diff options
author | Steffan Karger <steffan.karger@fox-it.com> | 2015-02-22 15:11:08 +0100 |
---|---|---|
committer | Gert Doering <gert@greenie.muc.de> | 2015-02-22 17:19:23 +0100 |
commit | 513eef4884c9be1fd31ba676dfe34d91a4ce6141 (patch) | |
tree | d5b08e43155abf20c15c8bb242e38cba17f30b08 /sample/sample-config-files | |
parent | 0b1a68fffa33e175c320c2828604cdc7dfb097e7 (diff) | |
download | openvpn-513eef4884c9be1fd31ba676dfe34d91a4ce6141.tar.gz openvpn-513eef4884c9be1fd31ba676dfe34d91a4ce6141.tar.xz openvpn-513eef4884c9be1fd31ba676dfe34d91a4ce6141.zip |
Use tls-auth in sample config files
For two reasons:
1) May motivate people to use tls-auth in their setups
2) Verify tls-auth functionality when running 'make check'
Signed-off-by: Steffan Karger <steffan.karger@fox-it.com>
Acked-by: Gert Doering <gert@greenie.muc.de>
Message-Id: <1424614268-5078-1-git-send-email-steffan.karger@fox-it.com>
URL: http://article.gmane.org/gmane.network.openvpn.devel/9467
Signed-off-by: Gert Doering <gert@greenie.muc.de>
Diffstat (limited to 'sample/sample-config-files')
-rw-r--r-- | sample/sample-config-files/client.conf | 2 | ||||
-rw-r--r-- | sample/sample-config-files/loopback-client | 1 | ||||
-rw-r--r-- | sample/sample-config-files/loopback-server | 1 | ||||
-rw-r--r-- | sample/sample-config-files/server.conf | 2 |
4 files changed, 4 insertions, 2 deletions
diff --git a/sample/sample-config-files/client.conf b/sample/sample-config-files/client.conf index 050ef60..fedcbd6 100644 --- a/sample/sample-config-files/client.conf +++ b/sample/sample-config-files/client.conf @@ -105,7 +105,7 @@ remote-cert-tls server # If a tls-auth key is used on the server # then every client must also have the key. -;tls-auth ta.key 1 +tls-auth ta.key 1 # Select a cryptographic cipher. # If the cipher option is used on the server diff --git a/sample/sample-config-files/loopback-client b/sample/sample-config-files/loopback-client index ebbd1cf..7117307 100644 --- a/sample/sample-config-files/loopback-client +++ b/sample/sample-config-files/loopback-client @@ -21,5 +21,6 @@ remote-cert-tls server ca sample-keys/ca.crt key sample-keys/client.key cert sample-keys/client.crt +tls-auth sample-keys/ta.key 1 ping 1 inactive 120 10000000 diff --git a/sample/sample-config-files/loopback-server b/sample/sample-config-files/loopback-server index 8cb97be..8e1f39c 100644 --- a/sample/sample-config-files/loopback-server +++ b/sample/sample-config-files/loopback-server @@ -21,5 +21,6 @@ dh sample-keys/dh2048.pem ca sample-keys/ca.crt key sample-keys/server.key cert sample-keys/server.crt +tls-auth sample-keys/ta.key 0 ping 1 inactive 120 10000000 diff --git a/sample/sample-config-files/server.conf b/sample/sample-config-files/server.conf index 701be3c..c85ca0f 100644 --- a/sample/sample-config-files/server.conf +++ b/sample/sample-config-files/server.conf @@ -241,7 +241,7 @@ keepalive 10 120 # a copy of this key. # The second parameter should be '0' # on the server and '1' on the clients. -;tls-auth ta.key 0 # This file is secret +tls-auth ta.key 0 # This file is secret # Select a cryptographic cipher. # This config item must be copied to |