| 1234567891011121314151617181920212223242526272829303132333435 |
- # Serveur TCP/443
- mode server
- proto tcp-server
- port 8080
- dev tun
-
- # Cles et certificats
- ca /etc/openvpn/vpn_internet/ca.crt
- cert /etc/openvpn/vpn_internet/server.crt
- key /etc/openvpn/vpn_internet/server.key
- dh /etc/openvpn/vpn_internet/dh1024.pem
- tls-auth /etc/openvpn/vpn_internet/ta.key 1
-
- key-direction 0
- cipher AES-256-CBC
- crl-verify /etc/openvpn/vpn_internet/easy-rsa/keys/crl.pem
- client-config-dir /etc/openvpn/vpn_internet/clientsconf
-
- # Reseau
- server 10.8.0.0 255.255.255.0
- push "redirect-gateway def1 bypass-dhcp"
- keepalive 10 120
-
- # Securite
- user www-data
- group ovpn-manager
- persist-key
- persist-tun
- comp-lzo
-
- # Log
- verb 1
- mute 20
- status /var/vpn.example.com/status-vpn_internet
- log-append /var/log/openvpn-vpn_internet.log
|
