ACL: Permit the "encrypted" condition to be used in a HELO/EHLO ACL
[exim.git] / test / confs / 2125
1 # Exim test configuration 2125
2
3 SERVER=
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12
13 log_selector =  +tls_peerdn+tls_certificate_verified
14
15 queue_only
16 queue_run_in_order
17
18 tls_advertise_hosts = *
19
20 tls_require_ciphers = ${if eq{$sender_host_address}{HOSTIPV4}\
21                       {AES256}{AES128}}
22 tls_certificate = DIR/aux-fixed/cert1
23
24 .ifdef _OPT_OPENSSL_NO_TLSV1_3_X
25 openssl_options = +no_tlsv1_3
26 .endif
27
28 # ----- Routers -----
29
30 begin routers
31
32 client:
33   driver = accept
34   condition = ${if eq {SERVER}{server}{no}{yes}}
35   retry_use_local_part
36   transport = send_to_server
37
38
39 # ----- Transports -----
40
41 begin transports
42
43 send_to_server:
44   driver = smtp
45   allow_localhost
46   hosts = HOSTIPV4 : 127.0.0.1
47   port = PORT_D
48   hosts_require_tls = HOSTIPV4
49   tls_require_ciphers = AES128-SHA
50   hosts_try_fastopen = :
51   tls_verify_certificates = DIR/aux-fixed/cert1
52   tls_verify_cert_hostnames = :
53
54
55 # ----- Retry -----
56
57
58 begin retry
59
60 * * F,5d,10s
61
62
63 # End