##############################################
# Sample client-side OpenVPN 2.0 config file #
#                                            #
# This file is only written for OpenVPN      #
# client application to connect to GWN7000   #
# OpenVPN server. This file has only been    #
# tested with Ubuntu Network-Manager-OpenVPN-#
# -Gnome. Please make sure that you have     #
# modified it according to your GWN7000      #
# server configuration, before you load it   #
# to your openvpn client application.        #
##############################################

client

# GWN7000 uses TUN mode. 
# Please keep it as TUN. 
;dev tap0
dev tun

# <==NEED CONFIG!!! MATCH "Protocol"
# Are we connecting to a TCP or
# UDP server?  Use the same setting as
# on the GWN7000 server protocol.
;proto tcp
proto udp

# <==NEED CONFIG!!!
# The hostname/IP and port of the server.
# example
# remote a.b.c.d 1194
# or remote www.mygwn.com 1194
remote 192.168.1.1 1194

# Keep trying indefinitely to resolve the
# host name of the OpenVPN server.  Very useful
# on machines which are not permanently connected
# to the internet such as laptops.
;resolv-retry infinite

# Most clients don't need to bind to
# a specific local port number.
nobind

# Try to preserve some state across restarts.
persist-key
persist-tun

# Wireless networks often produce a lot
# of duplicate packets.  Set this flag
# to silence duplicate packet warnings.
;mute-replay-warnings

# <==NEED CONFIG!!!
# SSL/TLS parms.
# Download your certificates from GWN7000's
# Cet. Manager.
# Please make sure the path of those three files
# can be reached. 
ca /home/user/Downloads/ca.crt
cert /home/user/Downloads/client.crt
key /home/user/Downloads/client.key

# Verify server certificate by checking
# that the certicate has the nsCertType
# field set to "server".  This is an
# important precaution to protect against
# a potential attack.
;remote-cert-tls server

# <==NEED CONFIG!!! MATCH "TLS Authentication"
# If a tls-auth key is used on the server
# then every client must also have the key.
;tls-auth /home/user/Downloads/ta.key 1

# <==NEED CONFIG!!! MATCH "Encryption Algorithm"
# Select a cryptographic cipher.
# If the cipher option is used on the server
# then you must also specify it here.
# example:
# cipher AES-256-CBC
;cipher x

# <==NEED CONFIG!!!
# Configure compression on the VPN link.
# GWN7000 has LZO Compression enabled 
# as default.
comp-lzo

# Set log file verbosity.
verb 3

# Silence repeating messages
;mute 20