Initial openvpn role commit Change-Id: I091e7b198d852d5857f7b606cce2469c2f8ba9a7

commit: becdc0e026fbf064e884db1e1435241d2ba01a69 [log] [tgz]
author: Zack Williams <zdw@opennetworking.org> Sat Mar 26 07:08:25 2022 -0700
committer: Zack Williams <zdw@opennetworking.org> Tue Aug 16 13:10:12 2022 -0700
tree: d01fc7bbbab24f376cd56b4a56b576e2b7b8fcbf
diff --git a/templates/client.conf.j2 b/templates/client.conf.j2
new file mode 100644
index 0000000..6f11795
--- /dev/null
+++ b/templates/client.conf.j2

@@ -0,0 +1,49 @@
+# openvpn client.conf - {{ ansible_managed }}
+{#
+SPDX-FileCopyrightText: © 2022 Open Networking Foundation <support@opennetworking.org>
+SPDX-License-Identifier: Apache-2.0
+#}
+
+# security
+tls-client
+tls-version-min 1.3
+cipher AES-256-GCM
+auth SHA256
+
+# connection
+dev tun
+proto udp
+port 1194
+remote {{ openvpn_server_name }}
+
+# security
+remote-cert-tls server
+auth-nocache
+nobind
+persist-key
+persist-tun
+
+# logging
+verb 4
+mute 10
+
+# IP config
+topology subnet
+pull
+
+# CA certificates
+<ca>
+</ca>
+
+# TLS auth
+key-direction 1
+<tls-auth>
+</tls-auth>
+
+# client key
+<key>
+</key>
+
+# client cert
+<cert>
+</cert>
commit	becdc0e026fbf064e884db1e1435241d2ba01a69	[log] [tgz]
author	Zack Williams <zdw@opennetworking.org>	Sat Mar 26 07:08:25 2022 -0700
committer	Zack Williams <zdw@opennetworking.org>	Tue Aug 16 13:10:12 2022 -0700
tree	d01fc7bbbab24f376cd56b4a56b576e2b7b8fcbf