-
Notifications
You must be signed in to change notification settings - Fork 24
/
Copy pathvpn_server.config
520 lines (511 loc) · 16.1 KB
/
vpn_server.config
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
# Software Configuration File
# ---------------------------
#
# You may edit this file when the VPN Server / Client / Bridge program is not running.
#
# In prior to edit this file manually by your text editor,
# shutdown the VPN Server / Client / Bridge background service.
# Otherwise, all changes will be lost.
#
declare root
{
uint ConfigRevision 95
bool IPsecMessageDisplayed true
string Region CN
bool VgsMessageDisplayed false
declare DDnsClient
{
bool Disabled false
byte Key g1BdyN5X622Snle9p8YBPddcU1Q=
string LocalHostname iZrdexu0tgixeaZ
string ProxyHostName $
uint ProxyPort 0
uint ProxyType 0
string ProxyUsername $
}
declare IPsec
{
bool EtherIP_IPsec false
string IPsec_Secret vpn
string L2TP_DefaultHub VPN
bool L2TP_IPsec true
bool L2TP_Raw true
declare EtherIP_IDSettingsList
{
}
}
declare ListenerList
{
declare Listener0
{
bool DisableDos false
bool Enabled true
uint Port 443
}
declare Listener1
{
bool DisableDos false
bool Enabled true
uint Port 992
}
declare Listener2
{
bool DisableDos false
bool Enabled true
uint Port 1194
}
declare Listener3
{
bool DisableDos false
bool Enabled true
uint Port 5555
}
}
declare LocalBridgeList
{
bool EnableSoftEtherKernelModeDriver true
bool ShowAllInterfaces false
}
declare ServerConfiguration
{
bool AcceptOnlyTls true
uint64 AutoDeleteCheckDiskFreeSpaceMin 8589934592
uint AutoDeleteCheckIntervalSecs 300
uint AutoSaveConfigSpan 300
bool BackupConfigOnlyWhenModified true
string CipherName AES128-SHA
uint CurrentBuild 9666
bool DisableCoreDumpOnUnix false
bool DisableDeadLockCheck false
bool DisableDosProction false
bool DisableGetHostNameWhenAcceptTcp false
bool DisableIntelAesAcceleration false
bool DisableIPv6Listener false
bool DisableNatTraversal false
bool DisableOpenVPNServer false
bool DisableSessionReconnect false
bool DisableSSTPServer false
bool DontBackupConfig false
bool EnableVpnAzure false
bool EnableVpnOverDns false
bool EnableVpnOverIcmp false
byte HashedPassword T3l8YIyrSgBQFEffjuiDPzY+p9M=
string KeepConnectHost keepalive.softether.org
uint KeepConnectInterval 50
uint KeepConnectPort 80
uint KeepConnectProtocol 1
uint64 LoggerMaxLogSize 1073741823
uint MaxConcurrentDnsClientThreads 512
uint MaxConnectionsPerIP 256
uint MaxUnestablishedConnections 1000
bool NoDebugDump false
bool NoHighPriorityProcess false
bool NoSendSignature false
string OpenVPNDefaultClientOption dev-type$20tun,link-mtu$201500,tun-mtu$201500,cipher$20AES-128-CBC,auth$20SHA1,keysize$20128,key-method$202,tls-client
string OpenVPN_UdpPortList 23,$2053,$2067,$2068,$2069
bool SaveDebugLog false
byte ServerCert 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
byte ServerKey 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
uint ServerLogSwitchType 4
uint ServerType 0
