API tools faq
paste
alect

ocserv.conf

alect
Dec 19th, 2020 (edited)
783
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
C 12.18 KB | None | 0 0
raw download clone embed print report
  1. auth = "plain[/etc/ocserv/ocpasswd]"
  2. enable-auth = "certificate"
  3. #max-clients = 0
  4. #max-same-clients= 0
  5. tcp-port = 8443
  6. udp-port = 8443
  7. keepalive = 32400
  8. dpd = 90
  9. #switch-to-tcp-timeout = 25
  10. mobile-dpd = 1800
  11. try-mtu-discovery = true
  12. server-cert = /etc/ocserv/full_chain.pem
  13. server-key = /etc/ocserv/private.key
  14. #dh-params = /etc/ocserv/dh.pem
  15. ca-cert =/etc/ocserv/vpn.pem
  16. cert-user-oid = 2.5.4.3
  17. #crl = /etc/ocserv/crl.pem
  18.  
  19. tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-VERS-SSL3.0"
  20. auth-timeout = 60
  21. #mobile-idle-timeout =
  22. deny-roaming = false
  23. cookie-timeout = 86400000
  24. rekey-time = 86400000
  25. rekey-method = ssl
  26. use-utmp = true
  27. use-occtl= true
  28. #user-profile = /etc/ocserv/profile.xml
  29. pid-file = /var/run/ocserv.pid
  30. socket-file = /var/run/ocserv-socket
  31. run-as-user = nobody
  32. run-as-group = nogroup
  33. net-priority = 5
  34. device = vpns
  35. default-domain = jp.69cdn.com
  36. ipv4-network = 10.1.0.0/16
  37. ipv6-network = 2400:::/56
  38. ipv6-prefix = 64
  39. persistent-cookies = true
  40. dns = 8.8.8.8
  41. dns = 8.8.4.4
  42. max-ban-score = 0
  43. ping-leases = false
  44. output-buffer = 23000
  45. compression = true
  46. no-compress-limit = 256
  47. predictable-ips = true
  48. #route-add-cmd = "ip route add %R dev %D"
  49. #route-del-cmd = "ip route delete %R dev %D"
  50. cisco-client-compat = true
  51. #custom-header = "X-DTLS-MTU: 1420"
  52. #custom-header = "X-CSTP-MTU: 1450"
  53.  
  54.  
  55. custom-header = "X-CSTP-Split-Include: 1.0.0.0/255.0.0.0"
  56. custom-header = "X-CSTP-Split-Include: 2.0.0.0/254.0.0.0"
  57. custom-header = "X-CSTP-Split-Include: 4.0.0.0/252.0.0.0"
  58. custom-header = "X-CSTP-Split-Include: 8.0.0.0/254.0.0.0"
  59. custom-header = "X-CSTP-Split-Include: 11.0.0.0/255.0.0.0"
  60. custom-header = "X-CSTP-Split-Include: 12.0.0.0/252.0.0.0"
  61. custom-header = "X-CSTP-Split-Include: 16.0.0.0/240.0.0.0"
  62. custom-header = "X-CSTP-Split-Include: 32.0.0.0/252.0.0.0"
  63. custom-header = "X-CSTP-Split-Include: 36.8.0.0/255.248.0.0"
  64. custom-header = "X-CSTP-Split-Include: 36.52.0.0/255.252.0.0"
  65. custom-header = "X-CSTP-Split-Include: 36.224.0.0/255.240.0.0"
  66. custom-header = "X-CSTP-Split-Include: 36.240.0.0/255.248.0.0"
  67. custom-header = "X-CSTP-Split-Include: 37.0.0.0/255.0.0.0"
  68. custom-header = "X-CSTP-Split-Include: 38.0.0.0/254.0.0.0"
  69. custom-header = "X-CSTP-Split-Include: 40.0.0.0/254.0.0.0"
