i have up/down scripts that mostly seem unnecessary since NM will bring up the tap0 interface, but the resolv.conf work is something i want to continue using. i manually edited the .nmconnection file, to add the up and down directives, but those are unsupported. how do i use the scripts capability of OpenVPN, if NM cannot use them? if it matters, configs for server and client are below.
Server Config
1
mode server
2
tls-server
3
local host.domain.tld
4
port 1194
5
management 127.0.0.1 7505
6
proto udp
7
dev mktun
8
dev tap0
9
script-security 2
10
up TapUp.sh
11
ca ca.crt
12
cert sslvpn.crt
13
key sslvpn.key
14
tls-crypt tls-auth.key
15
dh dh.pem
16
cipher AES-256-CBC
17
askpass phrase
18
keysize 256
19
auth sha256
20
server-bridge
21
push "redirect-gateway def1"
22
push "route-gateway dhcp"
23
passtos
24
keepalive 10 120
25
fast-io
26
user nobody
27
group nobody
28
ping-timer-rem
29
persist-tun
30
persist-key
31
verb 4
32
mute 20
Client Config
1
client
2
dev tap
3
proto udp
4
remote internal.domain.tld
5
float
6
port 1194
7
resolv-retry infinite
8
keepalive 10 120
9
ping-timer-rem
10
lladdr 56:fd:c0:7d:xx:yy
11
persist-tun
12
persist-key
13
ca ca.crt
14
cert host.crt
15
key hostkey
16
tls-crypt tls-auth.key
17
remote-cert-tls server
18
auth sha256
19
auth-user-pass creds
20
askpass phrase
21
auth-nocache
22
route-delay 10
23
script-security 2
24
up "up.sh"
25
down "down.sh"
26
pull
27
verb 4
28
mute 20