Keep-alive timeout: PNS pings the remote endpoint periodically. This parameter specifies the time between two ping messages in seconds.

Keep-alive delay: The amount of time in seconds until PNS waits for a response to the ping messages. If no response is received within this period, PNS restarts the VPN connection.

Verbosity: The verbosity level of the VPN tunnel.

Propagate ToS: If enabled and the Type of Service (ToS) parameter of the packet transferred using the VPN is set, PNS sets the ToS parameter of the encrypted packet to the same value.

Compress: Compress the data transferred in the VPN tunnel.

Persistent IP address: This option is available only in PNS 3.3R6 or later. Preserve initially resolved local IP address and port number across SIGUSR1 or --ping-restart restarts.

Persistent TUN Interface: This option is available only in PNS 3.3R6 or later. Create a persistent tunnel. Normally TUN/TAP tunnels exist only for the period of time that an application has them open. Enabling this option builds persistent tunnels that live through multiple instantiations of OpenVPN and die only when they are deleted or the machine is rebooted.

Duplicate CN: This option is available only in PNS 3.4 or later. If enabled, multiple clients with the same common name can connect at the same time. If this option is disabled, PNS will disconnect new clients if a client having the same common name is already connected.

CCD Exclusive: This option is available only in PNS 3.4 or later. If enabled, the connecting clients must have a --client-config-dir file configured, otherwise the authentication of the client will fail. This file is generated automatically if the Roadwarrior Server option is enabled on the General tab.

Additional options: This option is available only in PNS 3.4 or later. Enter any additional options you need to set here. Options entered here are automatically appended to the end of the configuration file of the VPN tunnel.

SSL engine: Use the specified SSL-accelerator engine.