1ec9fee6ea152006a54a3ca8130e9551a2f2f445
howto/openvpn.md
... | ... | @@ -19,10 +19,12 @@ rport <REMOTE_PORT> |
19 | 19 | local <LOCAL_HOST> |
20 | 20 | lport <LOCAL_PORT> |
21 | 21 | dev-type tun |
22 | +resolv-retry infinite |
|
22 | 23 | dev <INTERFACE_NAME> |
23 | 24 | comp-lzo |
24 | 25 | persist-key |
25 | 26 | persist-tun |
27 | +cipher aes-256-cbc |
|
26 | 28 | ifconfig <LOCAL_GATEWAY_IP> <REMOTE_GATEWAY_IP> |
27 | 29 | secret /etc/openvpn/<PEER_NAME>.key |
28 | 30 | |
... | ... | @@ -53,6 +55,7 @@ comp-lzo |
53 | 55 | dev <INTERFACE_NAME> |
54 | 56 | persist-key |
55 | 57 | persist-tun |
58 | +cipher aes-256-cbc |
|
56 | 59 | float |
57 | 60 | port <LOCAL_PORT> |
58 | 61 | ifconfig <LOCAL_GATEWAY_IP> <REMOTE_GATEWAY_IP> |
... | ... | @@ -78,6 +81,7 @@ dev <INTERFACE_NAME> |
78 | 81 | comp-lzo |
79 | 82 | persist-key |
80 | 83 | persist-tun |
84 | +cipher aes-256-cbc |
|
81 | 85 | ifconfig <LOCAL_GATEWAY_IP> <REMOTE_GATEWAY_IP> |
82 | 86 | secret /etc/openvpn/<PEER_NAME>.key |
83 | 87 | ``` |
... | ... | @@ -95,6 +99,7 @@ mode server |
95 | 99 | tls-server |
96 | 100 | |
97 | 101 | dh dh2048.pem |
102 | +cipher aes-256-cbc |
|
98 | 103 | |
99 | 104 | ca keys/ca.crt |
100 | 105 | cert keys/roaming-dn42.crt |
... | ... | @@ -151,6 +156,7 @@ key myclient.key |
151 | 156 | |
152 | 157 | dev tun |
153 | 158 | proto udp6 |
159 | +cipher aes-256-cbc |
|
154 | 160 | |
155 | 161 | remote <SERVER> <PORT> |
156 | 162 |