Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- auth = "plain[/etc/ocserv/ocpasswd]"
- enable-auth = "certificate"
- #max-clients = 0
- #max-same-clients= 0
- tcp-port = 8080
- #udp-port = 8080
- keepalive = 32400
- dpd = 90
- #switch-to-tcp-timeout = 25
- mobile-dpd = 1800
- try-mtu-discovery = true
- server-cert = /etc/ocserv/full_chain.pem
- server-key = /etc/ocserv/private.key
- #dh-params = /etc/ocserv/dh.pem
- ca-cert =/etc/ocserv/vpn.pem
- cert-user-oid = 2.5.4.3
- #crl = /etc/ocserv/crl.pem
- tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-VERS-SSL3.0"
- auth-timeout = 60
- #mobile-idle-timeout =
- deny-roaming = false
- cookie-timeout = 86400000
- rekey-time = 86400000
- rekey-method = ssl
- use-utmp = true
- use-occtl= true
- user-profile = /etc/ocserv/profile.xml
- pid-file = /var/run/ocserv.pid
- socket-file = /var/run/ocserv-socket
- run-as-user = nobody
- run-as-group = nobody
- net-priority = 5
- device = vpns
- default-domain = hk.mydomain.com
- ipv4-network = 10.1.0.0/16
- persistent-cookies = true
- dns = 8.8.8.8
- max-ban-score = 0
- ping-leases = false
- output-buffer = 23000
- compression = true
- no-compress-limit = 256
- predictable-ips = false
- #route-add-cmd = "ip route add %R dev %D"
- #route-del-cmd = "ip route delete %R dev %D"
- cisco-client-compat = true
- #custom-header = "X-DTLS-MTU: 1420"
- #custom-header = "X-CSTP-MTU: 1280"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
