API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Dec 28th, 2017
2,199
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.43 KB | None | 0 0
raw download clone embed print report
  1. ##############################################
  2. # Sample client-side OpenVPN 2.0 config file #
  3. # for connecting to multi-client server. #
  4. # #
  5. # This configuration can be used by multiple #
  6. # clients, however each client should have #
  7. # its own cert and key files. #
  8. # #
  9. # On Windows, you might want to rename this #
  10. # file so it has a .ovpn extension #
  11. ##############################################
  12.  
  13. # Specify that we are a client and that we
  14. # will be pulling certain config file directives
  15. # from the server.
  16. client
  17.  
  18. # Use the same setting as you are using on
  19. # the server.
  20. # On most systems, the VPN will not function
  21. # unless you partially or fully disable
  22. # the firewall for the TUN/TAP interface.
  23. ;dev tap
  24. dev tun
  25.  
  26. # Windows needs the TAP-Win32 adapter name
  27. # from the Network Connections panel
  28. # if you have more than one. On XP SP2,
  29. # you may need to disable the firewall
  30. # for the TAP adapter.
  31. ;dev-node MyTap
  32.  
  33. # Are we connecting to a TCP or
  34. # UDP server? Use the same setting as
  35. # on the server.
  36. ;proto tcp
  37. proto udp
  38.  
  39. # The hostname/IP and port of the server.
  40. # You can have multiple remote entries
  41. # to load balance between the servers.
  42. remote 74.65.24.54 1194
  43. ;remote my-server-2 1194
  44.  
  45. # Choose a random host from the remote
  46. # list for load-balancing. Otherwise
  47. # try hosts in the order specified.
  48. ;remote-random
  49.  
  50. # Keep trying indefinitely to resolve the
  51. # host name of the OpenVPN server. Very useful
  52. # on machines which are not permanently connected
  53. # to the internet such as laptops.
  54. resolv-retry infinite
  55.  
  56. # Most clients don't need to bind to
  57. # a specific local port number.
  58. nobind
  59.  
  60. # Downgrade privileges after initialization (non-Windows only)
  61. user nobody
  62. group nogroup
  63.  
  64. # Try to preserve some state across restarts.
  65. persist-key
  66. persist-tun
  67.  
  68. # If you are connecting through an
  69. # HTTP proxy to reach the actual OpenVPN
  70. # server, put the proxy server/IP and
  71. # port number here. See the man page
  72. # if your proxy server requires
  73. # authentication.
  74. ;http-proxy-retry # retry on connection failures
  75. ;http-proxy [proxy server] [proxy port #]
  76.  
  77. # Wireless networks often produce a lot
  78. # of duplicate packets. Set this flag
  79. # to silence duplicate packet warnings.
  80. ;mute-replay-warnings
  81.  
  82. # SSL/TLS parms.
  83. # See the server config file for more
  84. # description. It's best to use
  85. # a separate .crt/.key file pair
  86. # for each client. A single ca
  87. # file can be used for all clients.
  88. #ca ca.crt
  89. #cert client.crt
  90. #key client.key
  91.  
  92. # Verify server certificate by checking that the
  93. # certicate has the correct key usage set.
  94. # This is an important precaution to protect against
  95. # a potential attack discussed here:
  96. # http://openvpn.net/howto.html#mitm
  97. #
  98. # To use this feature, you will need to generate
  99. # your server certificates with the keyUsage set to
  100. # digitalSignature, keyEncipherment
  101. # and the extendedKeyUsage to
  102. # serverAuth
  103. # EasyRSA can do this for you.
  104. remote-cert-tls server
  105.  
  106. # If a tls-auth key is used on the server
  107. # then every client must also have the key.
  108. ;tls-auth ta.key 1
  109.  
  110. # Select a cryptographic cipher.
  111. # If the cipher option is used on the server
  112. # then you must also specify it here.
  113. ;cipher x
  114.  
  115. # Enable compression on the VPN link.
  116. # Don't enable this unless it is also
  117. # enabled in the server config file.
  118. comp-lzo
  119.  
  120. # Set log file verbosity.
  121. verb 3
  122.  
