fix openvpn3 install

jometzner · Mar 26, 2024 · 7fac1fe · 7fac1fe
1 parent d8fc281
commit 7fac1fe
Show file tree

Hide file tree

Showing 2 changed files with 120 additions and 3 deletions.
diff --git a/.chezmoiscripts/run_once_before_03-install-openvpn.sh.tmpl b/.chezmoiscripts/run_once_before_03-install-openvpn.sh.tmpl
@@ -5,8 +5,6 @@
 {{- if (eq .chezmoi.os "linux") -}}
 #!/bin/bash
 {{ if (eq .chezmoi.osRelease.id "fedora") -}}
-{{ $sudo }}dnf copr enable dsommers/openvpn3 && {{ $sudo }}dnf install -y openvpn3-client
-keeper --config ~/config.json download-attachment --out-dir .system-connections Arbeit/Indi/INDI.ovpn
-openvpn3 config-import --config .system-connections/INDI.ovpn --name INDI --persistent
+{{ $sudo }}dnf copr enable dsommers/openvpn3-devsnapshots && {{ $sudo }}dnf install -y openvpn3-client
 {{ end -}}
 {{- end -}}
diff --git a/dot_system-connections/INDI.ovpn.tmpl b/dot_system-connections/INDI.ovpn.tmpl
@@ -0,0 +1,119 @@
+<ca>
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+</ca>
+
+<cert>
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+</cert>
+
+cipher AES-128-CBC
+client
+comp-lzo no
+dev tun
+dev-type tun
+<key>
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----
+</key>
+
+key-direction 1
+nobind
+ns-cert-type server
+rcvbuf 0
+remote 52.210.70.205 1194 udp
+remote 52.210.70.205 1194 udp
+remote 52.210.70.205 443 tcp
+remote 52.210.70.205 1194 udp
+remote 52.210.70.205 1194 udp
+remote 52.210.70.205 1194 udp
+remote 52.210.70.205 1194 udp
+remote 52.210.70.205 1194 udp
+reneg-sec 604800
+server-poll-timeout 4
+setenv PUSH_PEER_INFO
+sndbuf 0
+<tls-auth>
+#
+# 2048 bit OpenVPN static key (Server Agent)
+#
+-----BEGIN OpenVPN Static key V1-----
+92e88bdf42c6d4956cdbdacdbca82ed5
+62918ef92ed8c63b24260c7a06aaa795
+b9ec788f6b743064bfbd99f7dae4bf48
+8936b14e399918db508d9b8db314a92b
+92ffb863a3d93029e2cd4642b7d2bf84
+83047c48d845288c73007273ac4b061b
+71018fd4031556ad6af68768fc7bd498
+09e0f2d386b375b9c45bbc528538ab50
+da191fd6a27e3b8a406089129d3ce911
+d0b67cd17c20a2505fa559d1cee71d31
+9c0be7f2086df850b06ae8365b7b6f8d
+60d85b9a8dff8deda57f515c9d22cb79
+ab5b9c361c43f8897ab6e6ad0459285b
+7d5662647d418c91feab622e2740c9cf
+48da325f9fb9cdb20db57565429f5bf1
+5eb9c4b154a277c21c029f3efcdfa7e3
+-----END OpenVPN Static key V1-----
+</tls-auth>
+
+verb 3
+