diff --git a/VM_VPN_GATEWAY.sh b/VM_VPN_GATEWAY.sh
index 8ed1543..7ad0663 100644
--- a/VM_VPN_GATEWAY.sh
+++ b/VM_VPN_GATEWAY.sh
@@ -58,10 +58,15 @@ sudo touch "${ca_dir}/serial"
 sudo cp ca.crt $ca_dir
 
 # Criar vpn certificate
-sudo openssl req -new -key vpn.key -out vpn.csr
-sudo openssl ca -in vpn.csr -cert ca.crt -keyfile ca.key -out vpn.crt
 sudo cp vpn.key $ca_dir
-sudo cp vpn.crt $ca_dir
+[[ -e "vpn.csr" ]] && echo "vpn.csr ja criado" || sudo openssl req -new -key vpn.key -out vpn.csr
+[[ -e "vpn.crt" ]] && echo "vpn.crt ja criado" || sudo openssl ca -in vpn.csr -cert ca.crt -keyfile ca.key -out vpn.crt
+
+openssl dhparam -out dh2048.pem 2048
+sudo cp vpn.conf /etc/openvpn/server/
+sudo cp vpn.csr /etc/openvpn/server/
+sudo cp vpn.crt /etc/openvpn/server/
+sudo cp dh2048.pem /etc/openvpn/server/
 
 
 # NOTA(vasco): o ficheiro conf vai ser vpn.conf pq isso é o nome do serviço
diff --git a/vpn.conf b/vpn.conf
index 3f70471..ff67b86 100644
--- a/vpn.conf
+++ b/vpn.conf
@@ -7,3 +7,8 @@ cert vpn.crt    #
 key vpn.key     # ya
 dh dh2048.pem
 server 10.60.0.0 255.255.255.0
+
+;verb4
+;plugin something
+;tls-auth
+;key-direction 0