  123. # Silence repeating messages
  124. ;mute 20
  125. <ca>
  126. -----BEGIN CERTIFICATE-----
  127. MIIE5TCCA82gAwIBAgIJAIWtwPxeVzNQMA0GCSqGSIb3DQEBCwUAMIGnMQswCQYD
  128. VQQGEwJVUzELMAkGA1UECBMCTlkxFTATBgNVBAcTDFBPUlRBR0VWSUxMRTEUMBIG
  129. A1UEChMLQ0hQUkVDSVNJT04xDTALBgNVBAsTBEhPTUUxFzAVBgNVBAMTDkNIUFJF
  130. Q0lTSU9OIENBMQ8wDQYDVQQpEwZzZXJ2ZXIxJTAjBgkqhkiG9w0BCQEWFkphY29i
  131. VG93c2xleUBnbWFpbC5jb20wHhcNMTcxMjI4MTUwNDAwWhcNMjcxMjI2MTUwNDAw
  132. WjCBpzELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk5ZMRUwEwYDVQQHEwxQT1JUQUdF
  133. VklMTEUxFDASBgNVBAoTC0NIUFJFQ0lTSU9OMQ0wCwYDVQQLEwRIT01FMRcwFQYD
  134. VQQDEw5DSFBSRUNJU0lPTiBDQTEPMA0GA1UEKRMGc2VydmVyMSUwIwYJKoZIhvcN
  135. AQkBFhZKYWNvYlRvd3NsZXlAZ21haWwuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOC
  136. AQ8AMIIBCgKCAQEA8ExqjOMoPbqK73M7N8Z/weZc3+2dUMgJHfd6I9GCmFs6YLvw
  137. dhLKFXSk5tlUQwhiEosIRFyhQclf+gyCsMZ2fttHAVYRABQ7H9A5Gps5NdaiojfD
  138. aznibkkH7UY8bYvdM6KU/EFZsKnsUDKwM0+4t/GWJrd36Rg8pIPqNyUzFOpXA2fD
  139. lDIs74rIyFZKH8CPdgrEXRBitwHiyOlYzL2vKOg8vlfiETtoh4c0XaV3fM8WYYvS
  140. 45dxVpurR3QZFjCh3tT5q9BBpxEe4hYPM2yaYML/P+8ZZN5ayECdA8S3bFGLMN9U
  141. LzrmqUacsi+T5NpdBmT4cV7Kjq54jOSCNarK2wIDAQABo4IBEDCCAQwwHQYDVR0O
  142. BBYEFOgqkHRPF3kOpt2l7YDNFO6R5YO9MIHcBgNVHSMEgdQwgdGAFOgqkHRPF3kO
  143. pt2l7YDNFO6R5YO9oYGtpIGqMIGnMQswCQYDVQQGEwJVUzELMAkGA1UECBMCTlkx
  144. FTATBgNVBAcTDFBPUlRBR0VWSUxMRTEUMBIGA1UEChMLQ0hQUkVDSVNJT04xDTAL
  145. BgNVBAsTBEhPTUUxFzAVBgNVBAMTDkNIUFJFQ0lTSU9OIENBMQ8wDQYDVQQpEwZz
  146. ZXJ2ZXIxJTAjBgkqhkiG9w0BCQEWFkphY29iVG93c2xleUBnbWFpbC5jb22CCQCF
  147. rcD8XlczUDAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQDGrauFh6P8
  148. GnZgnykwk30OiOfFGHntCL1voEawOg8h63mMzRx3idkfSGDrjQB9DpuLuExdtCfD
  149. GDrDlwkp+bDdMdTjGo0wygOzvF4DUKw0aHwZo3pH0loN/RRJJ1g3NXRydWfJcksv
  150. ctpL99J6xHDbdpE2xU7x3q4nKVHTElFvcbh0GL868+AGU9RqHipcFSfPwWr06NSR
  151. Z1S86+X5jxeTfe0hhVW77TPaMydMOMGddnTdsK0YtE+S8CxErmtiVtx3Sj/EB8ua
  152. 3K/uvRLYAjmHNupnun5IVZQpQuBa+xI7P2a08kxfjNd8eMas16TOUrFCF9LY2h7k
  153. qFJBEZ9Sjwui
  154. -----END CERTIFICATE-----
  155. </ca>
  156. <cert>
  157. Certificate:
  158. Data:
  159. Version: 3 (0x2)
  160. Serial Number: 2 (0x2)
  161. Signature Algorithm: sha256WithRSAEncryption
  162. Issuer: C=US, ST=NY, L=PORTAGEVILLE, O=CHPRECISION, OU=HOME, CN=CHPRECISION CA/name=server/emailAddress=JacobTowsley@gmail.com
