Skip to content

Commit 23455bb

Browse files
disaacdisaac
committed
Adding CRL verify to server.conf
Adding CRL verify to server.conf
1 parent 7fc8428 commit 23455bb

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

certs/templates/user_data.tpl

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -3,6 +3,7 @@
33
## https://github.com/WhistleLabs/terraform-aws-openvpn/pull/2
44
runcmd:
55
- echo "OPENVPN_CERT_SOURCE=s3://${replace(s3_bucket,"/(/)+$/","")}/${replace(s3_bucket_prefix,"/^(/)+|(/)+$/","")}" > /etc/openvpn/get-openvpn-certs.env
6+
- echo 'crl-verify /etc/openvpn/keys/crl.pem' >> /etc/openvpn/server.conf
67
- echo "push \"route $(ip route get 8.8.8.8| grep src| sed 's/.*src \(.*\)$/\1/g') 255.255.255.255 net_gateway\"" >> /etc/openvpn/server.conf
78
- echo "push \"route ${cidrhost(element(split(",",route_cidrs),1), 0)} ${cidrnetmask(element(split(",",route_cidrs),1))}\"" >> /etc/openvpn/server.conf
89
- echo "push \"route ${cidrhost(element(split(",",route_cidrs),2), 0)} ${cidrnetmask(element(split(",",route_cidrs),2))}\"" >> /etc/openvpn/server.conf

0 commit comments

Comments
 (0)