  70. custom-header = "X-CSTP-Split-Include: 42.2.0.0/255.254.0.0"
  71. custom-header = "X-CSTP-Split-Include: 42.98.0.0/255.254.0.0"
  72. custom-header = "X-CSTP-Split-Include: 42.124.0.0/255.252.0.0"
  73. custom-header = "X-CSTP-Split-Include: 42.144.0.0/255.248.0.0"
  74. custom-header = "X-CSTP-Split-Include: 42.200.0.0/255.255.0.0"
  75. custom-header = "X-CSTP-Split-Include: 43.0.0.0/255.0.0.0"
  76. custom-header = "X-CSTP-Split-Include: 44.0.0.0/252.0.0.0"
  77. custom-header = "X-CSTP-Split-Include: 48.0.0.0/255.0.0.0"
  78. custom-header = "X-CSTP-Split-Include: 49.96.0.0/255.240.0.0"
  79. custom-header = "X-CSTP-Split-Include: 49.128.0.0/255.128.0.0"
  80. custom-header = "X-CSTP-Split-Include: 50.0.0.0/254.0.0.0"
  81. custom-header = "X-CSTP-Split-Include: 52.0.0.0/252.0.0.0"
  82. custom-header = "X-CSTP-Split-Include: 56.0.0.0/254.0.0.0"
  83. custom-header = "X-CSTP-Split-Include: 58.0.0.0/255.240.0.0"
  84. custom-header = "X-CSTP-Split-Include: 58.64.0.0/255.254.0.0"
  85. custom-header = "X-CSTP-Split-Include: 58.80.0.0/255.240.0.0"
  86. custom-header = "X-CSTP-Split-Include: 58.96.0.0/255.224.0.0"
  87. custom-header = "X-CSTP-Split-Include: 58.128.0.0/255.192.0.0"
  88. custom-header = "X-CSTP-Split-Include: 59.0.0.0/255.224.0.0"
  89. custom-header = "X-CSTP-Split-Include: 59.80.0.0/255.240.0.0"
  90. custom-header = "X-CSTP-Split-Include: 59.96.0.0/255.224.0.0"
  91. custom-header = "X-CSTP-Split-Include: 59.128.0.0/255.128.0.0"
  92. custom-header = "X-CSTP-Split-Include: 60.32.0.0/255.224.0.0"
  93. custom-header = "X-CSTP-Split-Include: 60.64.0.0/255.192.0.0"
  94. custom-header = "X-CSTP-Split-Include: 60.128.0.0/255.224.0.0"
  95. custom-header = "X-CSTP-Split-Include: 60.196.0.0/255.254.0.0"
  96. custom-header = "X-CSTP-Split-Include: 60.224.0.0/255.224.0.0"
  97. custom-header = "X-CSTP-Split-Include: 61.0.0.0/255.224.0.0"
  98. custom-header = "X-CSTP-Split-Include: 61.56.0.0/255.248.0.0"
  99. custom-header = "X-CSTP-Split-Include: 61.64.0.0/255.192.0.0"
  100. custom-header = "X-CSTP-Split-Include: 61.192.0.0/255.224.0.0"
  101. custom-header = "X-CSTP-Split-Include: 61.238.0.0/255.254.0.0"
  102. custom-header = "X-CSTP-Split-Include: 61.244.0.0/255.252.0.0"
  103. custom-header = "X-CSTP-Split-Include: 62.0.0.0/254.0.0.0"
  104. custom-header = "X-CSTP-Split-Include: 64.0.0.0/224.0.0.0"
  105. custom-header = "X-CSTP-Split-Include: 96.0.0.0/252.0.0.0"
  106. custom-header = "X-CSTP-Split-Include: 100.0.0.0/255.0.0.0"
  107. custom-header = "X-CSTP-Split-Include: 101.136.0.0/255.248.0.0"
  108. custom-header = "X-CSTP-Split-Include: 102.0.0.0/254.0.0.0"
  109. custom-header = "X-CSTP-Split-Include: 104.0.0.0/254.0.0.0"
  110. custom-header = "X-CSTP-Split-Include: 106.10.0.0/255.255.0.0"
