### network options
port 443
proto tcp
dev tun

### certificate and key files
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
dh /etc/openvpn/dh1024.pem

### (optional) use a shared key to initialize TLS negotiation
#tls-auth /etc/openvpn/shared.key 0

### VPN subnet
server 10.20.30.0 255.255.255.0

### Send along a route to get to theCheat and the tank robot automatically
push "route 192.168.1.134 255.255.255.255"
push "route 192.168.1.50 255.255.255.255"

### (optional) make the VPN server a gateway for the internet for the VPN clients
#push "redirect-gateway"

### (optional) compression (might make your WRT sluggish or not, 
### depending on the model and what you have running...)
comp-lzo
keepalive 10 120
status /tmp/openvpn.status

### use a CRL to revoke keys
crl-verify /etc/openvpn/crl.pem

### user/group nobody/nogroup for extra security
user nobody
group nogroup