bool StrictSyslogDatetimeFormat false
bool Tls_Disable1_0 false
bool Tls_Disable1_1 false
bool Tls_Disable1_2 false
bool UseKeepConnect true
bool UseWebTimePage false
bool UseWebUI false
declare GlobalParams
{
uint FIFO_BUDGET 10240000
uint HUB_ARP_SEND_INTERVAL 5000
uint IP_TABLE_EXPIRE_TIME 60000
uint IP_TABLE_EXPIRE_TIME_DHCP 300000
uint MAC_TABLE_EXPIRE_TIME 600000
uint MAX_BUFFERING_PACKET_SIZE 2560000
uint MAX_HUB_LINKS 1024
uint MAX_IP_TABLES 65536
uint MAX_MAC_TABLES 65536
uint MAX_SEND_SOCKET_QUEUE_NUM 128
uint MAX_SEND_SOCKET_QUEUE_SIZE 2560000
uint MAX_STORED_QUEUE_NUM 1024
uint MEM_FIFO_REALLOC_MEM_SIZE 655360
uint MIN_SEND_SOCKET_QUEUE_SIZE 320000
uint QUEUE_BUDGET 2048
uint SELECT_TIME 256
uint SELECT_TIME_FOR_NAT 30
uint STORM_CHECK_SPAN 500
uint STORM_DISCARD_VALUE_END 1024
uint STORM_DISCARD_VALUE_START 3
}
declare ServerTraffic
{
declare RecvTraffic
{
uint64 BroadcastBytes 205824121
uint64 BroadcastCount 3282252
uint64 UnicastBytes 523598245525
uint64 UnicastCount 667879493
}
declare SendTraffic
{
uint64 BroadcastBytes 387003961
uint64 BroadcastCount 5792980
uint64 UnicastBytes 523798244984
uint64 UnicastCount 668657440
}
}
declare SyslogSettings
{
string HostName $
uint Port 0
uint SaveType 0
}
}
declare VirtualHUB
{
declare VPN
{
uint64 CreatedTime 1568892352984
byte HashedPassword +WzqGYrR3VYXrAhKPZLGEHcIwO8=
uint64 LastCommTime 1574647674266
uint64 LastLoginTime 1574647505735
uint NumLogin 2661
bool Online true
bool RadiusConvertAllMsChapv2AuthRequestToEap false
string RadiusRealm $
uint RadiusRetryInterval 0
uint RadiusServerPort 1812
string RadiusSuffixFilter $
bool RadiusUsePeapInsteadOfEap false
byte SecurePassword bpw3X/O5E8a6G6ccnl4uXmDtkwI=
uint Type 0
declare AccessList
{
}
declare AdminOption
{
uint allow_hub_admin_change_option 0
uint deny_bridge 0
uint deny_change_user_password 0
uint deny_empty_password 0
uint deny_hub_admin_change_ext_option 0
uint deny_qos 0
uint deny_routing 0
uint max_accesslists 0
uint max_bitrates_download 0
uint max_bitrates_upload 0
uint max_groups 0
uint max_multilogins_per_user 0
uint max_sessions 0
uint max_sessions_bridge 0
uint max_sessions_client 0
uint max_sessions_client_bridge_apply 0
uint max_users 0
uint no_access_list_include_file 0
uint no_cascade 0
uint no_change_access_control_list 0
uint no_change_access_list 0
uint no_change_admin_password 0
uint no_change_cert_list 0
uint no_change_crl_list 0
uint no_change_groups 0
uint no_change_log_config 0
uint no_change_log_switch_type 0
uint no_change_msg 0
uint no_change_users 0
uint no_delay_jitter_packet_loss 0
uint no_delete_iptable 0
uint no_delete_mactable 0
uint no_disconnect_session 0
uint no_enum_session 0
uint no_offline 0
uint no_online 0
uint no_query_session 0
uint no_read_log_file 0
uint no_securenat 0
uint no_securenat_enabledhcp 0
uint no_securenat_enablenat 0
}
declare CascadeList
{
}
declare LogSetting
{
uint PacketLogSwitchType 4
uint PACKET_LOG_ARP 0
uint PACKET_LOG_DHCP 1
