[exim.git] / test / confs / 2052

# Exim test configuration 2052
# as per 2000 but with TCP Fast Open

SERVER=

.include DIR/aux-var/tls_conf_prefix

primary_hostname = myhost.test.ex

# ----- Main settings -----

acl_smtp_rcpt = accept

log_selector =  +tls_peerdn

queue_only
queue_run_in_order

tls_advertise_hosts = *
# needed to force generation
tls_dhparam = historic

# Set certificate only if server

tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}

tls_verify_hosts = *
tls_verify_certificates = ${if eq {SERVER}{server}{DIR/aux-fixed/cert2}fail}


# ----- Routers -----

begin routers

client:
  driver = accept
  condition = ${if eq {SERVER}{server}{no}{yes}}
  retry_use_local_part
  transport = send_to_server


# ----- Transports -----

begin transports

send_to_server:
  driver = smtp
  allow_localhost
  hosts = 127.0.0.1
  port = PORT_D
  hosts_try_fastopen = *
  tls_certificate = DIR/aux-fixed/cert2
  tls_privatekey = DIR/aux-fixed/cert2
  tls_verify_certificates = DIR/aux-fixed/cert2
  tls_try_verify_hosts =


# ----- Retry -----


begin retry

* * F,5d,10s


# End
Commit	Line	Data
fb05276a JH	1	# Exim test configuration 2052
	2	# as per 2000 but with TCP Fast Open
	3
	4	SERVER=
	5
	6	.include DIR/aux-var/tls_conf_prefix
	7
	8	primary_hostname = myhost.test.ex
	9
	10	# ----- Main settings -----
	11
	12	acl_smtp_rcpt = accept
	13
	14	log_selector = +tls_peerdn
	15
	16	queue_only
	17	queue_run_in_order
	18
	19	tls_advertise_hosts = *
	20	# needed to force generation
	21	tls_dhparam = historic
	22
	23	# Set certificate only if server
	24
	25	tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
	26	tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
	27
	28	tls_verify_hosts = *
	29	tls_verify_certificates = ${if eq {SERVER}{server}{DIR/aux-fixed/cert2}fail}
	30
	31
	32	# ----- Routers -----
	33
	34	begin routers
	35
	36	client:
	37	driver = accept
	38	condition = ${if eq {SERVER}{server}{no}{yes}}
	39	retry_use_local_part
	40	transport = send_to_server
	41
	42
	43	# ----- Transports -----
	44
	45	begin transports
	46
	47	send_to_server:
	48	driver = smtp
	49	allow_localhost
	50	hosts = 127.0.0.1
	51	port = PORT_D
	52	hosts_try_fastopen = *
	53	tls_certificate = DIR/aux-fixed/cert2
	54	tls_privatekey = DIR/aux-fixed/cert2
	55	tls_verify_certificates = DIR/aux-fixed/cert2
	56	tls_try_verify_hosts =
	57
	58
	59	# ----- Retry -----
	60
	61
	62	begin retry
	63
	64	* * F,5d,10s
65
66
67	# End