sheppy/no-secrets-athq-ansible
1
0
Fork 0
mirror of https://github.com/FAUSheppy/no-secrets-athq-ansible synced 2025-12-10 02:08:32 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
1ec456d4d1ac9d9e592d7fe620cfe9215ccdf67c
no-secrets-athq-ansible/roles/openvpn/templates/atlantishq.conf
Sheppy 1ec456d4d1 change: use certificate directly from cert manager 
- remove dh param by default
2023-05-29 13:03:06 +00:00

43 lines
748 B
Plaintext
Raw Blame History

server 172.16.1.0 255.255.255.0
#server-ipv6 fd2a:aef:608:1::/64
dev athq_sheppyvpn
dev-type tun
proto tcp
port 7012
topology subnet
client-to-client
# disable logging
#log /dev/null
#status /dev/null
script-security 2
tls-server
mode server
#duplicate-cn
persist-key
persist-tun
keepalive 10 60
user nobody
group nogroup
auth SHA512
cipher AES-256-CBC
ca /data/certificate-manager/keys/ca.crt
cert /data/certificate-manager/vpn.atlantishq.de.crt
key /data/certificate-manager/vpn.atlantishq.de.key
#dh atlantishq/dhparam
crl-verify /opt/data/certificate-manager/crl.pem
client-config-dir /opt/certificate-manager/client-config-dir
ccd-exclusive
management 127.0.0.1 {{ openvpn_management_port }} {{ openvpn_management_passfile }}
Reference in New Issue View Git Blame Copy Permalink