56 lines
1015 B
Plaintext
56 lines
1015 B
Plaintext
;stunnel works in server/*client*/ mode
|
|
client = no
|
|
|
|
;SSL protocols supported by stunnel: SSL2, SSL3, TLS1
|
|
;choose which protocols you want
|
|
options = NO_SSLv3
|
|
options = NO_SSLv2
|
|
;options = NO_TLSv1
|
|
|
|
;ALL cipher suite except ones supported by AMT
|
|
;ciphers = ALL:eNULL:!AES128-SHA:!RC4-SHA:!NULL-SHA
|
|
|
|
;cipher suite supported by AMT
|
|
;choose which protocols you want
|
|
;ciphers = NULL-SHA
|
|
;ciphers = RC4-SHA
|
|
ciphers = AES128-SHA
|
|
|
|
;ciphers not supported
|
|
;ciphers = DHE-RSA-AES128-SHA
|
|
;ciphers = DHE-DSS-AES128-SHA
|
|
|
|
|
|
;compression
|
|
;compression = rle
|
|
;compression = zlib
|
|
|
|
;trusted root certificate authority
|
|
CAfile = cacert.cer
|
|
|
|
;trusted server certificate
|
|
cert = remote_client.pem
|
|
|
|
|
|
key = remote_client_key.pem
|
|
|
|
;greatest debugging level
|
|
debug = 7
|
|
|
|
;verify peer certificate
|
|
verify = 0
|
|
|
|
[psudo-tcp]
|
|
|
|
|
|
;accept connection on 12345 port
|
|
accept = 12345
|
|
|
|
;original using with IE button
|
|
;accept connection on 16993 port
|
|
;accept = 16993
|
|
|
|
;connect to remote host
|
|
connect = localhost:1234
|
|
|
|
TIMEOUTclose = 10 |