From 5b6da895b974c2272374a961d40619fa013a8432 Mon Sep 17 00:00:00 2001
From: Jon Santmyer <jon@jonsantmyer.com>
Date: Sat, 23 Sep 2023 18:20:59 -0400
Subject: fix openvpn config?

---
 programs/openvpn.nix | 28 +++++++++++++++++++++++++++-
 1 file changed, 27 insertions(+), 1 deletion(-)

(limited to 'programs')

diff --git a/programs/openvpn.nix b/programs/openvpn.nix
index 5f1c198..e4f396d 100644
--- a/programs/openvpn.nix
+++ b/programs/openvpn.nix
@@ -3,7 +3,33 @@
     services.openvpn = {
         servers = {
             MulladVPN-US-Miami = {
-                config = builtins.readFile ../secrets/mullvad_us_mia/mullvad_us_mia.conf
+                config = ''
+client
+dev tun
+resolv-retry infinite
+nobind
+persist-key
+persist-tun
+verb 3
+remote-cert-tls server
+ping 10
+ping-restart 60
+sndbuf 524288
+rcvbuf 524288
+cipher AES-256-GCM
+tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384
+proto udp
+auth-user-pass /etc/nixos/secrets/mullvad_us_mia/mullvad_userpass.txt
+ca /etc/nixos/secrets/mullvad_us_mia/mullvad_ca.crt
+tun-ipv6
+script-security 2
+up /etc/nixos/secrets/mullvad_us_mia/update-resolv-conf
+down /etc/nixos/secrets/mullvad_us_mia/update-resolv-conf
+fast-io
+remote-random
+remote 146.70.187.194 1302 # us-mia-ovpn-101
+remote 146.70.183.66 1302 # us-mia-ovpn-102
+                '';
             };
         };
     };
-- 
cgit v1.2.1