Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- port 1194
- proto udp
- dev tun
- ca ca.crt
- cert server.crt
- key server.key # This file should be kept secret
- dh dh2048.pem
- server 10.8.0.0 255.255.255.0
- ifconfig-pool-persist ipp.txt
- push "redirect-gateway def1 bypass-dhcp"
- push "dhcp-option DNS xxx.xxx.xxx.xxx" #My server's public IP
- ;push "dhcp-option DNS 208.67.220.220"
- keepalive 10 120
- tls-auth ta.key 0 # This file is secret
- key-direction 0
- cipher AES-128-CBC # AES
- auth SHA256
- comp-lzo
- user nobody
- group nogroup
- persist-key
- persist-tun
- status openvpn-status.log
- verb 3
- *nat
- :POSTROUTING ACCEPT [0:0]
- -A POSTROUTING -s 10.8.0.0/8 -o eth0 -j MASQUERADE
- COMMIT
- #Rest of file left out for brevity
- client
- dev tun
- proto udp
- remote xxx.xxx.xxx.xxx 1194 #My server's public IP
- resolv-retry infinite
- nobind
- user nobody
- group nogroup
- persist-key
- persist-tun
- cipher AES-128-CBC
- auth SHA256
- key-direction 1
- remote-cert-tls server
- comp-lzo
- verb 3
- <ca>
- -----BEGIN CERTIFICATE-----
- # Certificate string exists here
- -----END CERTIFICATE-----
- </ca>
- <cert>
- # Certificate data
- -----END CERTIFICATE-----
- </cert>
- <key>
- -----BEGIN PRIVATE KEY-----
- #Private key here
- -----END PRIVATE KEY-----
- </key>
- <tls-auth>
- -----BEGIN OpenVPN Static key V1-----
- #OpenVPN static key
- -----END OpenVPN Static key V1-----
- </tls-auth>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
