API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 22nd, 2019
282
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 13.11 KB | None | 0 0
raw download clone embed print report
  1. ##############################################
  2. # Sample client-side OpenVPN 2.0 config file #
  3. # for connecting to multi-client server. #
  4. # #
  5. # This configuration can be used by multiple #
  6. # clients, however each client should have #
  7. # its own cert and key files. #
  8. # #
  9. # On Windows, you might want to rename this #
  10. # file so it has a .ovpn extension #
  11. ##############################################
  12.  
  13. # Specify that we are a client and that we
  14. # will be pulling certain config file directives
  15. # from the server.
  16. client
  17.  
  18. # Use the same setting as you are using on
  19. # the server.
  20. # On most systems, the VPN will not function
  21. # unless you partially or fully disable
  22. # the firewall for the TUN/TAP interface.
  23. ;dev tap
  24. dev tun
  25.  
  26. # Windows needs the TAP-Win32 adapter name
  27. # from the Network Connections panel
  28. # if you have more than one. On XP SP2,
  29. # you may need to disable the firewall
  30. # for the TAP adapter.
  31. ;dev-node MyTap
  32.  
  33. # Are we connecting to a TCP or
  34. # UDP server? Use the same setting as
  35. # on the server.
  36. proto tcp
  37. ;proto udp
  38.  
  39. # The hostname/IP and port of the server.
  40. # You can have multiple remote entries
  41. # to load balance between the servers.
  42. remote my-server-1 443
  43. ;remote my-server-2 1194
  44.  
  45. # Choose a random host from the remote
  46. # list for load-balancing. Otherwise
  47. # try hosts in the order specified.
  48. ;remote-random
  49.  
  50. # Keep trying indefinitely to resolve the
  51. # host name of the OpenVPN server. Very useful
  52. # on machines which are not permanently connected
  53. # to the internet such as laptops.
  54. resolv-retry infinite
  55.  
  56. # Most clients don't need to bind to
  57. # a specific local port number.
  58. nobind
  59.  
  60. # Downgrade privileges after initialization (non-Windows only)
  61. user nobody
  62. group nogroup
  63.  
  64. # Try to preserve some state across restarts.
  65. persist-key
  66. persist-tun
  67.  
  68. # If you are connecting through an
  69. # HTTP proxy to reach the actual OpenVPN
  70. # server, put the proxy server/IP and
  71. # port number here. See the man page
  72. # if your proxy server requires
  73. # authentication.
  74. ;http-proxy-retry # retry on connection failures
  75. ;http-proxy [proxy server] [proxy port #]
  76.  
  77. # Wireless networks often produce a lot
  78. # of duplicate packets. Set this flag
  79. # to silence duplicate packet warnings.
  80. ;mute-replay-warnings
  81.  
  82. # SSL/TLS parms.
  83. # See the server config file for more
  84. # description. It's best to use
  85. # a separate .crt/.key file pair
  86. # for each client. A single ca
  87. # file can be used for all clients.
  88. #ca ca.crt
  89. #cert client.crt
  90. #key client.key
  91.  
  92. # Verify server certificate by checking that the
  93. # certicate has the correct key usage set.
  94. # This is an important precaution to protect against
  95. # a potential attack discussed here:
  96. # http://openvpn.net/howto.html#mitm
  97. #
  98. # To use this feature, you will need to generate
  99. # your server certificates with the keyUsage set to
  100. # digitalSignature, keyEncipherment
  101. # and the extendedKeyUsage to
  102. # serverAuth
  103. # EasyRSA can do this for you.
  104. remote-cert-tls server
  105.  
  106. # If a tls-auth key is used on the server
  107. # then every client must also have the key.
  108. ;tls-auth ta.key 1
  109.  
  110. # Select a cryptographic cipher.
  111. # If the cipher option is used on the server
  112. # then you must also specify it here.
  113. cipher AES-128-CBC
  114. auth SHA256
  115.  
  116. # Enable compression on the VPN link.
  117. # Don't enable this unless it is also
  118. # enabled in the server config file.
  119. comp-lzo
  120.  
