Allow a forced-fail for banner expansion to close connection without panic-log
[exim.git] / test / confs / 5721
1 # Exim test configuration 5721
2
3 .include DIR/aux-var/tls_conf_prefix
4
5 primary_hostname = myhost.test.ex
6
7 # ----- Main settings -----
8
9 acl_smtp_connect = check_conn
10 acl_smtp_quit =    accept logwrite = ACL quit
11 acl_smtp_notquit = accept logwrite = ACL notquit
12
13 tls_advertise_hosts = *
14 tls_certificate = DIR/aux-fixed/cert1
15
16 host_reject_connection = ${acl {hrc}}
17 smtp_banner = ${if != {$received_port}{PORT_D4} {my banner}fail}
18 event_action = ${acl {tls_fail}}
19
20 log_selector = +pid
21
22 # ------ ACL ------
23
24 begin acl
25
26 hrc:
27   warn          logwrite = eval host_reject_connection
28   accept        condition = ${if eq {$received_port}{PORT_D}}
29                 # no mesage= hence host_reject_connection should be empty
30   deny          condition = ${if eq {$received_port}{PORT_D2}}
31                 message = *
32                 # PORT_D2 gets a host_reject_connection
33
34 check_conn:
35   warn          logwrite =      ACL conn
36   deny          condition =     ${if eq {$received_port}{PORT_D3}}
37                 log_message =   we dislike you
38                 # PORT_D3 gets a conn ACL fail
39   accept
40
41 tls_fail:
42   warn          logwrite =  EV $event_name
43   accept        condition = ${if eq {tls:fail:connect}{$event_name}}
44                 logwrite =  EVDATA: $event_data
45   accept
46
47
48 # End