Merge pull request #222 from iXit/master
[project/luci.git] / applications / luci-openvpn / root / etc / config / openvpn_recipes
1 #
2 # Routed point-to-point server
3 #
4 config openvpn_recipe server_tun_ptp
5         option _description             "Simple server configuration for a routed point-to-point VPN"
6         option _role                    "server"
7         option dev                      "tun"
8         option ifconfig                 "10.0.0.1 10.0.0.2"
9         option secret                   "shared-secret.key"
10         option keepalive                "10 60"
11         option comp_lzo                 "yes"
12         option verb                     "3"
13         option mssfix                   "1420"
14
15 #
16 # Routed point-to-point client
17 #
18 config openvpn_recipe client_tun_ptp
19         option _description             "Simple client configuration for a routed point-to-point VPN"
20         option _role                    "client"
21         option dev                      "tun"
22         list   remote                   "vpnserver.example.org"
23         option ifconfig                 "10.0.0.2 10.0.0.1"
24         option secret                   "shared-secret.key"
25         option nobind                   "1"
26         option comp_lzo                 "yes"
27         option verb                     "3"
28
29 #
30 # Routed multi-client server
31 #
32 config openvpn_recipe server_tun
33         option _description             "Server configuration for a routed multi-client VPN"
34         option _role                    "server"
35         option dev                      "tun"
36         option server                   "10.0.100.0 255.255.255.0"
37         option ca                       "ca.crt"
38         option cert                     "server.crt"
39         option key                      "server.key"
40         option dh                       "dh1024.pem"
41         option keepalive                "10 60"
42         option comp_lzo                 "yes"
43         option verb                     "3"
44         option mssfix                   "1420"
45
46 #
47 # Routed client
48 #
49 config openvpn_recipe client_tun
50         option _description             "Client configuration for a routed multi-client VPN"
51         option _role                    "client"
52         option client                   "1"
53         option dev                      "tun"
54         list   remote                   "vpnserver.example.org"
55         option pkcs12                   "my_client.p12"
56         option remote_cert_tls          "server"
57         option comp_lzo                 "yes"
58         option nobind                   "1"
59         option persist_key              "1"
60         option persist_tun              "1"
61         option verb                     "3"
62         option reneg_sec                "0"
63         option float                    "1"
64
65 #
66 # Multi-client ethernet bridge server
67 #
68 config openvpn_recipe server_tap_bridge
69         option _description             "Server configuration for an ethernet bridge VPN"
70         option _role                    "server"
71         option dev                      "tap"
72         option server_bridge            "192.168.1.1 255.255.255.0 192.168.1.128 192.168.1.254"
73         option ca                       "ca.crt"
74         option cert                     "server.crt"
75         option key                      "server.key"
76         option dh                       "dh1024.pem"
77         option keepalive                "10 60"
78         option comp_lzo                 "yes"
79         option verb                     "3"
80         option mssfix                   "1420"
81
82 #
83 # Ethernet bridge client
84 #
85 config openvpn_recipe client_tap_bridge
86         option _description             "Client configuration for an ethernet bridge VPN"
87         option _role                    "client"
88         option client                   "1"
89         option dev                      "tap"
90         list   remote                   "vpnserver.example.org"
91         option ca                       "ca.crt"
92         option cert                     "my_client.crt"
93         option key                      "my_client.key"
94         option dh                       "dh1024.pem"
95         option remote_cert_tls          "server"
96         option comp_lzo                 "yes"
97         option nobind                   "1"
98         option persist_key              "1"
99         option verb                     "3"
100         option reneg_sec                "0"
101         option float                    "1"
102