Openvpn on Debian

From lippmann wiki
Revision as of 20:18, 20 March 2018 by Maarten (talk | contribs) (Created page with "server example with routing: <pre>port 1194 proto udp dev tun ca server/ca.crt cert server/server.crt key server/server.key # This file should be kept secret dh server/dh20...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

server example with routing: 

port 1194
proto udp
dev tun

ca server/ca.crt
cert server/server.crt
key server/server.key  # This file should be kept secret
dh server/dh2048.pem


server 10.8.0.0  255.255.255.0

#push "redirect-gateway def1 bypass-dhcp"

push "route 192.168.0.0  255.255.255.0"
push "route 192.168.1.0  255.255.255.0"
push "route 192.168.2.0  255.255.255.0"
push "route 192.168.3.0  255.255.255.0"
push "route 192.168.4.0  255.255.255.0"
push "route 192.168.5.0  255.255.255.0"

push "dhcp-option DNS 192.168.2.254"

ifconfig-pool-persist ipp.txt

keepalive 10 120

tls-auth server/ta.key 0 # This file is secret
key-direction 0

cipher AES-256-CBC
auth SHA256

compress lz4-v2
push "compress lz4-v2"

max-clients 100

user nobody
group nogroup

persist-key
persist-tun

status openvpn-status.log

verb 3

explicit-exit-notify 1
Retrieved from "https://lippmann.us/wiki/index.php?title=Openvpn_on_Debian&oldid=173"