personal/implr: more vpn
Change-Id: I4918a7b7fbae3da71e61a23e7f5fbe37e5db61f8
diff --git a/personal/implr/vpn/vpn.jsonnet b/personal/implr/vpn/vpn.jsonnet
index 3f39231..c467c5e 100644
--- a/personal/implr/vpn/vpn.jsonnet
+++ b/personal/implr/vpn/vpn.jsonnet
@@ -19,7 +19,27 @@
keepalive 10 60
persist-tun
persist-key
- compress lz4
+ cipher AES-256-CBC
+ dh none
+ ca /mnt/pki/ca.crt
+ cert /mnt/pki/tls.crt
+ key /mnt/pki/tls.key
+ |||
+ }
+ },
+ curssys: vpn.Server("openvpn-implr-curssys", 11224, top.tls) {
+ cfg+: {
+ namespace: "implr-vpn",
+ configFile: |||
+ dev tun
+ tmp-dir /dev/shm/
+ proto udp
+ port 11224
+ topology subnet
+ server 172.20.1.0 255.255.255.0
+ keepalive 10 60
+ persist-tun
+ persist-key
cipher AES-256-CBC
dh none
ca /mnt/pki/ca.crt
@@ -33,5 +53,7 @@
kektop: vpn.Client("kektop", top.servers.praisethesun),
admin1: vpn.Client("admin1", top.servers.praisethesun),
desk1: vpn.Client("desk1", top.servers.praisethesun),
+ desk2: vpn.Client("desk2", top.servers.curssys),
+ thonk: vpn.Client("thonk", top.servers.curssys),
}
}