server ***.***.***.0 255.255.255.0
topology subnet
local ***.***.***.*** # Internet server IP
ifconfig-pool-persist ipp.txt # clinet - ip
client-to-client #
client-config-dir /etc/openvpn/ccd
keepalive 10 120
comp-lzo
explicit-exit-notify 1 # if tcp, change for "0"
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
user nobody
group nobody
OpenVPN problem
in Community Support & Knowledge Exchange
Posted
if it help you.
This is my configs:
client(Keenetic):
dev tun
proto udp
remote ***.***.***.*** ????
client
resolv-retry infinite
remote-cert-tls server
auth SHA256
auth-nocache
cipher AES-256-CBC
data-ciphers AES-256-CBC
persist-key
persist-tun
nobind
comp-lzo
verb 3
<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
-----END PRIVATE KEY-----
</key>
<tls-crypt>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
-----END OpenVPN Static key V1-----
</tls-crypt>
server (Centos7):
port ????
proto udp
dev tun
crl-verify /etc/openvpn/server/crl.pem # my revoked certs list # real revoked certs list /etc/openvpn/keys/easyrsa/pki/crl.pem
sndbuf 393216
rcvbuf 393216
push "sndbuf 393216"
push "rcvbuf 393216"
ca /etc/openvpn/server/ca.crt
cert /etc/openvpn/server/ASvps.crt
key /etc/openvpn/server/ASvps.key
dh /etc/openvpn/server/dh.pem
auth SHA256
cipher AES-256-CBC
tls-version-min 1.2
tls-crypt tc.key
server ***.***.***.0 255.255.255.0
topology subnet
local ***.***.***.*** # Internet server IP
ifconfig-pool-persist ipp.txt # clinet - ip
client-to-client #
client-config-dir /etc/openvpn/ccd
keepalive 10 120
comp-lzo
explicit-exit-notify 1 # if tcp, change for "0"
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
user nobody
group nobody
verb 3