auth="plain[passwd=/etc/ocserv/ocpasswd,otp=/etc/ocserv/ocserv.otp]"tcp-port=443udp-port=443run-as-user=nobodyrun-as-group=daemonsocket-file=/var/run/ocserv-socketserver-cert=/etc/letsencrypt/live/myvpn.alongparty.cn/fullchain.pemserver-key=/etc/letsencrypt/live/myvpn.alongparty.cn/privkey.pemisolate-workers=falsebanner="Welcome PCI DSS environment, please proceed with caution ! !"pre-login-banner="You will enter the PCI DSS environment, please proceed with caution ! !"max-clients=16max-same-clients=2rate-limit-ms=100server-stats-reset-time=604800keepalive=32400dpd=90mobile-dpd=1800switch-to-tcp-timeout=25try-mtu-discovery=truecert-user-oid=0.9.2342.19200300.100.1.1tls-priorities="NORMAL:%SERVER_PRECEDENCE:%COMPAT:-VERS-SSL3.0:-VERS-TLS1.0:-VERS-TLS1.1"auth-timeout=240min-reauth-time=300max-ban-score=80ban-reset-time=1200cookie-timeout=300deny-roaming=falserekey-time=172800rekey-method=ssluse-occtl=truepid-file=/var/run/ocserv.piddevice=vpnspredictable-ips=truedefault-domain=example.comipv4-network=10.255.255.0ipv4-netmask=255.255.255.0tunnel-all-dns=truedns=8.8.8.8dns=4.2.2.4dns=2001:4860:4860::8888dns=2001:4860:4860::8844ping-leases=falseconfig-per-group=/etc/ocserv/groupdefault-group-config=/etc/ocserv/group/defaultdefault-select-group=defaultauto-select-group=falsecisco-client-compat=truedtls-legacy=true