summaryrefslogtreecommitdiff
path: root/host/role/conf/vpn/kit.ovpn.nix
diff options
context:
space:
mode:
authorAdrian Kummerlaender2018-09-21 17:49:51 +0200
committerAdrian Kummerlaender2018-09-21 17:49:51 +0200
commit0024a2ca7918be83ad812b02348cb49dd2ff2d57 (patch)
tree53e12738aa868fa7025083fd90df9ff0d524d8e9 /host/role/conf/vpn/kit.ovpn.nix
parent7de3c3bee50247cd3a1102a5eab0d8ebb9ca0432 (diff)
downloadnixos_system-0024a2ca7918be83ad812b02348cb49dd2ff2d57.tar
nixos_system-0024a2ca7918be83ad812b02348cb49dd2ff2d57.tar.gz
nixos_system-0024a2ca7918be83ad812b02348cb49dd2ff2d57.tar.bz2
nixos_system-0024a2ca7918be83ad812b02348cb49dd2ff2d57.tar.lz
nixos_system-0024a2ca7918be83ad812b02348cb49dd2ff2d57.tar.xz
nixos_system-0024a2ca7918be83ad812b02348cb49dd2ff2d57.tar.zst
nixos_system-0024a2ca7918be83ad812b02348cb49dd2ff2d57.zip
Add basic automatix config
Extract desktop-specific settings that are shared by asterix and obelix into desktop role.
Diffstat (limited to 'host/role/conf/vpn/kit.ovpn.nix')
-rw-r--r--host/role/conf/vpn/kit.ovpn.nix19
1 files changed, 19 insertions, 0 deletions
diff --git a/host/role/conf/vpn/kit.ovpn.nix b/host/role/conf/vpn/kit.ovpn.nix
new file mode 100644
index 0000000..82a21ee
--- /dev/null
+++ b/host/role/conf/vpn/kit.ovpn.nix
@@ -0,0 +1,19 @@
+# adapted from https://www.scc.kit.edu/scc/net/openvpn/os/debian/kit.ovpn
+
+''
+client
+remote 141.52.8.20
+port 1194
+dev tun
+proto udp
+auth-user-pass
+nobind
+comp-lzo no
+tls-version-min 1.2
+ca ${./T-TeleSec_GlobalRoot_Class_2.pem}
+verify-x509-name "C=DE, ST=Baden-Wuerttemberg, L=Karlsruhe, O=Karlsruhe Institute of Technology, OU=Steinbuch Centre for Computing, CN=ovpn.scc.kit.edu" subject
+cipher AES-256-CBC
+auth SHA384
+verb 3
+script-security 2
+''