← Back to branch summary

~ubuntu-branches/ubuntu/oneiric/openvpn/oneiric

~ubuntu-branches/ubuntu/oneiric/openvpn/oneiric

« back to all changes in this revision

Viewing changes to sample-config-files/server.conf

Committer: Bazaar Package Importer
Author(s): Thierry Carrez
Date: 2008-10-07 16:30:44 UTC
mfrom: (1.1.11 upstream) (10.1.1 lenny)
Revision ID: james.westby@ubuntu.com-20081007163044-ixx04wg588z1972e

Tags: 2.1~rc11-1ubuntu1

https://launchpad.net/bugs/279655

https://launchpad.net/bugs/277447

* Merge with Debian (LP: #279655), remaining diffs:
  - debian/openvpn.init.d: Added 'status' action to init script, show
    per-VPN result messages and add "--script-security 2" by default for
    backwards compatibility
  - debian/control: Added lsb-base>=3.2-14 depend to allow status_of_proc()
* Fixes regression when calling commands with arguments (LP: #277447)

files added:
debian/patches/lladdr-is-not-ip.patch

dhcp.c

dhcp.h

files modified:
ChangeLog

Makefile.am

Makefile.in

buffer.c

buffer.h

config-win32.h

config.h.in

configure

configure.ac

crypto.h

cryptoapi.c

debian/changelog

debian/openvpn.init.d

debian/patches/manpage_dash_escaping.patch

debian/patches/series

debug/valgrind-suppress

errlevel.h

forward.c

forward.h

gremlin.h

helper.c

init.c

lzo.c

misc.c

misc.h

multi.c

ntlm.c

openvpn.8

openvpn.spec

options.c

options.h

reliable.c

route.c

route.h

sample-config-files/client.conf

sample-config-files/server.conf

socket.c

socket.h

ssl.c

t_cltsrv.sh

tun.c

tun.h

version.m4

Show diffs side-by-side

added added

removed removed

sample-config-files/server.conf

114

114

# out unless you are ethernet bridging.

115

115

;server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100

116

116

117

# Configure server mode for ethernet bridging

118

# using a DHCP-proxy, where clients talk

119

# to the OpenVPN server-side DHCP server

120

# to receive their IP address allocation

121

# and DNS server addresses. You must first use

122

# your OS's bridging capability to bridge the TAP

123

# interface with the ethernet NIC interface.

124

# Note: this mode only works on clients (such as

125

# Windows), where the client-side TAP adapter is

126

# bound to a DHCP client.

127

;server-bridge

128

117

129

# Push routes to the client to allow it

118

130

# to reach other private subnets behind

119

131

# the server. Remember that these

170

182

# all IP traffic such as web browsing and

171

183

# and DNS lookups to go through the VPN

172

184

# (The OpenVPN server machine may need to NAT

173

# the TUN/TAP interface to the internet in

174

# order for this to work properly).

175

# CAVEAT: May break client's network config if

176

# client's local DHCP server packets get routed

177

# through the tunnel. Solution: make sure

178

# client's local DHCP server is reachable via

179

# a more specific route than the default route

180

# of 0.0.0.0/0.0.0.0.

181

;push "redirect-gateway"

185

# or bridge the TUN/TAP interface to the internet

186

# in order for this to work properly).

187

;push "redirect-gateway def1 bypass-dhcp"

182

188

183

189

# Certain Windows-specific network settings

184

190

# can be pushed to clients, such as DNS

185

191

# or WINS server addresses. CAVEAT:

186

192

# http://openvpn.net/faq.html#dhcpcaveats

187

;push "dhcp-option DNS 10.8.0.1"

188

;push "dhcp-option WINS 10.8.0.1"

193

# The addresses below refer to the public

194

# DNS servers provided by opendns.com.

195

;push "dhcp-option DNS 208.67.222.222"

196

;push "dhcp-option DNS 208.67.220.220"

189

197

190

198

# Uncomment this directive to allow different

191

199

# clients to be able to "see" each other.

Older »