diff --git a/conf/install_openvpn.conf.sample b/conf/install_openvpn.conf.sample index 5a8d05a..94b4f32 100644 --- a/conf/install_openvpn.conf.sample +++ b/conf/install_openvpn.conf.sample @@ -1,16 +1,128 @@ -DEFAULT_SERVER="" -DEFAULT_SERVER_PORT=1194 +## - Configuration/Initialization OpenVPN +## - -DEFAULT_CA_EXPIRE=11688 -DEFAULT_KEY_EXPIRE=7305 +# ==================== +# - Some Parameter Settings +# ==================== -DEFAULT_KEY_SIZE=4096 +# --- +# - Common parameters +# --- -DEFAULT_KEY_COUNTRY="DE" -DEFAULT_KEY_PROVINCE="Berlin" -DEFAULT_KEY_CITY="Berlin" -DEFAULT_KEY_EMAIL='support@oopen.de' -DEFAULT_KEY_OU="Network Services" -DEFAULT_KEY_ORG="O.OPEN" -DEFAULT_SERVER_CIPHER="AES-256-CBC" +# - IP-Address/Hostname of OpenVPN Server +OPENVPN_SERVER="" + +# - Server Port +SERVER_PORT= + +# - Organisation shortcut +# - +# - Example: 'AKB' or 'FLR' or 'OPP' or.. +# - +ORG_SHORTCUT="" + +# - Name of the OpenVPN Service +# - +# - Example: 'so36' or 'home' or 'gw-ckubu' or 'opp' or 'opferperspektive' or.. +# - +OPENVPN_NAME="" + +# - OpenVPN Base Directory for Service +OPENVPN_BASE_DIR="/etc/openvpn/server/home" + +# --- +# - Parameters OpenVPN Configuration / KEY Creation +# --- + +# - Example: (3*365+366)*8 = 11688 = 32 Jahre +# - CA_EXPIRE=11688 +# - +CA_EXPIRE=11688 + +# - Example: (3*365+366)*5 = 7305 = 20 Jahre +# - CERT_EXPIRE=7305 +# - +CERT_EXPIRE=7305 + +KEY_SIZE=4096 + +KEY_COUNTRY="DE" +KEY_PROVINCE="Berlin" +KEY_CITY="Berlin" +KEY_ORG="o.open" +KEY_EMAIL="argus\@oopen.de" +KEY_OU="Network Services" + +# - Name of the Key +# - +# - Example: 'VPN opp' +# - +KEY_NAME="" + +# - Base Common Name of the certificates +# - +# - Example: 'VPN-opp' +# - +KEY_CN="" + +# - Example: 'VPN-opp' +# - +KEY_ALTNAMES="" + + +# --- +# - Parameters for Server Configurations +# --- + +# - Enable LZO compression +# - +# - Note: +# - enabling LZO compression is deprecated +# - +LZO_COMPRESSION="no" + +# - Server cryptographic cipher +# - +SERVER_CIPHER="AES-256-CBC" + +# - OpenVPN Network used for the connection. +# - +# - Eample: 10.0.217.0 +# - +OPENVPN_NETWORK="" + +# - Networks to push from OpenVPN server to the client +# - +# - - use CIDR notation +# - - multiple networks are possible: use blank separated list of CIDR-networks +# - - "None" if no network should be pushed from OpenVPN server. +# - +# - Example: '192.168.82.0/24 192.168.83.0' +# - +REMOTE_NETWORKS="none" + +# - IP-Address of DNS server to push from OpenVPN server to the client. +# - +# - "None" if no DNS Server should be pushed. +# - +DNS_SERVER="none" + +# - Search Domain(s) to push from OpenVPN server to the client. +# - +# - - multiple domains are possible: use a blank separated list of search domains +# - - "None" if no default domain should be pushed. +# - +SEARCH_DOMAINS="" + + +# - Local networks to route through OpenVPN line +# - +# - - use CIDR notation +# - - multiple networks are possible: use blank separated list of CIDR-networks +# - - "None" if no network should be pushed from OpenVPN server. +# - +# - Example: '192.168.63.0/24 192.168.64.0/24' +# - +LOCAL_NETWORKS="" +