summaryrefslogtreecommitdiffstats
path: root/sample/sample-config-files
diff options
context:
space:
mode:
authorSteffan Karger <steffan.karger@fox-it.com>2015-02-22 15:11:08 +0100
committerGert Doering <gert@greenie.muc.de>2015-02-22 17:19:23 +0100
commit513eef4884c9be1fd31ba676dfe34d91a4ce6141 (patch)
treed5b08e43155abf20c15c8bb242e38cba17f30b08 /sample/sample-config-files
parent0b1a68fffa33e175c320c2828604cdc7dfb097e7 (diff)
downloadopenvpn-513eef4884c9be1fd31ba676dfe34d91a4ce6141.zip
openvpn-513eef4884c9be1fd31ba676dfe34d91a4ce6141.tar.gz
openvpn-513eef4884c9be1fd31ba676dfe34d91a4ce6141.tar.xz
Use tls-auth in sample config files
For two reasons: 1) May motivate people to use tls-auth in their setups 2) Verify tls-auth functionality when running 'make check' Signed-off-by: Steffan Karger <steffan.karger@fox-it.com> Acked-by: Gert Doering <gert@greenie.muc.de> Message-Id: <1424614268-5078-1-git-send-email-steffan.karger@fox-it.com> URL: http://article.gmane.org/gmane.network.openvpn.devel/9467 Signed-off-by: Gert Doering <gert@greenie.muc.de>
Diffstat (limited to 'sample/sample-config-files')
-rw-r--r--sample/sample-config-files/client.conf2
-rw-r--r--sample/sample-config-files/loopback-client1
-rw-r--r--sample/sample-config-files/loopback-server1
-rw-r--r--sample/sample-config-files/server.conf2
4 files changed, 4 insertions, 2 deletions
diff --git a/sample/sample-config-files/client.conf b/sample/sample-config-files/client.conf
index 050ef60..fedcbd6 100644
--- a/sample/sample-config-files/client.conf
+++ b/sample/sample-config-files/client.conf
@@ -105,7 +105,7 @@ remote-cert-tls server
# If a tls-auth key is used on the server
# then every client must also have the key.
-;tls-auth ta.key 1
+tls-auth ta.key 1
# Select a cryptographic cipher.
# If the cipher option is used on the server
diff --git a/sample/sample-config-files/loopback-client b/sample/sample-config-files/loopback-client
index ebbd1cf..7117307 100644
--- a/sample/sample-config-files/loopback-client
+++ b/sample/sample-config-files/loopback-client
@@ -21,5 +21,6 @@ remote-cert-tls server
ca sample-keys/ca.crt
key sample-keys/client.key
cert sample-keys/client.crt
+tls-auth sample-keys/ta.key 1
ping 1
inactive 120 10000000
diff --git a/sample/sample-config-files/loopback-server b/sample/sample-config-files/loopback-server
index 8cb97be..8e1f39c 100644
--- a/sample/sample-config-files/loopback-server
+++ b/sample/sample-config-files/loopback-server
@@ -21,5 +21,6 @@ dh sample-keys/dh2048.pem
ca sample-keys/ca.crt
key sample-keys/server.key
cert sample-keys/server.crt
+tls-auth sample-keys/ta.key 0
ping 1
inactive 120 10000000
diff --git a/sample/sample-config-files/server.conf b/sample/sample-config-files/server.conf
index 701be3c..c85ca0f 100644
--- a/sample/sample-config-files/server.conf
+++ b/sample/sample-config-files/server.conf
@@ -241,7 +241,7 @@ keepalive 10 120
# a copy of this key.
# The second parameter should be '0'
# on the server and '1' on the clients.
-;tls-auth ta.key 0 # This file is secret
+tls-auth ta.key 0 # This file is secret
# Select a cryptographic cipher.
# This config item must be copied to