  121. # Set log file verbosity.
  122. verb 3
  123.  
  124. # Silence repeating messages
  125. ;mute 20
  126.  
  127. key-direction 1
  128. # script-security 2
  129. # up /etc/openvpn/update-resolv-conf
  130. # down /etc/openvpn/update-resolv-conf
  131. <ca>
  132. -----BEGIN CERTIFICATE-----
  133. MIIEujCCA6KgAwIBAgIJANHSTPrtyJ0SMA0GCSqGSIb3DQEBCwUAMIGZMQswCQYD
  134. VQQGEwJWTjEMMAoGA1UECBMDSENNMRIwEAYDVQQHEwlIb0NoaU1pbmgxDDAKBgNV
  135. BAoTA1VJVDESMBAGA1UECxMJQ29tbXVuaXR5MQ8wDQYDVQQDEwZVSVQgQ0ExDzAN
  136. BgNVBCkTBnNlcnZlcjEkMCIGCSqGSIb3DQEJARYVY29naWFwaHVjOTdAZ21haWwu
  137. Y29tMB4XDTE5MDMyMzAxMzAwM1oXDTI5MDMyMDAxMzAwM1owgZkxCzAJBgNVBAYT
  138. AlZOMQwwCgYDVQQIEwNIQ00xEjAQBgNVBAcTCUhvQ2hpTWluaDEMMAoGA1UEChMD
  139. VUlUMRIwEAYDVQQLEwlDb21tdW5pdHkxDzANBgNVBAMTBlVJVCBDQTEPMA0GA1UE
  140. KRMGc2VydmVyMSQwIgYJKoZIhvcNAQkBFhVjb2dpYXBodWM5N0BnbWFpbC5jb20w
  141. ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc62Oqm6anQnSxnrskyzN8
  142. Lb/YlA/gk0EnjtDYNdnYlIOBgSO8OWyReNdyFmGxfr8XusGZgqhc+0Yq0G8Wl6s3
  143. NPhum6pYDUfWHBXKcQUHEENSiHobXOVgwrI+kEwAo8ffHBxnrO283/0WsU3aWsr8
  144. T68vQ67W6K2udh+0PwTqwiWVfuuamFxiR3IWTO3wicaicqXQ/tmrBut4babmgmAR
  145. GF1xjzJ9BO1VVYkyymlCUr6inCuzXvtD8y+uQTFkCoX+c449ofEwmaTdV/m4YX9p
  146. Ql5uM9P8dDfM9BuEtDiTtIGzlr6zfSCHruackMXJMPK5E91pDuPVey7q8mA8PhXh
  147. AgMBAAGjggEBMIH+MB0GA1UdDgQWBBQgMsZWcR0zH0KzVJBDoqTTgpr1LDCBzgYD
  148. VR0jBIHGMIHDgBQgMsZWcR0zH0KzVJBDoqTTgpr1LKGBn6SBnDCBmTELMAkGA1UE
  149. BhMCVk4xDDAKBgNVBAgTA0hDTTESMBAGA1UEBxMJSG9DaGlNaW5oMQwwCgYDVQQK
  150. EwNVSVQxEjAQBgNVBAsTCUNvbW11bml0eTEPMA0GA1UEAxMGVUlUIENBMQ8wDQYD
  151. VQQpEwZzZXJ2ZXIxJDAiBgkqhkiG9w0BCQEWFWNvZ2lhcGh1Yzk3QGdtYWlsLmNv
  152. bYIJANHSTPrtyJ0SMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBACck
  153. yrdlY5MTuMi2dBkneuBXmu1Hhul8l5Ov9ZCaVREiLJBZLAa2v+5/tKNKGBtD7Bo3
  154. cTeucuJutXfCo2I3h6H6Kd68grXyXvAVlRQq7VAir5+6ND2NNJ1tF2VdTwYiePG5
  155. TsXTeXwB9RqDpLqZFM7Rma2ebN/S9zsRETMoiZBOAoUnYUfAp72A3lh7CDIH52um
  156. Yq/H+h2UvtL8AMPC7vMHI2/1mFb0LPmS2mdtkDUrPBiuVf1eiREBJqK/tK7/0P4K
  157. PzVDcF/7hy1hmrW4B//sWpU23FZnIe9CdOAq5Rd0tLaEM82S52kCBi73DZeD5giZ
  158. T38qYka2S37QZY005Qg=
