1# 2# Sample OpenVPN configuration file for 3# home using a pre-shared static key. 4# 5# '#' or ';' may be used to delimit comments. 6 7# Use a dynamic tun device. 8# For Linux 2.2 or non-Linux OSes, 9# you may want to use an explicit 10# unit number such as "tun1". 11# OpenVPN also supports virtual 12# ethernet "tap" devices. 13dev tun 14 15# Our OpenVPN peer is the office gateway. 16remote 1.2.3.4 17 18# 10.1.0.2 is our local VPN endpoint (home). 19# 10.1.0.1 is our remote VPN endpoint (office). 20ifconfig 10.1.0.2 10.1.0.1 21 22# Our up script will establish routes 23# once the VPN is alive. 24up ./home.up 25 26# Our pre-shared static key 27secret static.key 28 29# OpenVPN 2.0 uses UDP port 1194 by default 30# (official port assignment by iana.org 11/04). 31# OpenVPN 1.x uses UDP port 5000 by default. 32# Each OpenVPN tunnel must use 33# a different port number. 34# lport or rport can be used 35# to denote different ports 36# for local and remote. 37; port 1194 38 39# Downgrade UID and GID to 40# "nobody" after initialization 41# for extra security. 42; user nobody 43; group nobody 44 45# If you built OpenVPN with 46# LZO compression, uncomment 47# out the following line. 48; comp-lzo 49 50# Send a UDP ping to remote once 51# every 15 seconds to keep 52# stateful firewall connection 53# alive. Uncomment this 54# out if you are using a stateful 55# firewall. 56; ping 15 57 58# Uncomment this section for a more reliable detection when a system 59# loses its connection. For example, dial-ups or laptops that 60# travel to other locations. 61; ping 15 62; ping-restart 45 63; ping-timer-rem 64; persist-tun 65; persist-key 66 67# Verbosity level. 68# 0 -- quiet except for fatal errors. 69# 1 -- mostly quiet, but display non-fatal network errors. 70# 3 -- medium output, good for normal operation. 71# 9 -- verbose, good for troubleshooting 72verb 3 73