  111. custom-header = "X-CSTP-Split-Include: 106.64.0.0/255.248.0.0"
  112. custom-header = "X-CSTP-Split-Include: 106.128.0.0/255.192.0.0"
  113. custom-header = "X-CSTP-Split-Include: 107.0.0.0/255.0.0.0"
  114. custom-header = "X-CSTP-Split-Include: 108.0.0.0/254.0.0.0"
  115. custom-header = "X-CSTP-Split-Include: 110.0.0.0/255.192.0.0"
  116. custom-header = "X-CSTP-Split-Include: 110.92.0.0/255.252.0.0"
  117. custom-header = "X-CSTP-Split-Include: 110.128.0.0/255.224.0.0"
  118. custom-header = "X-CSTP-Split-Include: 110.160.0.0/255.240.0.0"
  119. custom-header = "X-CSTP-Split-Include: 110.232.0.0/255.248.0.0"
  120. custom-header = "X-CSTP-Split-Include: 111.64.0.0/255.248.0.0"
  121. custom-header = "X-CSTP-Split-Include: 111.86.0.0/255.254.0.0"
  122. custom-header = "X-CSTP-Split-Include: 111.88.0.0/255.248.0.0"
  123. custom-header = "X-CSTP-Split-Include: 111.96.0.0/255.240.0.0"
  124. custom-header = "X-CSTP-Split-Include: 111.118.0.0/255.254.0.0"
  125. custom-header = "X-CSTP-Split-Include: 111.216.0.0/255.248.0.0"
  126. custom-header = "X-CSTP-Split-Include: 111.224.0.0/255.224.0.0"
  127. custom-header = "X-CSTP-Split-Include: 112.0.0.0/255.255.0.0"
  128. custom-header = "X-CSTP-Split-Include: 113.28.0.0/255.252.0.0"
  129. custom-header = "X-CSTP-Split-Include: 113.144.0.0/255.240.0.0"
  130. custom-header = "X-CSTP-Split-Include: 113.196.0.0/255.252.0.0"
  131. custom-header = "X-CSTP-Split-Include: 113.252.0.0/255.252.0.0"
  132. custom-header = "X-CSTP-Split-Include: 114.0.0.0/255.224.0.0"
  133. custom-header = "X-CSTP-Split-Include: 114.16.0.0/255.240.0.0"
  134. custom-header = "X-CSTP-Split-Include: 114.32.0.0/255.240.0.0"
  135. custom-header = "X-CSTP-Split-Include: 114.144.0.0/255.240.0.0"
  136. custom-header = "X-CSTP-Split-Include: 114.160.0.0/255.224.0.0"
  137. custom-header = "X-CSTP-Split-Include: 116.48.0.0/255.252.0.0"
  138. custom-header = "X-CSTP-Split-Include: 117.16.0.0/255.252.0.0"
  139. custom-header = "X-CSTP-Split-Include: 118.128.0.0/255.240.0.0"
  140. custom-header = "X-CSTP-Split-Include: 118.148.0.0/255.252.0.0"
  141. custom-header = "X-CSTP-Split-Include: 118.152.0.0/255.248.0.0"
  142. custom-header = "X-CSTP-Split-Include: 118.214.0.0/255.254.0.0"
  143. custom-header = "X-CSTP-Split-Include: 119.8.0.0/255.248.0.0"
  144. custom-header = "X-CSTP-Split-Include: 119.80.0.0/255.252.0.0"
  145. custom-header = "X-CSTP-Split-Include: 119.104.0.0/255.252.0.0"
  146. custom-header = "X-CSTP-Split-Include: 119.160.0.0/255.240.0.0"
  147. custom-header = "X-CSTP-Split-Include: 119.236.0.0/255.252.0.0"
  148. custom-header = "X-CSTP-Split-Include: 119.240.0.0/255.248.0.0"
  149. custom-header = "X-CSTP-Split-Include: 121.96.0.0/255.224.0.0"
  150. custom-header = "X-CSTP-Split-Include: 121.128.0.0/255.192.0.0"
