# Specify that we are a client and that we will be pulling certain
# config file directives from the server.
client

# On most systems, the VPN will not function unless you partially or
# fully disable the firewall for the TUN/TAP interface.
dev tun

# Windows needs the TAP-Win32 adapter name from the Network
# Connections panel if you have more than one.  On XP SP2, you may
# need to disable the firewall for the TAP adapter.
;dev-node MyTap

proto udp

# The hostname/IP and port of the server.
# It's better if you use an IP address here, in case the tunnel gets 
# forcefully closed and this hostname is set to be resolved from a
# nameserver on the other side of the tunnel.
remote clink.acm.uiuc.edu 1194

# Keep trying indefinitely to resolve the host name of the OpenVPN
# server.  Very useful on machines which are not permanently connected
# to the internet such as laptops.
resolv-retry infinite

# Most clients don't need to bind to a specific local port number.
nobind

# Try to preserve some state across restarts.
persist-key
persist-tun

# If you are connecting through an HTTP proxy to reach the actual
# OpenVPN server, put the proxy server/IP and port number here.  See
# the man page if your proxy server requires authentication.
;http-proxy-retry # retry on connection failures
;http-proxy [proxy server] [proxy port #]

# Wireless networks often produce a lot of duplicate packets.  Set
# this flag to silence duplicate packet warnings.
;mute-replay-warnings

# SSL/TLS parms.
cd .openvpn
ca acm-ca.crt
cert acm-client.crt
key acm-client.key
auth-user-pass

up "./acm-client.py up"
down "./acm-client.py down"

# Verify server certificate by checking that the certicate has the
# nsCertType field set to "server".  This is an important precaution
# to protect against a potential attack discussed here:
# http://openvpn.net/howto.html#mitm
ns-cert-type server

# Select a cryptographic cipher.
cipher BF-CBC

# Enable compression on the VPN link.
comp-lzo

# Set log file verbosity.
verb 3

# Silence repeating messages
mute 20