Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- dev tun
- proto udp
- port 1194
- push "redirect-gateway def1"
- push "redirect-gateway local def1"
- sndbuf 393216
- rcvbuf 393216
- push "sndbuf 393216"
- push "rcvbuf 393216"
- ca /etc/openvpn/easy-rsa/pki/ca.crt
- cert /etc/openvpn/easy-rsa/pki/issued/server.crt
- key /etc/openvpn/easy-rsa/pki/private/server.key
- dh /etc/openvpn/easy-rsa/pki/dh2048.pem
- topology subnet
- server 10.8.0.0 255.255.255.0
- # server and remote endpoints
- ifconfig 10.8.0.1 10.8.0.2
- # Add route to Client routing table for the OpenVPN Server
- push "route 10.8.0.1 255.255.255.255"
- # Add route to Client routing table for the OPenVPN Subnet
- push "route 10.8.0.0 255.255.255.0"
- # your local subnet
- push "route 192.168.1.0 255.255.255.0"
- # Set your primary domain name server address for clients
- push "dhcp-option DNS 8.8.8.8"
- push "dhcp-option DNS 8.8.4.4"
- # Override the Client default gateway by using 0.0.0.0/1 and
- # 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of
- client-to-client
- duplicate-cn
- keepalive 10 120
- tls-version-min 1.2
- tls-auth /etc/openvpn/easy-rsa/pki/ta.key 0
- cipher AES-256-CBC
- auth SHA256
- comp-lzo
- user nobody
- group nogroup
- persist-key
- persist-tun
- crl-verify /etc/openvpn/crl.pem
- status /var/log/openvpn-status.log 20
- status-version 3
- log /var/log/openvpn.log
- verb 1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