uint PACKET_LOG_ETHERNET 0
uint PACKET_LOG_ICMP 0
uint PACKET_LOG_IP 0
uint PACKET_LOG_TCP 0
uint PACKET_LOG_TCP_CONN 1
uint PACKET_LOG_UDP 0
bool SavePacketLog true
bool SaveSecurityLog true
uint SecurityLogSwitchType 4
}
declare Message
{
}
declare Option
{
uint AccessListIncludeFileCacheLifetime 30
uint AdjustTcpMssValue 0
bool ApplyIPv4AccessListOnArpPacket false
bool AssignVLanIdByRadiusAttribute false
bool BroadcastLimiterStrictMode false
uint BroadcastStormDetectionThreshold 0
uint ClientMinimumRequiredBuild 0
bool DenyAllRadiusLoginWithNoVlanAssign false
uint DetectDormantSessionInterval 0
bool DisableAdjustTcpMss false
bool DisableCheckMacOnLocalBridge false
bool DisableCorrectIpOffloadChecksum false
bool DisableHttpParsing false
bool DisableIPParsing false
bool DisableIpRawModeSecureNAT false
bool DisableKernelModeSecureNAT false
bool DisableUdpAcceleration false
bool DisableUdpFilterForLocalBridgeNic false
bool DisableUserModeSecureNAT false
bool DoNotSaveHeavySecurityLogs false
bool DropArpInPrivacyFilterMode true
bool DropBroadcastsInPrivacyFilterMode true
bool FilterBPDU false
bool FilterIPv4 false
bool FilterIPv6 false
bool FilterNonIP false
bool FilterOSPF false
bool FilterPPPoE false
uint FloodingSendQueueBufferQuota 33554432
bool ManageOnlyLocalUnicastIPv6 true
bool ManageOnlyPrivateIP true
uint MaxLoggedPacketsPerMinute 0
uint MaxSession 0
bool NoArpPolling false
bool NoDhcpPacketLogOutsideHub true
bool NoEnum false
bool NoIpTable false
bool NoIPv4PacketLog false
bool NoIPv6AddrPolling false
bool NoIPv6DefaultRouterInRAWhenIPv6 true
bool NoIPv6PacketLog false
bool NoLookBPDUBridgeId false
bool NoMacAddressLog true
bool NoManageVlanId false
bool NoPhysicalIPOnPacketLog false
bool NoSpinLockForPacketDelay false
bool RemoveDefGwOnDhcpForLocalhost true
uint RequiredClientId 0
uint SecureNAT_MaxDnsSessionsPerIp 0
uint SecureNAT_MaxIcmpSessionsPerIp 0
uint SecureNAT_MaxTcpSessionsPerIp 0
uint SecureNAT_MaxTcpSynSentPerIp 0
uint SecureNAT_MaxUdpSessionsPerIp 0
bool SecureNAT_RandomizeAssignIp false
bool SuppressClientUpdateNotification false
bool UseHubNameAsDhcpUserClassOption false
bool UseHubNameAsRadiusNasId false
string VlanTypeId 0x8100
bool YieldAfterStorePacket false
}
declare SecureNAT
{
bool Disabled false
bool SaveLog true
declare VirtualDhcpServer
{
string DhcpDnsServerAddress 192.168.30.1
string DhcpDnsServerAddress2 114.114.114.114
string DhcpDomainName $
bool DhcpEnabled true
uint DhcpExpireTimeSpan 7200
string DhcpGatewayAddress 192.168.30.1
string DhcpLeaseIPEnd 192.168.30.200
string DhcpLeaseIPStart 192.168.30.10
string DhcpPushRoutes $
string DhcpSubnetMask 255.255.255.0
}
declare VirtualHost
{
string VirtualHostIp 192.168.30.1
string VirtualHostIpSubnetMask 255.255.255.0
string VirtualHostMacAddress 5E-5D-17-62-D1-B7
}
declare VirtualRouter
{
bool NatEnabled true
uint NatMtu 1500
uint NatTcpTimeout 1800
uint NatUdpTimeout 60
}
}
declare SecurityAccountDatabase
{
declare CertList
