blob: 977c579e5db59669cd7374b447488d0b13774b03 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
|
#############################
## multi connection support #
#############################
## control host for multi-client support
## This enables multi-connection support and splits configuration files per client
## Make sure to use a unique port for each server, when runnig multiple servers
control-host 127.0.0.1:4444
#############################
## Main options #
#############################
## device type tun = ip/ipv6, tap = ethernet
type tun
## payload encryption algorithm
#cipher null
#cipher aes-ctr-128
#cipher aes-ctr-192
#cipher aes-ctr-256
cipher aes-ctr
## message authentication algorithm
#auth-algo null
auth-algo sha1
##message auth tag length
#auth-tag-length 10
## local ip address to bind to (for tunnel data)
## (if you run an anycast cluster this has to be the anycast ip address)
#interface <ip-address>
## local port to bind to (for tunnel data)
## make sure to use a different port for every server and client!
port 4444
#############################
## Debug options #
#############################
## don't run in background
#nodaemonize
## additional log to standard output with a level of 5
#log stdout:5
#############################
## Expert options #
#############################
## log to syslog with a level of 3
log syslog:3,anytun-server,daemon
## change user and group after init
username anytun
groupname anytun
## chroot to /var/run/anytun
#chroot /var/run/anytun
## key derivation pseudo random function
#kd-prf null
#kd-prf aes-ctr
#kd-prf aes-ctr-128
#kd-prf aes-ctr-192
#kd-prf aes-ctr-256
## Device name
#dev anytun0
## Automaticaly configure the interface an set a route
##
## We highly recommend the use of the post up script to do this
##
## the address hast to be supplied in CIDR notation
#ifconfig <local>/<prefix length>
#############################
## Cluster options #
#############################
## the sender id to use (has to be unique for multiple anycast servers)
#sender-id 1
## local unicast(sync) ip address to bind to
#sync-interface <ip-address>
## local unicast(sync) port to bind to
#sync-port 1234
## remote hosts to sync with
#sync-hosts <hostname|ip>:<port>[,<hostname|ip>:<port>[...]]
|