  151. custom-header = "X-CSTP-Split-Include: 121.200.0.0/255.255.0.0"
  152. custom-header = "X-CSTP-Split-Include: 122.248.0.0/255.248.0.0"
  153. custom-header = "X-CSTP-Split-Include: 122.252.0.0/255.255.0.0"
  154. custom-header = "X-CSTP-Split-Include: 123.0.0.0/255.252.0.0"
  155. custom-header = "X-CSTP-Split-Include: 123.192.0.0/255.192.0.0"
  156. custom-header = "X-CSTP-Split-Include: 124.0.0.0/255.248.0.0"
  157. custom-header = "X-CSTP-Split-Include: 124.96.0.0/255.240.0.0"
  158. custom-header = "X-CSTP-Split-Include: 124.144.0.0/255.240.0.0"
  159. custom-header = "X-CSTP-Split-Include: 125.0.0.0/255.224.0.0"
  160. custom-header = "X-CSTP-Split-Include: 125.48.0.0/255.240.0.0"
  161. custom-header = "X-CSTP-Split-Include: 125.128.0.0/255.192.0.0"
  162. custom-header = "X-CSTP-Split-Include: 125.192.0.0/255.240.0.0"
  163. custom-header = "X-CSTP-Split-Include: 125.224.0.0/255.224.0.0"
  164. custom-header = "X-CSTP-Split-Include: 126.0.0.0/255.0.0.0"
  165. custom-header = "X-CSTP-Split-Include: 128.0.0.0/248.0.0.0"
  166. custom-header = "X-CSTP-Split-Include: 136.0.0.0/252.0.0.0"
  167. custom-header = "X-CSTP-Split-Include: 140.0.0.0/255.128.0.0"
  168. custom-header = "X-CSTP-Split-Include: 140.128.0.0/255.192.0.0"
  169. custom-header = "X-CSTP-Split-Include: 140.192.0.0/255.248.0.0"
  170. custom-header = "X-CSTP-Split-Include: 141.0.0.0/255.0.0.0"
  171. custom-header = "X-CSTP-Split-Include: 142.0.0.0/254.0.0.0"
  172. custom-header = "X-CSTP-Split-Include: 144.0.0.0/240.0.0.0"
  173. custom-header = "X-CSTP-Split-Include: 160.0.0.0/254.0.0.0"
  174. custom-header = "X-CSTP-Split-Include: 162.0.0.0/255.0.0.0"
  175. custom-header = "X-CSTP-Split-Include: 163.0.0.0/255.128.0.0"
  176. custom-header = "X-CSTP-Split-Include: 163.128.0.0/255.224.0.0"
  177. custom-header = "X-CSTP-Split-Include: 163.160.0.0/255.240.0.0"
  178. custom-header = "X-CSTP-Split-Include: 163.192.0.0/255.192.0.0"
  179. custom-header = "X-CSTP-Split-Include: 164.0.0.0/252.0.0.0"
  180. custom-header = "X-CSTP-Split-Include: 168.0.0.0/254.0.0.0"
  181. custom-header = "X-CSTP-Split-Include: 170.0.0.0/255.0.0.0"
  182. custom-header = "X-CSTP-Split-Include: 171.16.0.0/255.240.0.0"
  183. custom-header = "X-CSTP-Split-Include: 171.224.0.0/255.224.0.0"
  184. custom-header = "X-CSTP-Split-Include: 172.0.0.0/252.0.0.0"
  185. custom-header = "X-CSTP-Split-Include: 176.0.0.0/252.0.0.0"
  186. custom-header = "X-CSTP-Split-Include: 180.0.0.0/255.192.0.0"
  187. custom-header = "X-CSTP-Split-Include: 180.192.0.0/255.192.0.0"
  188. custom-header = "X-CSTP-Split-Include: 181.0.0.0/255.0.0.0"
  189. custom-header = "X-CSTP-Split-Include: 182.0.0.0/255.240.0.0"
  190. custom-header = "X-CSTP-Split-Include: 182.48.0.0/255.240.0.0"
  191. custom-header = "X-CSTP-Split-Include: 182.152.0.0/255.248.0.0"
