| # openvpn client.conf - {{ ansible_managed }} |
| {# |
| SPDX-FileCopyrightText: © 2022 Open Networking Foundation <support@opennetworking.org> |
| SPDX-License-Identifier: Apache-2.0 |
| #} |
| |
| # security |
| tls-client |
| tls-version-min 1.3 |
| cipher AES-256-GCM |
| auth SHA256 |
| |
| # connection |
| dev tun |
| proto udp |
| port 1194 |
| remote {{ openvpn_server_name }} |
| |
| # security |
| remote-cert-tls server |
| auth-nocache |
| nobind |
| persist-key |
| persist-tun |
| |
| # logging |
| verb 4 |
| mute 10 |
| |
| # IP config |
| topology subnet |
| pull |
| |
| # CA certificates |
| <ca> |
| </ca> |
| |
| # TLS auth |
| key-direction 1 |
| <tls-auth> |
| </tls-auth> |
| |
| # client key |
| <key> |
| </key> |
| |
| # client cert |
| <cert> |
| </cert> |