-
-
Save jonaharagon/72b7cd73e1d8f5a7c23b to your computer and use it in GitHub Desktop.
OpenVPN configuration for /etc/openvpn/server.conf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| local 192.168.2.0 # SWAP THIS NUMBER WITH YOUR RASPBERRY PI IP ADDRESS | |
| dev tun | |
| proto udp #Some people prefer to use tcp. Don't change it if you don't know. | |
| port 1194 | |
| ca /etc/openvpn/easy-rsa/keys/ca.crt | |
| cert /etc/openvpn/easy-rsa/keys/Pi.crt # SWAP WITH YOUR CRT NAME | |
| key /etc/openvpn/easy-rsa/keys/Pi.key # SWAP WITH YOUR KEY NAME | |
| dh /etc/openvpn/easy-rsa/keys/dh2048.pem | |
| server 10.8.0.0 255.255.255.0 | |
| # server and remote endpoints | |
| ifconfig 10.8.0.1 10.8.0.2 | |
| # Add route to Client routing table for the OpenVPN Server | |
| push "route 10.8.0.1 255.255.255.255" | |
| # Add route to Client routing table for the OpenVPN Subnet | |
| push "route 10.8.0.0 255.255.255.0" | |
| # your local subnet | |
| push "route 192.168.2.0 255.255.255.255" # SWAP THE IP NUMBER WITH YOUR RASPBERRY PI IP ADDRESS | |
| # Set primary domain name server address to the SOHO Router | |
| # If your router does not do DNS, you can use Google DNS 8.8.8.8 | |
| push "dhcp-option DNS 192.168.2.1" # This should match your router's IP address. | |
| # Override the Client default gateway by using 0.0.0.0/1 and | |
| # 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of | |
| # overriding but not wiping out the original default gateway. | |
| push "redirect-gateway def1" | |
| client-to-client | |
| duplicate-cn | |
| keepalive 10 120 | |
| tls-auth /etc/openvpn/easy-rsa/keys/ta.key 0 | |
| cipher AES-128-CBC | |
| comp-lzo | |
| user nobody | |
| group nogroup | |
| persist-key | |
| persist-tun | |
| status /var/log/openvpn-status.log 20 | |
| log /var/log/openvpn.log | |
| verb 1 |
should I change this section?
`# Add route to Client routing table for the OpenVPN Server
push "route 10.8.0.1 255.255.255.255"
Add route to Client routing table for the OpenVPN Subnet
push "route 10.8.0.0 255.255.255.0"`
what should I do here?
# Override the Client default gateway by using 0.0.0.0/1 and
# 128.0.0.0/1 rather than 0.0.0.0/0. This has the benefit of
# overriding but not wiping out the original default gateway.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Edited 5/25/2016: Changed
to