  159. -----END CERTIFICATE-----
  160. </ca>
  161. <cert>
  162. Certificate:
  163. Data:
  164. Version: 3 (0x2)
  165. Serial Number: 2 (0x2)
  166. Signature Algorithm: sha256WithRSAEncryption
  167. Issuer: C=VN, ST=HCM, L=HoChiMinh, O=UIT, OU=Community, CN=UIT CA/name=server/emailAddress=cogiaphuc97@gmail.com
  168. Validity
  169. Not Before: Mar 23 01:31:31 2019 GMT
  170. Not After : Mar 20 01:31:31 2029 GMT
  171. Subject: C=VN, ST=HCM, L=HoChiMinh, O=UIT, OU=Community, CN=client1/name=server/emailAddress=cogiaphuc97@gmail.com
  172. Subject Public Key Info:
  173. Public Key Algorithm: rsaEncryption
  174. Public-Key: (2048 bit)
  175. Modulus:
  176. 00:b3:51:4d:93:09:4e:4c:02:d8:75:d0:c3:db:10:
  177. 61:c7:0d:24:1f:94:f8:0a:48:92:88:76:54:e9:1f:
  178. c9:7d:ca:8e:37:0d:16:1b:c8:24:28:4c:52:e6:d9:
  179. 99:5f:87:4b:26:b3:d8:ce:73:78:f9:ab:e1:eb:94:
  180. e3:ad:93:a3:b2:38:95:59:97:5e:b5:57:2b:7b:58:
  181. 3d:b3:38:47:90:ef:cb:e7:0c:b2:3c:f3:8c:5d:85:
  182. 5f:c4:02:f8:a4:93:ba:f2:dc:8c:9d:25:4b:1a:19:
  183. e7:e0:65:67:96:e8:cb:70:15:f6:20:37:77:09:19:
  184. 46:61:46:5e:c0:b3:04:50:b2:f8:89:78:70:0d:e8:
  185. 4a:86:e5:d3:fe:d4:2a:cb:9c:be:26:cb:32:71:44:
  186. 47:f8:8a:15:fd:61:ea:66:e2:0d:68:03:07:64:a9:
  187. 21:41:7a:c2:80:74:d9:af:93:0f:09:18:33:41:12:
  188. 5b:6e:79:84:75:91:5e:86:d8:75:f8:8a:55:ff:7f:
  189. 7d:da:3b:19:67:77:7c:10:ab:d8:6a:ad:51:6f:aa:
  190. 09:9d:5e:98:0e:b4:f2:dc:ce:5c:88:68:3f:08:8c:
  191. ad:aa:17:e3:c5:05:1f:56:33:ac:34:b9:14:86:cb:
  192. 01:cb:6e:ec:37:27:2f:3f:12:8c:2f:76:ba:e2:8c:
  193. d8:83
  194. Exponent: 65537 (0x10001)
  195. X509v3 extensions:
  196. X509v3 Basic Constraints:
  197. CA:FALSE
  198. Netscape Comment:
  199. Easy-RSA Generated Certificate
  200. X509v3 Subject Key Identifier:
  201. 4B:7F:3A:3D:F9:DF:F5:68:9F:D8:77:0E:95:C3:07:3A:0F:86:BB:77
  202. X509v3 Authority Key Identifier:
  203. keyid:20:32:C6:56:71:1D:33:1F:42:B3:54:90:43:A2:A4:D3:82:9A:F5:2C
  204. DirName:/C=VN/ST=HCM/L=HoChiMinh/O=UIT/OU=Community/CN=UIT CA/name=server/emailAddress=cogiaphuc97@gmail.com
  205. serial:D1:D2:4C:FA:ED:C8:9D:12
  206.  
