writepid /var/run/openvpn/51.15.156.140-rsa-secp521r1-udp.pid
management 127.0.0.1 12152
daemon
proto udp
local 51.15.156.140
port 1194
dev tun
persist-key
push "persist-key"
persist-tun
push "persist-tun"
fast-io
ca /etc/openvpn/ca-secp521r1.crt
cert /etc/openvpn/alors-rsa.crt
key /etc/openvpn/alors-rsa.key
dh /etc/openvpn/dh.pem
script-security 2
auth SHA512
auth-nocache
auth-user-pass-verify /etc/openvpn/auth.sh via-env
client-connect /etc/openvpn/session_up.sh
client-disconnect /etc/openvpn/session_down.sh
tmp-dir /tmp
topology subnet
server 10.66.152.0 255.255.255.0
float
push "redirect-gateway def1"
allow-pull-fqdn
push "dhcp-option DNS 212.129.46.32"
verify-client-cert none
keepalive 20 60
max-clients 3000
reneg-sec 1200
cipher AES-256-CBC
ncp-ciphers AES-256-GCM:AES-256-CBC
key-method 2
key-direction 1
tls-server
tls-version-max 1.2
tls-auth /etc/openvpn/ta.key
tls-cipher TLS-ECDHE-RSA-WITH-CHACHA20-POLY1305-SHA256:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA
tls-exit
user openvpn
group openvpn
verb 0
mute 2
status /dev/null
log /dev/null