+cat >>/etc/openvpn/server.conf <<'EOF'
+# not in example config, but openvpn outputs a warning about insecure
+# cipher without a setting like this (the default i can understand due
+# to compatibility issues, but not changing the example config... not
+# cool). exact cipher taken from config of vpn provider I trust. This
+# requires the same setting on the client side.
+cipher aes-256-cbc
+# just sets up the ability to have client specific configs
+client-config-dir /etc/openvpn/client-config
+EOF
+mkdir -p /etc/openvpn/client-config
+
+if $route; then
+ cat >>/etc/openvpn/server.conf <<'EOF'