{
}
declare CrlList
{
}
declare GroupList
{
}
declare IPAccessControlList
{
}
declare UserList
{
declare 123
{
byte AuthNtLmSecureHash Pb3ml9cWkKdpIEvrEig2eA==
byte AuthPassword RvWna9OV9IbGIkRD3DUQo2Z064M=
uint AuthType 1
uint64 CreatedTime 1568892376859
uint64 ExpireTime 1569056400000
uint64 LastLoginTime 1569055330600
string Note $
uint NumLogin 59
string RealName 123
uint64 UpdatedTime 1569053595148
declare Traffic
{
declare RecvTraffic
{
uint64 BroadcastBytes 3077594
uint64 BroadcastCount 38073
uint64 UnicastBytes 4188232040
uint64 UnicastCount 3671579
}
declare SendTraffic
{
uint64 BroadcastBytes 518886
uint64 BroadcastCount 2642
uint64 UnicastBytes 502555684
uint64 UnicastCount 2481261
}
}
}
declare csw
{
byte AuthNtLmSecureHash XNfirTB1m/arHmcsi9swTg==
byte AuthPassword +Mdr9b1DNgf+aD8UXPyytSPa3xM=
uint AuthType 1
uint64 CreatedTime 1568962452123
uint64 ExpireTime 0
uint64 LastLoginTime 1574647505735
string Note $
uint NumLogin 1822
string RealName csw
uint64 UpdatedTime 1573363907953
declare Traffic
{
declare RecvTraffic
{
uint64 BroadcastBytes 299006171
uint64 BroadcastCount 4827213
uint64 UnicastBytes 454590503102
uint64 UnicastCount 375558061
}
declare SendTraffic
{
uint64 BroadcastBytes 20725922
uint64 BroadcastCount 263630
uint64 UnicastBytes 19733385564
uint64 UnicastCount 220734756
}
}
}
declare ljm
{
uint AuthType 0
uint64 CreatedTime 1569130777351
uint64 ExpireTime 1569220200000
uint64 LastLoginTime 1569215345745
string Note $
uint NumLogin 6
string RealName $
uint64 UpdatedTime 1569215278980
declare Traffic
{
declare RecvTraffic
{
uint64 BroadcastBytes 375385
uint64 BroadcastCount 5626
uint64 UnicastBytes 108332090
uint64 UnicastCount 249046
}
declare SendTraffic
{
uint64 BroadcastBytes 28732
uint64 BroadcastCount 90
uint64 UnicastBytes 18986966
uint64 UnicastCount 177645
}
}
}
declare nieaowei
{
byte AuthNtLmSecureHash eomR57M1XO6s2SIQZBBrew==
byte AuthPassword V7SJsD2cNTj1DgNxFwHhIaYnNMk=
uint AuthType 1
uint64 CreatedTime 1568908825864
uint64 ExpireTime 0
uint64 LastLoginTime 1574264737156
string Note $
uint NumLogin 774
string RealName nieaowei
uint64 UpdatedTime 1568908825864
declare Traffic
{
declare RecvTraffic
{
uint64 BroadcastBytes 53996776
uint64 BroadcastCount 621714
uint64 UnicastBytes 41999186549
uint64 UnicastCount 37783389
}
declare SendTraffic
{
uint64 BroadcastBytes 9310448
uint64 BroadcastCount 34169
uint64 UnicastBytes 2668047606
uint64 UnicastCount 28306397
}
}
}
}
}
declare Traffic
{
declare RecvTraffic
{
uint64 BroadcastBytes 205824121
uint64 BroadcastCount 3282252
uint64 UnicastBytes 523598245525
uint64 UnicastCount 667879493
}
declare SendTraffic
{
uint64 BroadcastBytes 387003961
uint64 BroadcastCount 5792980
uint64 UnicastBytes 523798244984
uint64 UnicastCount 668657440
}
}
}
}
declare VirtualLayer3SwitchList
{
}
declare VPNGate
{
string Abuse $
bool IsEnabled false
bool LogPermanent false
string Message $
bool NoLog false
string Owner iZrdexu0tgixeaZ's$20owner
}
}