From 47a43ec0c3b322e71f097b15e6064c924ea12315 Mon Sep 17 00:00:00 2001
From: Sheppy <sheppy@atlantishq.de>
Date: Mon, 29 May 2023 15:36:21 +0000
Subject: [PATCH] update: openvpn config

---
 roles/openvpn/templates/atlantishq.conf | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/roles/openvpn/templates/atlantishq.conf b/roles/openvpn/templates/atlantishq.conf
index 07669a5..dc7a7c2 100644
--- a/roles/openvpn/templates/atlantishq.conf
+++ b/roles/openvpn/templates/atlantishq.conf
@@ -27,16 +27,17 @@ keepalive 10 60
 user nobody
 group nogroup
 
+data-ciphers AES-256-CBC
+data-ciphers-fallback AES-256-CBC
 auth SHA512
-cipher AES-256-CBC
 
 ca   /data/certificate-manager/keys/ca.crt
-cert /data/certificate-manager/vpn.atlantishq.de.crt
-key  /data/certificate-manager/vpn.atlantishq.de.key
-#dh   atlantishq/dhparam
+cert vpn.atlantishq.de.crt
+key  vpn.atlantishq.de.key
+dh   dh.param
 
-crl-verify /opt/data/certificate-manager/crl.pem
+crl-verify /data/certificate-manager/crl.pem
 
-client-config-dir /opt/certificate-manager/client-config-dir
+client-config-dir /data/certificate-manager/client-config-dir
 ccd-exclusive
 management 127.0.0.1 {{ openvpn_management_port }} {{ openvpn_management_passfile }}