  163. Validity
  164. Not Before: Dec 28 15:55:38 2017 GMT
  165. Not After : Dec 26 15:55:38 2027 GMT
  166. Subject: C=US, ST=NY, L=PORTAGEVILLE, O=CHPRECISION, OU=HOME, CN=client/name=server/emailAddress=JacobTowsley@gmail.com
  167. Subject Public Key Info:
  168. Public Key Algorithm: rsaEncryption
  169. Public-Key: (2048 bit)
  170. Modulus:
  171. 00:ab:ec:40:a7:4e:b5:e3:e4:17:0a:72:46:fb:d7:
  172. 52:dd:9e:de:d8:f2:59:54:3b:4f:c0:4a:8d:69:e8:
  173. bf:97:d3:56:1d:8a:b5:6f:c1:b1:01:96:7a:f4:fa:
  174. 08:4c:3b:40:92:4a:1b:b9:0c:94:1d:af:c9:cb:3c:
  175. fa:fb:bb:0e:61:29:77:ad:0f:a1:cc:1d:48:ae:db:
  176. 0f:61:e9:f5:19:88:eb:8a:e8:a6:b8:c7:8b:df:b4:
  177. 8d:a5:af:43:f5:c4:7d:52:1c:24:f7:4d:ee:d9:74:
  178. 21:8c:d3:ed:fa:9d:2a:80:a5:d4:56:49:cf:be:8c:
  179. 64:cd:e4:ff:4a:bf:3e:37:b2:9f:b8:b6:22:59:76:
  180. 1b:79:e4:e7:d0:ff:c7:fe:f6:0f:aa:e6:f3:6b:9b:
  181. 75:b1:47:b2:0f:e3:64:a6:1c:32:f3:13:27:da:bb:
  182. fa:71:c1:c8:72:e3:6f:ea:92:52:bc:fc:a8:87:67:
  183. 2f:2d:79:f0:23:0c:bc:ce:83:cb:b4:44:20:81:87:
  184. cd:00:f7:ba:84:99:b5:8c:43:cc:d1:e8:e4:f0:8c:
  185. 90:eb:e6:e5:9e:62:7a:00:84:93:a2:9c:80:cd:22:
  186. 47:5b:95:f0:eb:f7:44:73:6c:28:5d:bd:4e:e8:15:
  187. 5b:1c:ca:0d:ab:c4:f7:77:31:57:1a:fb:7f:1f:e1:
  188. 90:4b
  189. Exponent: 65537 (0x10001)
  190. X509v3 extensions:
  191. X509v3 Basic Constraints:
  192. CA:FALSE
  193. Netscape Comment:
  194. Easy-RSA Generated Certificate
  195. X509v3 Subject Key Identifier:
  196. 22:0E:2F:36:F7:F3:3F:85:F9:4E:13:A6:2D:B5:7D:35:BE:41:71:E1
  197. X509v3 Authority Key Identifier:
  198. keyid:E8:2A:90:74:4F:17:79:0E:A6:DD:A5:ED:80:CD:14:EE:91:E5:83:BD
  199. DirName:/C=US/ST=NY/L=PORTAGEVILLE/O=CHPRECISION/OU=HOME/CN=CHPRECISION CA/name=server/emailAddress=JacobTowsley@gmail.com
  200. serial:85:AD:C0:FC:5E:57:33:50
  201.  
  202. X509v3 Extended Key Usage:
  203. TLS Web Client Authentication
  204. X509v3 Key Usage:
  205. Digital Signature
  206. X509v3 Subject Alternative Name:
  207. DNS:client
  208. Signature Algorithm: sha256WithRSAEncryption
  209. e2:b2:b8:96:c3:a0:ee:ed:f8:b4:b4:cf:32:b4:9f:d6:ca:d7:
  210. 72:a1:99:f5:61:1b:05:ac:52:dd:3a:1a:ad:58:c0:ca:83:21:
  211. ed:3e:e6:ef:54:fc:b0:31:e7:11:22:c0:1f:ed:ff:21:06:7b:
  212. 18:10:34:79:e6:a6:04:b4:41:e1:e9:8b:32:f1:8a:5b:17:07:
