From 72a7eacbd42df6af5089666c840a0b82170d42cf Mon Sep 17 00:00:00 2001
From: Valentin Samir <valentin.samir@crans.org>
Date: Sun, 26 May 2013 17:07:09 +0200
Subject: [PATCH] =?UTF-8?q?[openvpn]=20utilisation=20du=20verify-cn=20de?=
 =?UTF-8?q?=20/usr/scripts=20et=20r=C3=A9duction=20de=20la=20mtu?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 Cfg/etc/openvpn/ovh.conf/ovh.conf | 3 ++-
 etc/python/template/openvpn.py    | 3 ++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/Cfg/etc/openvpn/ovh.conf/ovh.conf b/Cfg/etc/openvpn/ovh.conf/ovh.conf
index f438ff5..378d642 100644
--- a/Cfg/etc/openvpn/ovh.conf/ovh.conf
+++ b/Cfg/etc/openvpn/ovh.conf/ovh.conf
@@ -9,12 +9,13 @@ mode server
 tls-server
 ca /etc/ssl/certs/cacert.org.pem
 cert /etc/ssl/certs/vpn.pem
-tls-verify "/usr/share/openvpn/verify-cn ovh.vpn.crans.org"
+tls-verify "/usr/scripts/utils/verify-cn ovh.vpn.crans.org"
 key /etc/ssl/private/vpn.pem
 
 log-append /var/log/openvpn/ovh.log
 
 port 1194
+fragment 1400
 
 # Du cote crans, le vpn reste toujours actif
 keepalive 15 45
diff --git a/etc/python/template/openvpn.py b/etc/python/template/openvpn.py
index 44f0dec..edcb64c 100644
--- a/etc/python/template/openvpn.py
+++ b/etc/python/template/openvpn.py
@@ -11,12 +11,13 @@ dev tun-%(remote_name)s
 tls-client
 ca /etc/ssl/certs/cacert.org.pem
 cert /etc/ssl/certs/vpn.pem
-tls-verify "/usr/share/openvpn/verify-cn %(remote_name)s.vpn.crans.org"
+tls-verify "/usr/scripts/utils/verify-cn %(remote_name)s.vpn.crans.org"
 key /etc/ssl/private/vpn.pem
 
 log-append /var/log/openvpn/%(remote_name)s.log
 
 port 1194
+fragment 1400
 
 ifconfig %(local_vpn_ip)s %(remote_vpn_ip)s
 route 10.231.136.0 255.255.255.0 vpn_gateway