-
-
Save arunoda/4c6f5715b826d4bd5317 to your computer and use it in GitHub Desktop.
Stud Configuration File
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # stud(8), The Scalable TLS Unwrapping Daemon's configuration | |
| # | |
| # NOTE: all config file parameters can be overriden | |
| # from command line! | |
| # Listening address. REQUIRED. | |
| # | |
| # type: string | |
| # syntax: [HOST]:PORT | |
| frontend = "[*]:443" | |
| # Upstream server address. REQUIRED. | |
| # | |
| # type: string | |
| # syntax: [HOST]:PORT. | |
| backend = "[localhost]:80" | |
| # SSL x509 certificate file. REQUIRED. | |
| # List multiple certs to use SNI. Certs are used in the order they | |
| # are listed; the last cert listed will be used if none of the others match | |
| # | |
| # type: string | |
| # since docker can see config folder as /config we need to set ssl accordingly. | |
| # actual location will be /opt/comet/stud.conf | |
| pem-file = "/path/to/ssl.pem" | |
| # SSL protocol. | |
| # | |
| # tls = on | |
| # ssl = off | |
| # List of allowed SSL ciphers. | |
| # | |
| # Run openssl ciphers for list of available ciphers. | |
| # type: string | |
| ciphers = "" | |
| # Enforce server cipher list order | |
| # | |
| # type: boolean | |
| prefer-server-ciphers = off | |
| # Use specified SSL engine | |
| # | |
| # type: string | |
| ssl-engine = "" | |
| # Number of worker processes | |
| # | |
| # type: integer | |
| workers = 1 | |
| # Listen backlog size | |
| # | |
| # type: integer | |
| backlog = 100 | |
| # TCP socket keepalive interval in seconds | |
| # | |
| # type: integer | |
| keepalive = 3600 | |
| # Chroot directory | |
| # | |
| # type: string | |
| chroot = "" | |
| # Set uid after binding a socket | |
| # | |
| # type: string | |
| user = "stud" | |
| # Set gid after binding a socket | |
| # | |
| # type: string | |
| group = "stud" | |
| # Quiet execution, report only error messages | |
| # | |
| # type: boolean | |
| quiet = on | |
| # Use syslog for logging | |
| # | |
| # type: boolean | |
| syslog = off | |
| # Syslog facility to use | |
| # | |
| # type: string | |
| syslog-facility = "daemon" | |
| # Run as daemon | |
| # | |
| # type: boolean | |
| daemon = off | |
| # Report client address by writing IP before sending data | |
| # | |
| # NOTE: This option is mutually exclusive with option write-proxy and proxy-proxy. | |
| # | |
| # type: boolean | |
| write-ip = off | |
| # Report client address using SENDPROXY protocol, see | |
| # http://haproxy.1wt.eu/download/1.5/doc/proxy-protocol.txt | |
| # for details. | |
| # | |
| # NOTE: This option is mutually exclusive with option write-ip and proxy-proxy. | |
| # | |
| # type: boolean | |
| write-proxy = off | |
| # Proxy an existing SENDPROXY protocol header through this request. | |
| # | |
| # NOTE: This option is mutually exclusive with option write-ip and write-proxy. | |
| # | |
| # type: boolean | |
| proxy-proxy = off | |
| # EOF |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment