git.squeep.com Git - awsible/blob - roles/msca-openvpn/templates/vpc-client.conf.j2

   1 {{ ansible_managed|comment }}
   2 # Mode: {{ vpn_mode }}
   3 # Subnet: {{ vpn_subnet }}
   4 client
   5 dev tap
   6 <connection>
   7         remote {{ vpn_server_ip }} 1194 udp
   8 </connection>
   9 resolv-retry infinite
  10 persist-key
  11 persist-tun
  12 nobind
  13 float
  14 mssfix
  15 keepalive 30 90
  16 daemon
  17
  18 ca /etc/openvpn/keys/ca.{{ ca_name|lower }}.crt
  19 cert /etc/openvpn/keys/{{ vpc_region }}-client.{{ ca_name|lower }}.crt
  20 key /etc/openvpn/keys/{{ vpc_region }}-client.{{ ca_name|lower }}.key
  21 tls-server
  22 tls-version-min 1.2
  23 key-direction 0
  24 <tls-auth>
  25 {{ ta_secret }}
  26 </tls-auth>