Code: Select all
client
dev tun2
proto udp
remote XXX.XXX.XXX.XXX 1194 #public IP removed
cipher AES-128-CBC
auth sha256
compress lzo
key-direction 1
gateway-redirect def1
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
float
Code: Select all
port 1194
proto udp
cipher AES-128-CBC
auth sha256
push "route 192.168.1.0 255.255.255.0"
push "dhcp-option DNS 192.168.1.1"
push "dhcp-option DNS 8.8.8.8"
keepalive 10 120
push "redirect-gateway def1"
Code: Select all
iptables -I INPUT 1 -p udp --dport 1194 -j ACCEPT
iptables -I FORWARD 1 --source 192.168.1.0/24 -j ACCEPT
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -j MASQUERADE