port 1194
proto udp
dev tun0
ca /etc/openvpn/rsa/keys/ca.crt
cert /etc/openvpn/rsa/keys/vpn.example.com.crt
key /etc/openvpn/rsa/keys/vpn.example.com.key
dh /etc/openvpn/rsa/keys/dh2048.pem
server 192.168.5.0 255.255.255.0
cipher AES-256-CBC
user nobody
group nogroup
status /etc/openvpn/vpn.example.com.status
log-append /etc/openvpn/vpn.example.com.log
verb 2
mute 20
max-clients 100
management 127.0.0.1 7505
keepalive 10 120
tls-server
comp-lzo
persist-key
persist-tun
float
plugin /usr/lib/openvpn/openvpn-auth-ldap.so "/etc/openvpn/vpn.example.com.ldap"
push "route 192.168.1.0 255.255.255.0"
push "dhcp-option DNS 192.168.1.21"
push "dhcp-option DNS 192.168.1.22"
push "dhcp-option DOMAIN example.com"
replay-window 128 40