projects / project / luci.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Updated openvpn app to work with current openvpn package
[project/luci.git] / applications / luci-openvpn / root / etc / config / openvpn_recipes
diff --git a/applications/luci-openvpn/root/etc/config/openvpn_recipes b/applications/luci-openvpn/root/etc/config/openvpn_recipes
index 0f2ee4f..1b394df 100644 (file)
--- a/applications/luci-openvpn/root/etc/config/openvpn_recipes
+++ b/applications/luci-openvpn/root/etc/config/openvpn_recipes
@@ -2,94 +2,101 @@
 # Routed point-to-point server
 #
 config openvpn_recipe server_tun_ptp
-       option _description     "Simple server configuration for a routed point-to-point VPN"
-       option _role            "server"
+       option _description             "Simple server configuration for a routed point-to-point VPN"
+       option _role                    "server"
        option dev                      "tun"
-       option port                     "1194"
-       option ifconfig         "10.0.0.1 10.0.0.2"
-       option secret           "shared-secret.key"
+       option ifconfig                 "10.0.0.1 10.0.0.2"
+       option secret                   "shared-secret.key"
+       option keepalive                "10 60"
+       option comp_lzo                 "yes"
+       option verb                     "3"
+        option mssfix                  "1420"
 
 #
 # Routed point-to-point client
 #
 config openvpn_recipe client_tun_ptp
-       option _description     "Simple client configuration for a routed point-to-point VPN"
-       option _role            "client"
+       option _description             "Simple client configuration for a routed point-to-point VPN"
+       option _role                    "client"
        option dev                      "tun"
-       option remote           "mypeer.dyndns.org"
-       option port             "1194"
-       option ifconfig         "10.0.0.2 10.0.0.1"
-       option secret           "shared-secret.key"
-       option nobind           "1"
-
+       list   remote                   "vpnserver.example.org"
+       option ifconfig                 "10.0.0.2 10.0.0.1"
+       option secret                   "shared-secret.key"
+       option nobind                   "1"
+       option comp_lzo                 "yes"
+       option verb                     "3"
 
 #
 # Routed multi-client server
 #
 config openvpn_recipe server_tun
-       option _description     "Server configuration for a routed multi-client VPN"
-       option _role            "server"
+       option _description             "Server configuration for a routed multi-client VPN"
+       option _role                    "server"
        option dev                      "tun"
-       option port                     "1194"
-       option server           "10.0.100.0 255.255.255.0"
+       option server                   "10.0.100.0 255.255.255.0"
        option ca                       "ca.crt"
-       option cert             "server.crt"
+       option cert                     "server.crt"
        option key                      "server.key"
        option dh                       "dh1024.pem"
-       option client_to_client "1"
-       option keepalive        "10 120"
-       option comp_lzo         "1"
+       option keepalive                "10 60"
+       option comp_lzo                 "yes"
+       option verb                     "3"
+        option mssfix                  "1420"
 
 #
 # Routed client
 #
 config openvpn_recipe client_tun
-       option _description     "Client configuration for a routed multi-client VPN"
-       option _role            "client"
-       option client           "1"
-       option dev                      "tun"
-       option remote           "vpnserver.example.org 1194"
-       option ca                       "ca.crt"
-       option cert                     "my_client.crt"
-       option key                      "my_client.key"
-       option dh                       "dh1024.pem"
-       option ns_cert_type     "server"
-       option keepalive        "10 120"
-       option comp_lzo         "1"
-       option nobind           "1"
-
+       option _description             "Client configuration for a routed multi-client VPN"
+       option _role                    "client"
+       option client                   "1"
+       option dev                      "tun"
+       list   remote                   "vpnserver.example.org"
+       option pkcs12                   "my_client.p12"
+       option remote_cert_tls          "server"
+       option comp_lzo                 "yes"
+       option nobind                   "1"
+       option persist_key              "1"
+       option persist_tun              "1"
+       option verb                     "3"
+       option reneg_sec                "0"
+       option float                    "1"
 
 #
 # Multi-client ethernet bridge server
 #
 config openvpn_recipe server_tap_bridge
-       option _description     "Server configuration for an ethernet bridge VPN"
-       option _role            "server"
+       option _description             "Server configuration for an ethernet bridge VPN"
+       option _role                    "server"
        option dev                      "tap"
-       option port                     "1194"
-       option server_bridge "192.168.1.1 255.255.255.0 192.168.1.128 192.168.1.254"
+       option server_bridge            "192.168.1.1 255.255.255.0 192.168.1.128 192.168.1.254"
        option ca                       "ca.crt"
-       option cert             "server.crt"
+       option cert                     "server.crt"
        option key                      "server.key"
        option dh                       "dh1024.pem"
-       option client_to_client "1"
-       option keepalive        "10 120"
-       option comp_lzo         "1"
+       option keepalive                "10 60"
+       option comp_lzo                 "yes"
+       option verb                     "3"
+        option mssfix                  "1420"
 
 #
 # Ethernet bridge client
 #
 config openvpn_recipe client_tap_bridge
-       option _description     "Client configuration for an ethernet bridge VPN"
-       option _role            "client"
-       option client           "1"
+       option _description             "Client configuration for an ethernet bridge VPN"
+       option _role                    "client"
+       option client                   "1"
        option dev                      "tap"
-       option remote           "vpnserver.example.org 1194"
+       list   remote                   "vpnserver.example.org"
        option ca                       "ca.crt"
        option cert                     "my_client.crt"
        option key                      "my_client.key"
        option dh                       "dh1024.pem"
-       option ns_cert_type     "server"
-       option keepalive        "10 120"
-       option comp_lzo         "1"
-       option nobind           "1"
+       option remote_cert_tls          "server"
+       option comp_lzo                 "yes"
+       option nobind                   "1"
+       option persist_key              "1"
+       option verb                     "3"
+       option reneg_sec                "0"
+       option float                    "1"
+
Lua Configuration Interface (mirror)