQ4EFgQUDM2IWrqMpwK7DgNV3BlBqXq3lMgw
  237. gesGA1UdIwSB4zCB4IAUo+FGkBFdGmLA8iuaZZwYPqqzxUuhgbykgbkwgbYxCzAJ
  238. BgNVBAYTAlVTMQswCQYDVQQIEwJDQTEVMBMGA1UEBxMMU2FuRnJhbmNpc2NvMRUw
  239. EwYDVQQKEwxGb3J0LUZ1bnN0b24xHTAbBgNVBAsTFE15T3JnYW5pemF0aW9uYWxV
  240. bml0MRgwFgYDVQQDEw9Gb3J0LUZ1bnN0b24gQ0ExEDAOBgNVBCkTB0Vhc3lSU0Ex
  241. ITAfBgkqhkiG9w0BCQEWEm1lQG15aG9zdC5teWRvbWFpboIJAOZWExRz9vFmMBMG
  242. A1UdJQQMMAoGCCsGAQUFBwMCMAsGA1UdDwQEAwIHgDANBgkqhkiG9w0BAQsFAAOC
  243. AQEAGqcwXbNug3U8Dc7h7hUQjBcKTQm1w6pIZmNHWZALimKt6H7033AKmMedGyrX
  244. G2mFEaIIeHQKB+V99/NaaqVR+3eeu7VoLJK/DSuIarho+VX5g8WcNBDptJ1G0y+c
  245. 1qRdVx3Ex6Lzx5KNNM96B1YnxnbV0ri8aBmpLwrA31cTkACBSCqkFfREwzhRLvyD
  246. iknmO1iQ1zLIG03ps/IpDwJOwsmMB5Y0kjpdY91qfnBbjawIpdrRH2EjO5zOU2I4
  247. IcIfp6N+pBOks4Ainh76WfA89JQe17it8EuoQxsI7r+Luy9PUjxt9JaNkepVtng8
  248. xjEXHQFqUPcK5rHJF0KdHbhJgQ==
  249. -----END CERTIFICATE-----
  250. </cert>
  251. <key>
  252. -----BEGIN PRIVATE KEY-----
  253. MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCo8JwYe5HSPGkZ
  254. LynKF3Giv/7A2GZR2BZjtZViz8vm1ySFo0v91rDX6I/guucRP5+BglcmMCpwgNcj
  255. Oeb/0rR6lBhkcZPvLHkQKkrF2KGgDVq6jFWM+jhi2q2g9SJDmvsFsfM4IzMGcqT9
  256. JaYye6CHZ2ynxJ9I7Zz3nz0hn+Pd0to1CFO31OXgB3W+nLezwzfevamaRH7YU5j9
  257. 9nAxz8peHtYzzhyCxcQcqrvQZvYi2nGJS6M4eOyl34iShVP8ixVuJYQpT9LayKLQ
  258. kfROAdZ/Yr+1sdWmDkv3P4PnszjU9k4JVr9hDGXZkyaKr6a7IT9GX1d7UNYp+vF2
  259. wW6lbulfAgMBAAECggEATtS/sfjvSW/hBtxoHqIj53K5uFkCHcy8XdiclZgrKFNZ
  260. +nYBfrhQmt8tTAtKyVSr5G3iprIxC4BDY2+gZ911VAGJBE2vXxqcfzuM2pdEi//P
  261. R182iGs2JoKuJH5ed7d4zOaFfLuIEskqTenkjIf9l1FedUadoRUnerC2gNswJBB+
  262. XWTQofugMrWa6jSpLi6A963S5SC/ZmEnTPo+XThzO1f3D35hjh1gUUmyIppLAhjV
  263. f+2wj9Dp9p/fc8m+JyBaogFwqM0XfsgutPeH9/RXWPQhuMNq2rY5TvCyQhmr2PEZ
  264. SYCVCFy2G7p4wUME+18JQq3/dzS+9iBYh6HSCdYvwQKBgQDbkA/l9neYUGcaQCka
  265. F0dLsseTxInbv50Er69nIMh+XmieSBoDJRgDGsckBGWPYMhbRhgBrY229f69VsIo
  266. p/lvOt3XL2xUKLQb4ni0gKFWZJh1+GhW4no2NYsYKiijpsNUOwQjluKFLfoFdd/u
  267. 2KKZip2rdFGbv7IEDkjNVtBzoQKBgQDE+eDL7L3uKxTYj7mYg7dfpqsQ6bsZ+ZwJ
  268. cWpPEAz13GARIg/9TS39KEd/9AQqyrYIOdl16oFzHmvbFT6rlBGWpMJvFfN29jDo
  269. 5aiQnSXXPxm5pYlrwp+cqmyk+d+NDADQR5sbbQ+ljJP1y8ZD4bDgs95iTwmw2AD2
  270. hCKX83I8/wKBgQCELQS1Hpu+kOCQmAFmWI8uDfFBjrajGIYRFSZVwhGQqYr3hlZK
  271. gGElNVCe6RqupsfW0qqPEAjZFNwG5Zy61uw9PsXfzge73kkW5E5f83Osy6BQnHtL
  272. msmRqsgSgwa2BiVepqyGNEYngJccBGsLoVS5dA4Y8kxSo6Mp9+Nx4gpZIQKBgQCE
  273. uRZGcfOcSn0WWumkoYPquIPltofyvaTtG/WU5mzFMUOt57S8acfGH+Dlj4dLSiGT
  274. s18au/OTnPjxuwPqWq/rQIMelLzi+IoGM9D7+FdqDMOJuse4y3/+8TqZgyClimP1
  275. 83nI5hi35NxBr5edX7JuBeSfe0A9X55ufKROnKPqAwKBgDSSfio6Wt0EQM7joNXR
  276. RAQYHSi9Mi82C21YnBaPO5GBBHl+CVYohpUqC4Hlm3rExFoFEPm6h+p/d883DCcz
  277. 6DWHWO2jjFzKC7nGl6jwQiNKCuOQeh/alqHCVyKUFQySstlXkln6Oylv4wWnYRdx
  278. 7KaQSbjX+hdFFgY1OvFb3shE
  279. -----END PRIVATE KEY-----
  280. </key>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!