Anonymous
public text v1 · immutable# This is OpenVPN server, over UDP(better performance because of less overhead) with a tun device(routing).
mode server
proto udp
dev tun
# Authentication with OpenSSL
tls-server
#tls-auth keys/ta.key 0
dh keys/dh2048.pem
ca keys/ca.crt
cert keys/server.crt
key keys/server.key
#duplicate-cn
cipher AES-256-CBC
# Configure the IP range of the VPN clients
server 192.168.200.0 255.255.255.0
ifconfig-pool-persist ipp.txt
# push "redirect-gateway def1" # this will make all traffic go through the VPN (web requests for example do not go directly to the internet, but the OpenVPN server sends them outside.)
push "dhcp-option DNS 192.168.1.10"
#push "route 192.168.1.10 255.255.255.255"
push "route 192.168.1.0 255.255.255.128"
# TMRK tunnel
#push "route 192.168.14.0 255.255.255.0"
#push "route 10.0.0.0 255.0.0.0"
crl-verify crl.pem
#client-to-client #Also, the clients will by default only see the server. If you wish the clients to see each other, uncomment the following line:
user root
group wheel
#user nobody
#group nogroup
ping 15
verb 5
log-append /var/log/openvpn/openvpn.log
status /var/log/openvpn/status.log
#comp-lzo # Compression to get better performance
#persist-key
#persist-tun