git ssb

1
# This file is provided as documentation to show what is
2
# possible. It should not be used as-is, and probably should
3
# not be used as a starting point for a working
4
# configuration. Instead use basic.cfg.
5
6
verbose: true;
7
foreground: true;
8
inetd: false;
9
numeric: false;
10
transparent: false;
11
timeout: "2";
12
user: "nobody";
13
pidfile: "/var/run/sslh.pid";
14
15
16
# List of interfaces on which we should listen
17
listen:
18
(
19
    { host: "thelonious"; port: "443"; },
20
    { host: "thelonious"; port: "8080"; }
21
);
22
23
# List of protocols
24
#
25
# Each protocol entry consists of:
26
#   name: name of the protocol
27
#   service: (optional) libwrap service name (see hosts_access(5))
28
#   host: host name to connect that protocol
29
#   port: port number to connect that protocol
30
#   probe: "builtin" or a list of regular expressions
31
#          (can be left out, e.g. to use with on-timeout)
32
#   
33
# sslh will try each probe in order they are declared, and
34
# connect to the first that matches.
35
36
protocols:
37
(
38
     { name: "ssh"; service: "ssh"; host: "localhost"; port: "22"; probe: "builtin"; },
39
     { name: "openvpn"; host: "localhost"; port: "1194"; probe: [ "^\x00[\x0D-\xFF]$", "^\x00[\x0D-\xFF]\x38" ]; },
40
     { name: "xmpp"; host: "localhost"; port: "5222"; probe: [ "jabber" ]; },
41
     { name: "http"; host: "localhost"; port: "80"; probe: "builtin"; },
42
     { name: "ssl"; host: "localhost"; port: "443"; probe: [ "" ]; },
43
     { name: "timeout"; service: "daytime"; host: "localhost"; port: "daytime"; }
44
);
45
46
# Optionally, specify to which protocol to connect in case
47
# of timeout (defaults to "ssh").
48
# You can timeout to any arbitrary address by setting a
49
# protocol with no probe, as is the case with this example.
50
# This enables you to set a tcpd service name for this
51
# protocol too.
52
on-timeout: "timeout";
53
54