  207. X509v3 Extended Key Usage:
  208. TLS Web Client Authentication
  209. X509v3 Key Usage:
  210. Digital Signature
  211. X509v3 Subject Alternative Name:
  212. DNS:client1
  213. Signature Algorithm: sha256WithRSAEncryption
  214. 61:bb:e0:07:08:67:77:ba:2c:59:59:f7:f8:0f:9c:65:90:6d:
  215. b5:6e:c3:13:ce:ca:87:aa:a3:ae:71:86:9a:6c:10:25:d0:8e:
  216. e3:c8:28:c5:49:d1:e9:43:5f:f7:1c:d9:75:5c:03:b3:4e:34:
  217. 96:a0:5d:ce:f6:0b:17:77:76:26:3a:b6:73:a5:58:c0:63:e2:
  218. 39:a6:61:fe:bc:f7:9e:33:c7:6e:53:ca:d1:8e:8d:66:df:c0:
  219. 00:5f:8d:80:41:e0:7d:ac:3b:6d:62:0c:01:38:45:ca:de:41:
  220. eb:9e:54:33:58:67:31:2d:cd:02:e2:43:55:9f:cd:4f:9e:80:
  221. 7b:90:d9:76:8c:51:38:d3:eb:b6:ff:f3:b9:2d:b2:4e:3d:59:
  222. e3:66:29:1d:a2:13:51:a1:ac:da:ee:3a:fa:b5:5e:62:55:13:
  223. 26:61:11:1f:59:0f:d0:ea:63:25:78:27:01:a7:71:e8:4c:e2:
  224. db:5b:5d:89:6e:46:9e:c2:68:15:83:df:fa:f9:1c:aa:77:e1:
  225. d6:31:47:8d:46:c2:9b:7e:c0:be:72:1b:3d:56:ce:62:0b:71:
  226. c0:c1:ee:30:dc:d4:02:c1:15:4b:35:2f:90:d5:a5:f3:4a:7d:
  227. c7:f3:e4:69:40:c8:e2:d4:c0:25:7f:cd:e6:a5:d7:db:40:7e:
  228. b6:52:0b:73
  229. -----BEGIN CERTIFICATE-----
  230. MIIFFjCCA/6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADCBmTELMAkGA1UEBhMCVk4x
  231. DDAKBgNVBAgTA0hDTTESMBAGA1UEBxMJSG9DaGlNaW5oMQwwCgYDVQQKEwNVSVQx
  232. EjAQBgNVBAsTCUNvbW11bml0eTEPMA0GA1UEAxMGVUlUIENBMQ8wDQYDVQQpEwZz
  233. ZXJ2ZXIxJDAiBgkqhkiG9w0BCQEWFWNvZ2lhcGh1Yzk3QGdtYWlsLmNvbTAeFw0x
  234. OTAzMjMwMTMxMzFaFw0yOTAzMjAwMTMxMzFaMIGaMQswCQYDVQQGEwJWTjEMMAoG
  235. A1UECBMDSENNMRIwEAYDVQQHEwlIb0NoaU1pbmgxDDAKBgNVBAoTA1VJVDESMBAG
  236. A1UECxMJQ29tbXVuaXR5MRAwDgYDVQQDEwdjbGllbnQxMQ8wDQYDVQQpEwZzZXJ2
  237. ZXIxJDAiBgkqhkiG9w0BCQEWFWNvZ2lhcGh1Yzk3QGdtYWlsLmNvbTCCASIwDQYJ
  238. KoZIhvcNAQEBBQADggEPADCCAQoCggEBALNRTZMJTkwC2HXQw9sQYccNJB+U+ApI
  239. koh2VOkfyX3KjjcNFhvIJChMUubZmV+HSyaz2M5zePmr4euU462To7I4lVmXXrVX
  240. K3tYPbM4R5Dvy+cMsjzzjF2FX8QC+KSTuvLcjJ0lSxoZ5+BlZ5boy3AV9iA3dwkZ
