Last active
June 1, 2016 02:01
-
-
Save JohnLonginotto/61aeec85b0216fc286e473741f41bb48 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| management localhost 6666 # Allows you to telnet into localhost 6666 to see the status. Although openvpn has logs, you can find out a lot more (like who is currently using on the VPN) through the management service | |
| port 443 # By using port 443 for all of our VPN communications, our network traffic will look very similar to standard HTTPS traffic. | |
| client-to-client # Allows two clients of the VPN to talk to one another (home computer to work computer for example) | |
| keepalive 10 120 # Defaults | |
| mssfix # Kept due to Cargo Cult reasons... | |
| proto tcp # udp is faster, but so much less reliable its not worth it. Use TCP. | |
| dev tun # We're making a tunnel so we want to make the tun kind of VPN. | |
| ca ca.crt # we'll make this next | |
| cert server.crt # we'll make this next | |
| key server.key # we'll make this next | |
| dh dh2048.pem # we'll make this next | |
| server 10.8.0.0 255.255.255.0 # IP range to use when issuing addresses to clients | |
| ifconfig-pool-persist ipp.txt # Its nice when every time you log in to the VPN you get the same internal IP. Makes SSHing easier. Use this to enable that. | |
| comp-lzo # We definitely want compression turned on | |
| max-clients 10 # I dont even have 10 friends, so this will do | |
| user nobody # A girl has no name | |
| group nogroup # A group has no name | |
| persist-key # Default | |
| persist-tun # Default | |
| verb 5 # Log level 5. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment