| 1234567891011121314151617181920212223242526 |
- foreground = yes
- [{{ item.service }}]
- {% if item.client is defined and item.client %}
- client = yes
- {% endif %}
- cert = /etc/stunnel/{{ item.name }}.crt
- key = /etc/stunnel/{{ item.name }}.pem
- {% if item.client is defined and item.client %}
- accept = {{ item.accept }}
- {% else %}
- accept = :::{{ item.accept }}
- {% endif %}
- # accept on client = Local Relay Server Port
- # accept on server = stunnel server connection to which the client connects
- connect = {{ item.connect }}
- # connect on client = Endpoint of the stunnel server
- # connect on server = Local server to which the stunnel client should connect
- securityLevel = 3
- sslVersionMin = TLSv1.2
- sslVersion = TLSv1.3
- requireCert = yes
- verifyPeer = yes
- CAfile = /etc/stunnel/{{ item.name }}_remote.crt
|
