DANE: fix TA-mode verify under GnuTLS. Bug 2311
[exim.git] / test / confs / 2008
1 # Exim test configuration 2008
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9
10 # ----- Main settings -----
11
12 domainlist local_domains = test.ex : *.test.ex
13
14 acl_smtp_rcpt = check_recipient
15 log_selector = +tls_peerdn
16 queue_only
17 queue_run_in_order
18 remote_max_parallel = 1
19
20 tls_advertise_hosts = *
21
22 # Set certificate only if server
23
24 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
25
26
27 # ------ ACL ------
28
29 begin acl
30
31 check_recipient:
32   accept  domains = +local_domains
33   deny    message = relay not permitted
34
35
36 # ----- Routers -----
37
38 begin routers
39
40 client:
41   driver = accept
42   condition = ${if eq {SERVER}{server}{no}{yes}}
43   retry_use_local_part
44   transport = send_to_server${if eq{$local_part}{abcd}{2}{1}}
45
46 server:
47   driver = accept
48   retry_use_local_part
49   transport = local_delivery
50
51
52 # ----- Transports -----
53
54 begin transports
55
56 local_delivery:
57   driver = appendfile
58   file = DIR/test-mail/$local_part
59   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
60   user = CALLER
61
62 send_to_server1:
63   driver = smtp
64   allow_localhost
65   hosts = 127.0.0.1
66   port = PORT_D
67   helo_data = helo.data.changed
68
69 send_to_server2:
70   driver = smtp
71   allow_localhost
72   hosts = HOSTIPV4
73   port = PORT_D
74
75
76 # ----- Retry -----
77
78
79 begin retry
80
81 * * F,5d,10s
82
83
84 # End