GnuTLS: simplify cert hostname checking
[users/jgh/exim.git] / test / confs / 2108
1 # Exim test configuration 2108
2
3 SERVER =
4
5 .include DIR/aux-var/tls_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 domainlist local_domains = test.ex : *.test.ex
12
13 acl_smtp_rcpt = check_recipient
14 log_selector = +tls_peerdn
15 queue_only
16 queue_run_in_order
17 remote_max_parallel = 1
18
19 tls_advertise_hosts = *
20
21 # Set certificate only if server
22
23 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
24
25 # ------ ACL ------
26
27 begin acl
28
29 check_recipient:
30   accept  domains = +local_domains
31   deny    message = relay not permitted
32
33
34 # ----- Routers -----
35
36 begin routers
37
38 client:
39   driver = accept
40   condition = ${if eq {SERVER}{server}{no}{yes}}
41   retry_use_local_part
42   transport = send_to_server${if eq{$local_part}{abcd}{2}{1}}
43
44 server:
45   driver = accept
46   retry_use_local_part
47   transport = local_delivery
48
49
50 # ----- Transports -----
51
52 begin transports
53
54 local_delivery:
55   driver = appendfile
56   file = DIR/test-mail/$local_part
57   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
58   user = CALLER
59
60 send_to_server1:
61   driver = smtp
62   allow_localhost
63   hosts = 127.0.0.1
64   port = PORT_D
65   helo_data = helo.data.changed
66
67 send_to_server2:
68   driver = smtp
69   allow_localhost
70   hosts = HOSTIPV4
71   port = PORT_D
72
73
74 # ----- Retry -----
75
76
77 begin retry
78
79 * * F,5d,10s
80
81
82 # End