WARNING: This feature is experimental and modifies your optional interface configuration. Backup your configuration before using OpenVPN, and restore it before upgrading.
 

Disabled	> Disable this client Set this option to disable this client without removing it from the list.
Server information
Address	Enter the server's IP address or FQDN.
Port	Enter the server's port number (default is 1194).
Version	> 2.0  > 1.x Specify which version of the OpenVPN protocol the server runs.
Description	You may enter a description here for your reference (not parsed).
Cryptographic options
Authentication method	$methodname): ?> > Must match the setting chosen on the remote side.
CA certificate	<?=htmlspecialchars(base64_decode($pconfig['ca_cert']));?> Paste a CA certificate in X.509 PEM format here.
Client certificate	<?=htmlspecialchars(base64_decode($pconfig['cli_cert']));?> Paste a client certificate in X.509 PEM format here.
Client key	<?=htmlspecialchars(base64_decode($pconfig['cli_key']));?> Paste the client RSA private key here.
Crypto	$value){ ?> > Select the data channel encryption cipher. This must match the setting on the server.
nsCertType	> nsCertType Require that peer certificate was signed with an explicit nsCertType designation of "server". This is a useful security option for clients, to ensure that the host they connect with is a designated server.
TLS auth	> TLS auth The tls-auth directive adds an additional HMAC signature to all SSL/TLS handshake packets for integrity verification.
Pre-shared secret	<?=htmlspecialchars(base64_decode($pconfig['pre-shared-key']));?> Paste your own pre-shared secret here.
Client configuration
Tunnel type	> TUN  > TAP
Tunnel protocol	> UDP  > TCP Important: These settings must match the server's configuration.
Interface	Auto
Port	Auto
Bridge with	value="">none "LAN", 'wan' => "WAN"); for ($i = 1; isset($config['interfaces']['opt' . $i]); $i++) { if ($i != $index && !($config['interfaces']['opt' . $i]['ovpn'])) $opts['opt' . $i] = "Optional " . $i . " (" . $config['interfaces']['opt' . $i]['descr'] . ")"; } foreach ($opts as $opt => $optname): ?> value=""> Only supported with authentication method set to RSA signature.
OpenVPN address assignment	When using pre-shared keys, enter the IP address and subnet mask of the local and remote VPN endpoint here. For TAP devices, only the IP address of the local VPN endpoint is needed. The netmask is the subnet mask of the virtual ethernet segment which is being created or connected to. Local IP address:   / 19; $i--): ?> > Remote IP address:
Client Options
Pull Options	> Client-pull This option must be used on a client which is connecting to a multi-client server. It indicates to OpenVPN that it should accept options pushed by the server, provided they are part of the legal set of pushable options.
Compression method	value="">none 'LZO', 'noadapt' => 'LZO (no adaptive)'); foreach($compression_method as $comp_method => $comp_methodname): ?> > Choose which compression method to use. LZO compression generally improves performance on slow links, but may add up to 1 byte per packet for incompressible data. With adaptive compression, OpenVPN will periodically sample the compression process to measure its efficiency. If the data being sent over the tunnel is already compressed, the compression efficiency will be very low. Choose 'LZO (no adaptive)' to disable OpenVPN's adaptive compression algorithm.
Expert mode	> Enable expert OpenVPN mode If this option is on, you can specify your own extra commands for the OpenVPN server. <?=htmlspecialchars($pconfig['expertmode_options']);?> Note: Commands in expert mode aren't supported.