1# 2# Sample OpenVPN configuration file for 3# office using a pre-shared static key. 4# 5# '#' or ';' may be used to delimit comments. 6 7# Use a dynamic tun device. 8# For Linux 2.2 or non-Linux OSes, 9# you may want to use an explicit 10# unit number such as "tun1". 11# OpenVPN also supports virtual 12# ethernet "tap" devices. 13dev tun 14 15# 10.1.0.1 is our local VPN endpoint (office). 16# 10.1.0.2 is our remote VPN endpoint (home). 17ifconfig 10.1.0.1 10.1.0.2 18 19# Our up script will establish routes 20# once the VPN is alive. 21up ./office.up 22 23# Our pre-shared static key 24secret static.key 25 26# OpenVPN 2.0 uses UDP port 1194 by default 27# (official port assignment by iana.org 11/04). 28# OpenVPN 1.x uses UDP port 5000 by default. 29# Each OpenVPN tunnel must use 30# a different port number. 31# lport or rport can be used 32# to denote different ports 33# for local and remote. 34; port 1194 35 36# Downgrade UID and GID to 37# "nobody" after initialization 38# for extra security. 39; user nobody 40; group nobody 41 42# If you built OpenVPN with 43# LZO compression, uncomment 44# out the following line. 45; comp-lzo 46 47# Send a UDP ping to remote once 48# every 15 seconds to keep 49# stateful firewall connection 50# alive. Uncomment this 51# out if you are using a stateful 52# firewall. 53; ping 15 54 55# Uncomment this section for a more reliable detection when a system 56# loses its connection. For example, dial-ups or laptops that 57# travel to other locations. 58; ping 15 59; ping-restart 45 60; ping-timer-rem 61; persist-tun 62; persist-key 63 64# Verbosity level. 65# 0 -- quiet except for fatal errors. 66# 1 -- mostly quiet, but display non-fatal network errors. 67# 3 -- medium output, good for normal operation. 68# 9 -- verbose, good for troubleshooting 69verb 3 70