  241. RmFGXsCzBFCy+Il4cA3oSobl0/7UKsucvibLMnFER/iKFf1h6mbiDWgDB2SpIUF6
  242. woB02a+TDwkYM0ESW255hHWRXobYdfiKVf9/fdo7GWd3fBCr2GqtUW+qCZ1emA60
  243. 8tzOXIhoPwiMraoX48UFH1YzrDS5FIbLActu7DcnLz8SjC92uuKM2IMCAwEAAaOC
  244. AWQwggFgMAkGA1UdEwQCMAAwLQYJYIZIAYb4QgENBCAWHkVhc3ktUlNBIEdlbmVy
  245. YXRlZCBDZXJ0aWZpY2F0ZTAdBgNVHQ4EFgQUS386Pfnf9Wif2HcOlcMHOg+Gu3cw
  246. gc4GA1UdIwSBxjCBw4AUIDLGVnEdMx9Cs1SQQ6Kk04Ka9SyhgZ+kgZwwgZkxCzAJ
  247. BgNVBAYTAlZOMQwwCgYDVQQIEwNIQ00xEjAQBgNVBAcTCUhvQ2hpTWluaDEMMAoG
  248. A1UEChMDVUlUMRIwEAYDVQQLEwlDb21tdW5pdHkxDzANBgNVBAMTBlVJVCBDQTEP
  249. MA0GA1UEKRMGc2VydmVyMSQwIgYJKoZIhvcNAQkBFhVjb2dpYXBodWM5N0BnbWFp
  250. bC5jb22CCQDR0kz67cidEjATBgNVHSUEDDAKBggrBgEFBQcDAjALBgNVHQ8EBAMC
  251. B4AwEgYDVR0RBAswCYIHY2xpZW50MTANBgkqhkiG9w0BAQsFAAOCAQEAYbvgBwhn
  252. d7osWVn3+A+cZZBttW7DE87Kh6qjrnGGmmwQJdCO48goxUnR6UNf9xzZdVwDs040
  253. lqBdzvYLF3d2Jjq2c6VYwGPiOaZh/rz3njPHblPK0Y6NZt/AAF+NgEHgfaw7bWIM
  254. AThFyt5B655UM1hnMS3NAuJDVZ/NT56Ae5DZdoxRONPrtv/zuS2yTj1Z42YpHaIT
  255. UaGs2u46+rVeYlUTJmERH1kP0OpjJXgnAadx6Ezi21tdiW5GnsJoFYPf+vkcqnfh
  256. 1jFHjUbCm37AvnIbPVbOYgtxwMHuMNzUAsEVSzUvkNWl80p9x/PkaUDI4tTAJX/N
  257. 5qXX20B+tlILcw==
  258. -----END CERTIFICATE-----
  259. </cert>
  260. <key>
  261. -----BEGIN PRIVATE KEY-----
  262. MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQCzUU2TCU5MAth1
  263. 0MPbEGHHDSQflPgKSJKIdlTpH8l9yo43DRYbyCQoTFLm2Zlfh0sms9jOc3j5q+Hr
  264. lOOtk6OyOJVZl161Vyt7WD2zOEeQ78vnDLI884xdhV/EAvikk7ry3IydJUsaGefg
  265. ZWeW6MtwFfYgN3cJGUZhRl7AswRQsviJeHAN6EqG5dP+1CrLnL4myzJxREf4ihX9
  266. Yepm4g1oAwdkqSFBesKAdNmvkw8JGDNBEltueYR1kV6G2HX4ilX/f33aOxlnd3wQ
  267. q9hqrVFvqgmdXpgOtPLczlyIaD8IjK2qF+PFBR9WM6w0uRSGywHLbuw3Jy8/Eowv
  268. drrijNiDAgMBAAECggEBAIlDaEVwry3CU95D01kCfkZ3ybofN4vvp7OsGS1m9r9C
  269. 6YA8lTrpBryOSDuMQDp+/0j+DK1keSttpn/GNk6toHYRmEm/dHEN7Cv8DSb+otHQ
  270. rd4MuverWzxPl1IdECYzK70ylLTKUmYFhJkiJpy/UNNZDFH3AzjEzzoxOuD5aAk4
  271. 3rRiXRME+FvFuzSSU8B51v6l0vJlzKqYf4TR/Q6G6slYePyWitVgiWIe2IU7pspk
