mirror of
https://pagure.io/fedora-infra/ansible.git
synced 2026-05-01 22:11:01 +08:00
7e084f5140
Deploy openvpn client on each node with a router.
OpenVPN certs needs to be available for each node in
/srv/private/ansible/files/vpn/pki/issued/$hostname.{crt,key}
26 lines
254 B
Plaintext
26 lines
254 B
Plaintext
client
|
|
|
|
dev tun
|
|
|
|
proto udp
|
|
|
|
# Specify multiple vpn servers here
|
|
remote gateway
|
|
remote bastion02
|
|
remote bastion-iad01
|
|
|
|
resolv-retry infinite
|
|
|
|
nobind
|
|
|
|
persist-key
|
|
persist-tun
|
|
|
|
ca ssl/ca.crt
|
|
cert ssl/client.crt
|
|
key ssl/client.key
|
|
|
|
comp-lzo
|
|
|
|
keepalive 10 60
|