mirror of
https://gitlab.com/openconnect/ocserv.git
synced 2026-02-09 16:26:59 +08:00
tests: introduced new proxy protocol tests
This replaces the old no longer used "docker-tests". Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
This commit is contained in:
Nikos Mavrogiannopoulos
32
tests/data/haproxy-proxyproto.cfg
Normal file
32
tests/data/haproxy-proxyproto.cfg
Normal file
@@ -0,0 +1,32 @@
|
||||
global
|
||||
user haproxy
|
||||
group haproxy
|
||||
#daemon
|
||||
|
||||
# Default SSL material locations
|
||||
#ca-base /etc/ssl/certs
|
||||
#crt-base /etc/ssl/private
|
||||
|
||||
ssl-default-bind-ciphers kEECDH+aRSA+AES:kRSA+AES:+AES256:RC4-SHA:!kEDH:!LOW:!EXP:!MD5:!aNULL:!eNULL
|
||||
|
||||
|
||||
defaults
|
||||
log global
|
||||
mode http
|
||||
option dontlognull
|
||||
timeout connect 5000
|
||||
timeout client 50000
|
||||
timeout server 50000
|
||||
|
||||
frontend ssl
|
||||
mode tcp
|
||||
bind *:@HAPORT@
|
||||
tcp-request inspect-delay 5s
|
||||
tcp-request content accept if { req.ssl_hello_type 1 }
|
||||
|
||||
use_backend ocserv
|
||||
|
||||
backend ocserv
|
||||
mode tcp
|
||||
# option ssl-hello-chk
|
||||
server server-vpn @ADDRESS@:@PORT@ check send-proxy-v2 send-proxy-v2-ssl-cn
|
||||
Reference in New Issue
Block a user