forgotten: the opvn file. Here is it (with sensitive information removed).
Code:
dev tuntls-clientremote << synology-IP port>>#client-cert-not-required# The "float" tells OpenVPN to accept authenticated packets from any address,# not only the address which was specified in the --remote option.# This is useful when you are connecting to a peer which holds a dynamic address# such as a dial-in user or DHCP client.# (Please refer to the manual of OpenVPN for more information.)#float# If redirect-gateway is enabled, the client will redirect it's# default network gateway through the VPN.# It means the VPN connection will firstly connect to the VPN Server# and then to the internet.# (Please refer to the manual of OpenVPN for more information.)redirect-gateway def1# dhcp-option DNS: To set primary domain name server address.# Repeat this option to set secondary DNS server addresses.#dhcp-option DNS DNS_IP_ADDRESSpull# If you want to connect by Server's IPv6 address, you should use# "proto udp6" in UDP mode or "proto tcp6-client" in TCP modeproto udpscript-security 2comp-lzoreneg-sec 0# Clients running OpenVPN 2.4 and higher will automatically upgrade from AES-256-CBC to AES-256-GCM without any configuration changes.cipher AES-256-CBCauth SHA512auth-user-pass<ca>-----BEGIN CERTIFICATE-----<<certificate>>-----END CERTIFICATE----------BEGIN CERTIFICATE-----<<certificate>>-----END CERTIFICATE-----</ca>key-direction 1<tls-auth>## 2048 bit OpenVPN static key#-----BEGIN OpenVPN Static key V1-----<<static key>>-----END OpenVPN Static key V1-----</tls-auth>Statistics: Posted by peer — 2026-01-18 14:55