applications/luci-openvpn/root/etc/config/openvpn_recipes

   1 #
   2 # Routed point-to-point server
   3 #
   4 config openvpn_recipe server_tun_ptp
   5         option _description             "Simple server configuration for a routed point-to-point VPN"
   6         option _role                    "server"
   7         option dev                      "tun"
   8         option ifconfig                 "10.0.0.1 10.0.0.2"
   9         option secret                   "shared-secret.key"
  10         option keepalive                "10 60"
  11         option comp_lzo                 "1"
  12         option verb                     "3"
  13         option mssfix                   "1420"
  14         option management               "127.0.0.1 31194"
  15
  16 #
  17 # Routed point-to-point client
  18 #
  19 config openvpn_recipe client_tun_ptp
  20         option _description             "Simple client configuration for a routed point-to-point VPN"
  21         option _role                    "client"
  22         option dev                      "tun"
  23         list   remote                   "vpnserver.example.org"
  24         option ifconfig                 "10.0.0.2 10.0.0.1"
  25         option secret                   "shared-secret.key"
  26         option nobind                   "1"
  27         option comp_lzo                 "1"
  28         option verb                     "3"
  29         option management               "127.0.0.1 31194"
  30
  31 #
  32 # Routed multi-client server
  33 #
  34 config openvpn_recipe server_tun
  35         option _description             "Server configuration for a routed multi-client VPN"
  36         option _role                    "server"
  37         option dev                      "tun"
  38         option server                   "10.0.100.0 255.255.255.0"
  39         option ca                       "ca.crt"
  40         option cert                     "server.crt"
  41         option key                      "server.key"
  42         option dh                       "dh1024.pem"
  43         option keepalive                "10 60"
  44         option comp_lzo                 "1"
  45         option verb                     "3"
  46         option mssfix                   "1420"
  47         option management               "127.0.0.1 31194"
  48
  49 #
  50 # Routed client
  51 #
  52 config openvpn_recipe client_tun
  53         option _description             "Client configuration for a routed multi-client VPN"
  54         option _role                    "client"
  55         option client                   "1"
  56         option dev                      "tun"
  57         list   remote                   "vpnserver.example.org"
  58         option pkcs12                   "my_client.p12"
  59         option remote_cert_tls          "server"
  60         option comp_lzo                 "1"
  61         option nobind                   "1"
  62         option persist_key              "1"
  63         option persist_tun              "1"
  64         option verb                     "3"
  65         option reneg_sec                "0"
  66         option float                    "1"
  67         option management               "127.0.0.1 31194"
  68
  69 #
  70 # Multi-client ethernet bridge server
  71 #
  72 config openvpn_recipe server_tap_bridge
  73         option _description             "Server configuration for an ethernet bridge VPN"
  74         option _role                    "server"
  75         option dev                      "tap"
  76         option server_bridge            "192.168.1.1 255.255.255.0 192.168.1.128 192.168.1.254"
  77         option ca                       "ca.crt"
  78         option cert                     "server.crt"
  79         option key                      "server.key"
  80         option dh                       "dh1024.pem"
  81         option keepalive                "10 60"
  82         option comp_lzo                 "1"
  83         option verb                     "3"
  84         option mssfix                   "1420"
  85         option management               "127.0.0.1 31194"
  86
  87 #
  88 # Ethernet bridge client
  89 #
  90 config openvpn_recipe client_tap_bridge
  91         option _description             "Client configuration for an ethernet bridge VPN"
  92         option _role                    "client"
  93         option client                   "1"
  94         option dev                      "tap"
  95         list   remote                   "vpnserver.example.org"
  96         option ca                       "ca.crt"
  97         option cert                     "my_client.crt"
  98         option key                      "my_client.key"
  99         option dh                       "dh1024.pem"
 100         option remote_cert_tls          "server"
 101         option comp_lzo                 "1"
 102         option nobind                   "1"
 103         option persist_key              "1"
 104         option verb                     "3"
 105         option reneg_sec                "0"
 106         option float                    "1"
 107         option management               "127.0.0.1 31194"