apps/cluster1/openvpn-tor-wugi-info/deployment.yaml

@@ -21,14 +21,7 @@ spec:
           subPath: openvpn.conf
           readOnly: true
           name: config
-        - mountPath: /secret.key
-          subPath: secret.key
-          readOnly: true
-          name: secret
       volumes:
       - name: config
         configMap:
           name: openvpn-configuration
-      - name: secret
-        secret:
-          secretName: secret

apps/cluster1/openvpn-tor-wugi-info/openvpn.conf

@@ -8,7 +8,18 @@ proto tcp-client
 dev tunvpn2
 dev-type tun
 
-secret /secret.key
+ca /etc/openvpn/wugi-ca.crt
+cert /etc/openvpn/client.crt
+key /etc/openvpn/client.key
+
+comp-lzo
+
+persist-key
+persist-tun
+
+nobind
+
+resolv-retry infinite
 
 socks-proxy 10.8.14.167 9050
 socks-proxy-retry

apps/cluster2/openvpn/deployment.yaml

@@ -21,14 +21,7 @@ spec:
           subPath: openvpn.conf
           readOnly: true
           name: config
-        - mountPath: /secret.key
-          subPath: secret.key
-          readOnly: true
-          name: secret
       volumes:
       - name: config
         configMap:
           name: openvpn-configuration
-      - name: secret
-        secret:
-          secretName: secret

apps/cluster2/openvpn/openvpn.conf

@@ -8,4 +8,15 @@ dev-type tun
 port 1196
 proto tcp-server
 
-secret /secret.key
+comp-lzo
+
+persist-key
+persist-tun
+
+ca /etc/openvpn/ca.crt
+cert /etc/openvpn/client.crt
+key /etc/openvpn/client.key
+dh /etc/openvpn/dhparams.pem
+tls-server
+
+resolv-retry infinite