Example OpenVPN Server Config

Server Config

Here's an example OpenVPN server configuration to use with this set of PHP scripts.

auth SHA512
ca <path to CA cert>
cert <path to server cert>
cipher AES-256-CBC
client-connect /etc/openvpn/openvpn-php-access/client-connect.sh
client-disconnect /etc/openvpn/openvpn-php-access/client-disconnect.sh
comp-lzo
crl-verify <path to CRL pem>
dev tun
dh <path to DH parameters pem>
duplicate-cn
ifconfig-pool-persist <path to pool persist TXT file>
keepalive 10 120
key <path to server key>
log-append <path to OpenVPN log>
management 127.0.0.1 <random port>
persist-key
persist-tun
plugin /usr/lib/openvpn/openvpn-auth-ldap.so <path to LDAP cfg>
port <listening port>
proto udp
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
remote-cert-eku "TLS Web Client Authentication"
reneg-sec 0
server 10.8.0.0 255.255.255.0
status /var/log/openvpn-status.log
tls-auth <path to static key> 0
tls-cipher "TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-256-CBC-SHA"
tls-version-min 1.2
topology subnet
username-as-common-name
verb 3

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Example OpenVPN Server Config

Server Config

Clone this wiki locally