  213. d1:9d:df:7b:14:32:bf:96:36:b8:6e:0c:a4:89:c2:40:93:11:
  214. 9f:a0:d5:af:12:51:0c:d0:a6:e9:41:3b:38:56:9f:ca:5e:ed:
  215. ac:a1:31:82:cb:4c:9e:58:71:61:20:38:cb:9e:8c:fb:67:dd:
  216. 6e:8b:06:e0:7b:0f:75:9d:84:68:d0:f4:df:38:5b:5d:7a:de:
  217. bc:33:59:da:95:3f:dc:11:7b:26:d4:dd:bc:65:ef:13:2b:7c:
  218. 57:14:0b:8c:09:56:d2:32:a3:d2:91:e0:4f:39:95:ed:56:7f:
  219. f5:7d:bb:1c:01:68:c9:24:56:77:0c:8d:5e:6d:ab:a7:2e:90:
  220. 02:6f:dd:7f:a4:96:91:1e:47:1e:8f:d4:f0:59:60:78:8b:37:
  221. 33:1d:18:19:6f:0a:5c:0b:b4:a1:39:77:5e:c5:17:2d:07:89:
  222. 06:bc:7e:59:8f:e6:d7:bc:7e:85:c5:b7:b5:d7:50:0d:35:26:
  223. 65:5d:cf:96
  224. -----BEGIN CERTIFICATE-----
  225. MIIFNjCCBB6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBpzELMAkGA1UEBhMCVVMx
  226. CzAJBgNVBAgTAk5ZMRUwEwYDVQQHEwxQT1JUQUdFVklMTEUxFDASBgNVBAoTC0NI
  227. UFJFQ0lTSU9OMQ0wCwYDVQQLEwRIT01FMRcwFQYDVQQDEw5DSFBSRUNJU0lPTiBD
  228. QTEPMA0GA1UEKRMGc2VydmVyMSUwIwYJKoZIhvcNAQkBFhZKYWNvYlRvd3NsZXlA
  229. Z21haWwuY29tMB4XDTE3MTIyODE1NTUzOFoXDTI3MTIyNjE1NTUzOFowgZ8xCzAJ
  230. BgNVBAYTAlVTMQswCQYDVQQIEwJOWTEVMBMGA1UEBxMMUE9SVEFHRVZJTExFMRQw
  231. EgYDVQQKEwtDSFBSRUNJU0lPTjENMAsGA1UECxMESE9NRTEPMA0GA1UEAxMGY2xp
  232. ZW50MQ8wDQYDVQQpEwZzZXJ2ZXIxJTAjBgkqhkiG9w0BCQEWFkphY29iVG93c2xl
  233. eUBnbWFpbC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr7ECn
  234. TrXj5BcKckb711Ldnt7Y8llUO0/ASo1p6L+X01YdirVvwbEBlnr0+ghMO0CSShu5
  235. DJQdr8nLPPr7uw5hKXetD6HMHUiu2w9h6fUZiOuK6Ka4x4vftI2lr0P1xH1SHCT3
  236. Te7ZdCGM0+36nSqApdRWSc++jGTN5P9Kvz43sp+4tiJZdht55OfQ/8f+9g+q5vNr
  237. m3WxR7IP42SmHDLzEyfau/pxwchy42/qklK8/KiHZy8tefAjDLzOg8u0RCCBh80A
  238. 97qEmbWMQ8zR6OTwjJDr5uWeYnoAhJOinIDNIkdblfDr90RzbChdvU7oFVscyg2r
  239. xPd3MVca+38f4ZBLAgMBAAGjggFxMIIBbTAJBgNVHRMEAjAAMC0GCWCGSAGG+EIB
  240. DQQgFh5FYXN5LVJTQSBHZW5lcmF0ZWQgQ2VydGlmaWNhdGUwHQYDVR0OBBYEFCIO
  241. Lzb38z+F+U4Tpi21fTW+QXHhMIHcBgNVHSMEgdQwgdGAFOgqkHRPF3kOpt2l7YDN
  242. FO6R5YO9oYGtpIGqMIGnMQswCQYDVQQGEwJVUzELMAkGA1UECBMCTlkxFTATBgNV
  243. BAcTDFBPUlRBR0VWSUxMRTEUMBIGA1UEChMLQ0hQUkVDSVNJT04xDTALBgNVBAsT
  244. BEhPTUUxFzAVBgNVBAMTDkNIUFJFQ0lTSU9OIENBMQ8wDQYDVQQpEwZzZXJ2ZXIx
  245. JTAjBgkqhkiG9w0BCQEWFkphY29iVG93c2xleUBnbWFpbC5jb22CCQCFrcD8Xlcz
  246. UDATBgNVHSUEDDAKBggrBgEFBQcDAjALBgNVHQ8EBAMCB4AwEQYDVR0RBAowCIIG
  247. Y2xpZW50MA0GCSqGSIb3DQEBCwUAA4IBAQDisriWw6Du7fi0tM8ytJ/WytdyoZn1
