1 {{ ansible_managed|comment }}
3 # Subnet: {{ vpn_subnet }}
16 management 127.0.0.1 31339
18 server {{ vpn_subnet }} 255.255.255.0
24 log /var/log/openvpn/openvpn.log
26 status /var/log/openvpn/status.log
27 client-connect /etc/openvpn/scripts/event-log.sh
28 client-disconnect /etc/openvpn/scripts/event-log.sh
31 {% if phase|default() == 'prod' %}
32 auth-user-pass-verify /etc/openvpn/scripts/auth.py via-env
38 dh /etc/openvpn/keys/dh.pem
39 ca /etc/openvpn/keys/ca.{{ ca_name|lower }}.crt
40 crl-verify /etc/openvpn/keys/crl.{{ ca_name|lower }}.pem
41 cert /etc/openvpn/keys/{{ vpc_region }}.{{ ca_name|lower }}.crt
42 key /etc/openvpn/keys/{{ vpc_region }}.{{ ca_name|lower }}.key