用户工具

站点工具


freebsd:network:stunnel_tls_tunnel

stunnel 的 TLS Tunnel 精简配置

只介绍 stunnel 作为 TLS Tunnel 的配置文件, 关于证书方面不介绍了.

不作客户端的证书验证, 仅TLS Tunnel

sslVersion=TLSv1.2
ciphers=ECDHE-RSA-AES128-GCM-SHA256
socket=l:TCP_NODELAY=1
socket=r:TCP_NODELAY=1
pid=/tmp/stunnel.pid
sessionCacheTimeout=300
setuid=65534
setgid=65534
delay=no
verify=0

[socks5ssl]
accept=50000
connect=127.0.0.1:60010
CAfile=/usr/local/etc/nginx/ssl/fullchain.pem
cert=/usr/local/etc/nginx/ssl/fullchain.pem
key=/usr/local/etc/nginx/ssl/privkey.pem

[https]
accept=50001
connect=127.0.0.1:60011
CAfile=/usr/local/etc/nginx/ssl/fullchain.pem
cert=/usr/local/etc/nginx/ssl/fullchain.pem
key=/usr/local/etc/nginx/ssl/privkey.pem
freebsd/network/stunnel_tls_tunnel.txt · 最后更改: 2016/03/13 19:34 由 Hshh