Ansible roles by Evolix
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 
ansible-roles/openvpn/templates/server.conf.j2

35 lines
700 B

user _openvpn
group _openvpn
local {{ ansible_default_ipv4.address }}
port 1194
proto udp
dev tun
mode server
topology subnet
keepalive 10 120
tls-exit
cipher AES-256-GCM # AES
persist-key
persist-tun
ifconfig-pool-persist /etc/openvpn/ipp.txt
status /var/log/openvpn-status.log
log-append /var/log/openvpn.log
ca /etc/shellpki/cacert.pem
cert /etc/shellpki/certs/{{ ansible_fqdn }}.crt
key /etc/shellpki/private/TO_COMPLETE
dh /etc/shellpki/dh2048.pem
crl-verify /etc/shellpki/crl.pem
server {{ openvpn_lan }} {{ openvpn_netmask }}
#push "route 192.0.3.0 255.255.255.0"
# Management interface (used by check_openvpn for Nagios)
management 127.0.0.1 1195 /etc/openvpn/management-pwd