  248. YRsFrFLdOhqtWMDKgyHtPubvVPywMecRIsAf7f8hBnsYEDR55qYEtEHh6Ysy8Ypb
  249. FwfRnd97FDK/lja4bgykicJAkxGfoNWvElEM0KbpQTs4Vp/KXu2soTGCy0yeWHFh
  250. IDjLnoz7Z91uiwbgew91nYRo0PTfOFtdet68M1nalT/cEXsm1N28Ze8TK3xXFAuM
  251. CVbSMqPSkeBPOZXtVn/1fbscAWjJJFZ3DI1ebaunLpACb91/pJaRHkcej9TwWWB4
  252. izczHRgZbwpcC7ShOXdexRctB4kGvH5Zj+bXvH6Fxbe111ANNSZlXc+W
  253. -----END CERTIFICATE-----
  254. </cert>
  255. <key>
  256. -----BEGIN PRIVATE KEY-----
  257. MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQCr7ECnTrXj5BcK
  258. ckb711Ldnt7Y8llUO0/ASo1p6L+X01YdirVvwbEBlnr0+ghMO0CSShu5DJQdr8nL
  259. PPr7uw5hKXetD6HMHUiu2w9h6fUZiOuK6Ka4x4vftI2lr0P1xH1SHCT3Te7ZdCGM
  260. 0+36nSqApdRWSc++jGTN5P9Kvz43sp+4tiJZdht55OfQ/8f+9g+q5vNrm3WxR7IP
  261. 42SmHDLzEyfau/pxwchy42/qklK8/KiHZy8tefAjDLzOg8u0RCCBh80A97qEmbWM
  262. Q8zR6OTwjJDr5uWeYnoAhJOinIDNIkdblfDr90RzbChdvU7oFVscyg2rxPd3MVca
  263. +38f4ZBLAgMBAAECggEBAKp7kHFYIA5oNGDriXBayZVy4VEIoYRhfGgWhbysTLFl
  264. pFOPJPQ5giks66jZ+Dh/2Tw3uN37lzUJCHY9djUB/PRkhoRap/scXuLl348czSwR
  265. FmGc6xb46b9f78aI0j94JT2zIwUJhvyjqFFaJvcJuwfvaWxXrWYrGhsCJhYdJrlb
  266. C+tbZCLQqPU2b/ARMOWqgYiKnWSbGTsokE6obFqfDBRaVu1c2jptTHKkKixzhDum
  267. eEqG0oqwQD5JWpP4RsdefYDPSWNQYvOZtSGXwGn1GPfsbgr+P/4vJ44UwHTYPtwq
  268. J2IbkY7hE+FiTZEL0cjDxEEubLdZr+dyIqyFfizVkwECgYEA0vEJ69RU+9AoW97C
  269. ZU9AwPJLNBjdNyNgQqtLRXDWNxYq3SBim/r8L7MFmuffqHYPhFqz+icRN22Knr3L
  270. 1KVC8ER+RUfBfXXyQSgglALRuCWFWjYBkfkUnynKJJgeWfL7pocWNHnb72oWx+Kj
  271. LAh9mBviUOnz+O10AaYSFBtR4iECgYEA0KWL2cBXE2GSrSrZb8TbLJR6QbKa9S6V
  272. mL3ih3lsd4pA8TcIfb5zgiePL9iGs3t25yEHG45g/TmjXFy/3TgLxgZfugpSFmft
  273. 5nUCdKmBNNc78Z6THKsvS68NMamB1wrl9txlsQc342ehC4HbNVaI0gAPP2/G+daL
  274. tRsAylpPfOsCgYABI7AsB++VlKBDLsbaCT2OTUC+vUukmppQgeBcNanSjloY663c
  275. rdRi5ZKoLYx1un2G9351YXSkWgEfrmLFeUcNSTFtal/PL63pUDAs3H8JgZpgzF3h
  276. zfigi3c+D1xKnBdj5OLn0aiweGA7ICxFdp5HDg+A5GKe+5le0OjUFvmwQQKBgQCd
  277. X8CUhdcn7zjLFL7c5wbKIVP1qdnnhTOg+dibhqKhp85EItZswfIuAdimphMz3bRZ
  278. sTfDOSk+1vK4/9xX56Y5vyUFFjPEYq+2XBt2E0Q5rv6vyIP948DQvUCebNRadwXt
  279. pV+un1swU0HNhCzrllGs1A6sMotKduD5wVxfRK8f8QKBgQCnPRT3Nn/EiJopxTEB
  280. Xw1Z24WZq5X8Mr2j9U7AyeEwdCl4xxebYFaMC9WX4BvM2BufZPGiRswRAvPg/4Cc
  281. IWAZWXopQaold3sndOJHoKRuiMuoXvkDNLipMleEPZS1/uYnCxYyGlWOOWlQF9/d
  282. jz7IjTjS3sprD/BsIzcqOdFQDQ==
  283. -----END PRIVATE KEY-----
  284. </key>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!