  192. custom-header = "X-CSTP-Split-Include: 182.248.0.0/255.252.0.0"
  193. custom-header = "X-CSTP-Split-Include: 183.72.0.0/255.248.0.0"
  194. custom-header = "X-CSTP-Split-Include: 183.96.0.0/255.224.0.0"
  195. custom-header = "X-CSTP-Split-Include: 183.176.0.0/255.248.0.0"
  196. custom-header = "X-CSTP-Split-Include: 184.0.0.0/248.0.0.0"
  197. custom-header = "X-CSTP-Split-Include: 192.0.0.0/248.0.0.0"
  198. custom-header = "X-CSTP-Split-Include: 200.0.0.0/254.0.0.0"
  199. custom-header = "X-CSTP-Split-Include: 202.0.0.0/255.192.0.0"
  200. custom-header = "X-CSTP-Split-Include: 202.64.0.0/255.224.0.0"
  201. custom-header = "X-CSTP-Split-Include: 202.120.0.0/255.248.0.0"
  202. custom-header = "X-CSTP-Split-Include: 202.128.0.0/255.128.0.0"
  203. custom-header = "X-CSTP-Split-Include: 203.0.0.0/255.0.0.0"
  204. custom-header = "X-CSTP-Split-Include: 204.0.0.0/252.0.0.0"
  205. custom-header = "X-CSTP-Split-Include: 208.0.0.0/254.0.0.0"
  206. custom-header = "X-CSTP-Split-Include: 210.56.0.0/255.248.0.0"
  207. custom-header = "X-CSTP-Split-Include: 210.64.0.0/255.248.0.0"
  208. custom-header = "X-CSTP-Split-Include: 210.128.0.0/255.128.0.0"
  209. custom-header = "X-CSTP-Split-Include: 211.0.0.0/255.192.0.0"
  210. custom-header = "X-CSTP-Split-Include: 211.72.0.0/255.248.0.0"
  211. custom-header = "X-CSTP-Split-Include: 211.104.0.0/255.248.0.0"
  212. custom-header = "X-CSTP-Split-Include: 211.112.0.0/255.240.0.0"
  213. custom-header = "X-CSTP-Split-Include: 211.128.0.0/255.248.0.0"
  214. custom-header = "X-CSTP-Split-Include: 211.168.0.0/255.248.0.0"
  215. custom-header = "X-CSTP-Split-Include: 211.176.0.0/255.240.0.0"
  216. custom-header = "X-CSTP-Split-Include: 211.192.0.0/255.192.0.0"
  217. custom-header = "X-CSTP-Split-Include: 212.0.0.0/252.0.0.0"
  218. custom-header = "X-CSTP-Split-Include: 216.0.0.0/254.0.0.0"
  219. custom-header = "X-CSTP-Split-Include: 218.128.0.0/255.192.0.0"
  220. custom-header = "X-CSTP-Split-Include: 218.248.0.0/255.248.0.0"
  221. custom-header = "X-CSTP-Split-Include: 219.0.0.0/255.128.0.0"
  222. custom-header = "X-CSTP-Split-Include: 219.160.0.0/255.224.0.0"
  223. custom-header = "X-CSTP-Split-Include: 219.192.0.0/255.240.0.0"
  224. custom-header = "X-CSTP-Split-Include: 219.208.0.0/255.248.0.0"
  225. custom-header = "X-CSTP-Split-Include: 220.0.0.0/255.0.0.0"
  226. custom-header = "X-CSTP-Split-Include: 221.124.0.0/255.252.0.0"
  227. custom-header = "X-CSTP-Split-Include: 222.0.0.0/255.240.0.0"
  228. custom-header = "X-CSTP-Split-Include: 222.164.0.0/255.252.0.0"
  229. custom-header = "X-CSTP-Split-Include: 223.16.0.0/255.252.0.0"
  230. custom-header = "X-CSTP-Split-Include: 223.118.0.0/255.254.0.0"
  231.  
  232.  
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!