  272. tEg35+mP8pFHDdtFi47pyshBK/TKu7ypXvbXmIffqW2gdMYya09X9r61iNsIsSPd
  273. xDItEoU8//zUPE+Cr9bPRBiS7Itlwexa9oSg/TejY8ECgYEA2fMyMo5iU/0oaIdF
  274. 9VPZzON4tIY5AN60P72GueWcepRuTyukk7sCyTW6m6u7FyFEfmrdTULmKeXgPHLu
  275. FHwrXN0ZSol/0uSUBWmxQNpSONzhrtTii9CB4sRBMjFzXdCMZICKq78CxCJ9k1MT
  276. TEGMuMwYMSeu6KABPBM7nj+3wyECgYEA0p+D9pcyGBIlhnsDORzB6MOZ7NRrOSMg
  277. f2fcXSCwMW9rNeH5VZo1yNnuO6WXVY9VhvoUf3F4tJjBt4/ntnvBwK4dAKiTTm8l
  278. BzZ7ObfXbt40dW1tKj6UrpXOoijG8SrxcOOdP6/AU/ToeQ2UNgcFvWGgcTquHEQo
  279. tzpQupByyyMCgYEAh1XbSsddSVf+2oF9MGxD51Uso7Rg+yhO9vGCEjcA5qD6qlCo
  280. Xk+W2Ehzuqx1fVRcCr/i8VHkSAoFJqQbMD82UfC8/qrI47SqMX5C4clvmv2VahGp
  281. JzZvINfKwBcy0wNn2hRzh1gRqKbeIThJ2GUvs6SQNR22H58ThTFQKODaA+ECgYBF
  282. sPxkOpEbv91kyw0895P95cLnxz2XUVUucvpKYkeKg/hwgs4Skg0b4WhfmiIh8GR3
  283. XgYsSSqMb0Mh7t7X1ck9bR8xmZXsTQBui4tohLkm+SVYeZW2dbCSuAUASQfSwsfS
  284. 962PZiL4ZMALVf/lhJtUl5oT/TuhJLhoMEaIBMXHCwKBgQDCUKUoQ1Ry2tIrFEE9
  285. M8JFcQGI7Rb0YRqfv7FSuQ5k9dK1WN0AmHaz5C/t9HE9576h2K1tBGuxHimcUEIn
  286. PjBp+INv88pdP/p7O7UPWsNe+eRwaFwp0Txv2TkwX714FAWS+F2DCF0hJajntRVh
  287. aAUuFpXQn7mrx6Th99ES4btPuw==
  288. -----END PRIVATE KEY-----
  289. </key>
  290. <tls-auth>
  291. #
  292. # 2048 bit OpenVPN static key
  293. #
  294. -----BEGIN OpenVPN Static key V1-----
  295. 500d594070ae1abcf4421d9c0662bb2a
  296. 9ab72271a7907ae4d1ee4f13e6eb6262
  297. 62f1bbe3518d63c8b810f668def28a11
  298. 89427996195939f6391b62ba57f71ce8
  299. 95365181b8c8d396fae0b06596c38f96
  300. 24ffdfc7f2509603a4f196cc4d19c1f6
  301. ff9f5d2a79e2bcac2fb7ed8090b3f7c3
  302. 8465cb9f195c901ba7114f142c2a1ff6
  303. 6c19c85b58f9c2a174c2b5ed9d4760ee
  304. 844217ce3a5c8d9648c02a85be3c5650
  305. f9a92ee220b69d82e0728521bf7fd02b
  306. 50791f8256bed121c5fda307813dbe07
  307. fbe7a6934dd6f4bd163b4858568e089f
  308. 29beded501f133d265a70aa56a5da1b7
  309. dfe4b2d6d18e26c0d09a5db006af55a4
  310. b1bd161f506e8527603f39c7ce230a4c
  311. -----END OpenVPN Static key V1-----
  312. </tls-auth>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!