История изменений

# general
mode server
port 27772
proto udp
dev tun

# security
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
dh /etc/openvpn/dh2048.pem
tls-auth /etc/openvpn/ta.key 0
cipher AES-128-CBC
auth SHA512
persist-key
persist-tun

# networking (/24 subnet, hostmax - 172.30.5.255)
server 172.30.5.0 255.255.255.0
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo

# client routes
push "redirect-gateway def1"

# logging
verb 3

iptables -t nat -A POSTROUTING -s 172.30.5.0/24 -o eth0 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 172.30.5.0/24 -o eth1 -j MASQUERADE

inet 172.31.17.221/20 brd 172.31.31.255 scope global dynamic eth0
inet 172.31.10.229/24 brd 172.31.10.255 scope global dynamic eth1
inet 172.30.5.1 peer 172.30.5.2/32 scope global tun0

default via 172.31.16.1 dev eth0 
default via 172.31.10.1 dev eth1 metric 10001 

# general
mode server
port 27772
proto udp
dev tun

# security
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
dh /etc/openvpn/dh2048.pem
tls-auth /etc/openvpn/ta.key 0
cipher AES-128-CBC
auth SHA512
persist-key
persist-tun

# networking (/24 subnet, hostmax - 172.30.5.255)
server 172.30.5.0 255.255.255.0
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo

# client routes
push "redirect-gateway def1"

# logging
verb 3

iptables -t nat -A POSTROUTING -s 172.30.5.0/24 -o eth0 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 172.30.5.0/24 -o eth1 -j MASQUERADE

inet 172.31.17.221/20 brd 172.31.31.255 scope global dynamic eth0
inet 172.31.10.229/24 brd 172.31.10.255 scope global dynamic eth1
inet 172.30.5.1 peer 172.30.5.2/32 scope global tun0

 
default via 172.31.16.1 dev eth0 
default via 172.31.10.1 dev eth1 metric 10001