Commit | Line | Data |
---|---|---|
b3ef41c9 JH |
1 | # Exim test configuration 3700 |
2 | ||
3 | SERVER= | |
4 | ||
d4dc049f | 5 | .include DIR/aux-var/tls_conf_prefix |
b3ef41c9 | 6 | |
d4dc049f | 7 | primary_hostname = myhost.test.ex |
b3ef41c9 JH |
8 | log_selector = +received_recipients +outgoing_port |
9 | ||
10 | # ----- Main settings ----- | |
11 | ||
69d8eed7 | 12 | acl_smtp_auth = log_call |
b3ef41c9 JH |
13 | acl_smtp_mail = check_authd |
14 | acl_smtp_rcpt = check_authd | |
c44ff8be JH |
15 | acl_smtp_data = ar_header |
16 | ||
b3ef41c9 JH |
17 | queue_only |
18 | queue_run_in_order | |
19 | trusted_users = CALLER | |
20 | ||
21 | tls_on_connect_ports = PORT_S | |
22 | tls_advertise_hosts = * | |
23 | tls_certificate = DIR/aux-fixed/cert1 | |
24 | ||
25 | tls_verify_hosts = * | |
26 | tls_verify_certificates = DIR/aux-fixed/cert2 | |
27 | ||
28 | ||
29 | # ----- ACL ----- | |
30 | ||
31 | begin acl | |
32 | ||
69d8eed7 JH |
33 | log_call: |
34 | accept logwrite = Auth ACL called, after smtp cmd "$smtp_command" | |
35 | ||
b3ef41c9 JH |
36 | check_authd: |
37 | deny message = authentication required | |
38 | !authenticated = * | |
39 | accept | |
40 | ||
c44ff8be JH |
41 | ar_header: |
42 | accept add_header = :at_start:${authresults {$primary_hostname}} | |
b3ef41c9 JH |
43 | |
44 | # ----- Authentication ----- | |
45 | ||
46 | begin authenticators | |
47 | ||
48 | tls: | |
49 | driver = tls | |
50 | server_debug_print = +++TLS \$auth1="$auth1" | |
51 | server_param1 = ${quote:${certextract {subject,CN,>:} \ | |
52 | {$tls_in_peercert}}} | |
53 | server_condition = ${if def:auth1} | |
54 | server_set_id = $auth1 | |
55 | ||
56 | ||
57 | # ----- Routers ----- | |
58 | ||
59 | begin routers | |
60 | ||
c44ff8be JH |
61 | server_r: |
62 | driver = accept | |
63 | condition = ${if eq {server}{SERVER}} | |
64 | transport = file | |
65 | ||
66 | client_r1: | |
67 | driver = accept | |
68 | transport = ${if eq {$local_part}{smtps} {t2}{t1}} | |
b3ef41c9 JH |
69 | |
70 | ||
71 | # ----- Transports ----- | |
72 | ||
73 | begin transports | |
74 | ||
75 | t1: | |
76 | driver = smtp | |
77 | hosts = 127.0.0.1 | |
78 | port = PORT_D | |
79 | allow_localhost | |
80 | tls_certificate = DIR/aux-fixed/cert2 | |
81 | tls_verify_certificates = DIR/aux-fixed/cert1 | |
82 | tls_verify_cert_hostnames = : | |
83 | ||
84 | t2: | |
85 | driver = smtp | |
86 | hosts = 127.0.0.1 | |
87 | port = PORT_S | |
88 | protocol = smtps | |
89 | allow_localhost | |
90 | tls_certificate = DIR/aux-fixed/cert2 | |
91 | tls_verify_certificates = DIR/aux-fixed/cert1 | |
92 | tls_verify_cert_hostnames = : | |
93 | ||
c44ff8be JH |
94 | file: |
95 | driver = appendfile | |
96 | file = DIR/test-mail/$local_part | |
97 | user = CALLER | |
98 | ||
b3ef41c9 | 99 | # End |