View difference between Paste ID: <a href="/KPKrXe35">KPKrXe35</a> and <a href="/Zz6KfyEu">Zz6KfyEu</a>

client.conf
1	-	client.conf
1	+
2
3	-	# Custom user conf file for OpenVPN client
3	+
4
5		# Custom user conf file for OpenVPN server
6	-	### If your server certificates with the nsCertType field set to "server"
6	+
7	-	ns-cert-type server
7	+
8		### Authenticate packets with HMAC using message digest algorithm
9		;auth SHA1 # SHA1 160 bit (default)
10	-	nice 0
10	+	auth SHA256 # SHA256 256 bit
11		;auth SHA512 # SHA512 512 bit
12
13	-	verb 0
13	+
14	-	mute 10
14	+	;cipher BF-CBC # Blowfish 128 bit (default)
15		cipher AES-128-CBC # AES 128 bit
16		;cipher AES-256-CBC # AES 256 bit
17		;cipher DES-EDE3-CBC # Triple-DES 192 bit
18	-	=================
18	+
19
20		### Enable LZO compression on the VPN link
21		comp-lzo
22
23		### Max clients limit
24		max-clients 10
25
26		### Internally route client-to-client traffic
27	-	auth SHA1 # SHA1 160 bit (default)
27	+	;client-to-client
28	-	;auth SHA256 # SHA256 256 bit
28	+
29		### Allow clients with duplicate "Common Name"
30		;duplicate-cn
31
32	-	cipher BF-CBC # Blowfish 128 bit (default)
32	+
33	-	;cipher AES-128-CBC # AES 128 bit
33	+
34
35		### Process priority level (0..19)
36		;nice 3
37
38		### Syslog verbose level
39		verb 4
40		mute 20
41
42		==============================
43
44		OVPN file
45	-	client-to-client
45	+	все что ниже вставить в client.ovpn
46		==============================
47
48		client
49
50
51		dev tap
52		#dev tun
53
54	-	nice 3
54	+
55		# from the Network Connections panel
56		# if you have more than one. On XP SP2,
57	-	verb 0
57	+
58	-	mute 10
58	+
59		# dev-node TAP
60
61		# Are we connecting to a TCP or
62		# UDP server? Use the same setting as
63		# on the server.
64	-	##############################################
64	+
65	-	# Sample client-side OpenVPN 2.0 config file #
65	+	;proto udp
66	-	# for connecting to multi-client server. #
66	+
67	-	# #
67	+
68	-	# This configuration can be used by multiple #
68	+
69	-	# clients, however each client should have #
69	+
70	-	# its own cert and key files. #
70	+
71	-	# #
71	+
72	-	# On Windows, you might want to rename this #
72	+
73	-	# file so it has a .ovpn extension #
73	+
74	-	##############################################
74	+
75		# try hosts in the order specified.
76	-	# Specify that we are a client and that we
76	+
77	-	# will be pulling certain config file directives
77	+
78	-	# from the server.
78	+
79		# host name of the OpenVPN server. Very useful
80		# on machines which are not permanently connected
81	-	# Use the same setting as you are using on
81	+
82	-	# the server.
82	+
83	-	# On most systems, the VPN will not function
83	+
84	-	# unless you partially or fully disable
84	+
85	-	# the firewall for the TUN/TAP interface.
85	+
86		nobind
87
88		# Downgrade privileges after initialization (non-Windows only)
89		;user nobody
90		;group nobody
91
92		# Try to preserve some state across restarts.
93		persist-key
94	-	dev-node TAP
94	+
95
96		# Wireless networks often produce a lot
97		# of duplicate packets. Set this flag
98		# to silence duplicate packet warnings.
99		;mute-replay-warnings
100	-	#proto udp
100	+
101		auth SHA256
102		remote-cert-tls server
103		cipher AES-128-CBC
104		comp-lzo
105		verb 3
106		mute 20
107
108		key-direction 1
109
110		#### сюда (между <ca> и </ca>) вставляешь содержимое файла ca.crt ####
111		<ca>
112
113		</ca>
114
115		##### сюда (между <cert> и </cert>) вставляешь содержимое client.crt ####
116		<cert>
117
118		</cert>
119
120		#### сюда (между <key> и </key>) содержимое client.key ####
121		<key>
122
123		</key>
124
125		#### сюда (между <tls-auth> и </tls-auth>) ta.key ####
126
127		<tls-auth>
128
129		</tls-auth>