mirror of
https://github.com/moparisthebest/sslh
synced 2024-11-13 12:45:05 -05:00
9bcb2cdd7a
Added support for configuration file. New protocol probes can be defined using regular expressions that match the first packet sent by the client. sslh now connects timed out connections to the first configured protocol instead of 'ssh' (just make sure ssh is the first defined protocol). sslh now tries protocols in the order in which they are defined (just make sure sslh is the last defined protocol).
41 lines
1.2 KiB
INI
41 lines
1.2 KiB
INI
verbose: false;
|
|
foreground: true;
|
|
inetd: false;
|
|
numeric: false;
|
|
timeout: 2;
|
|
user: "nobody";
|
|
pidfile: "/var/run/sslh.pid";
|
|
|
|
|
|
# List of interfaces on which we should listen
|
|
listen:
|
|
(
|
|
{ host: "thelonious"; port: "443"; }
|
|
# , { host: "thelonious"; port: "8080"; }
|
|
);
|
|
|
|
# List of protocols
|
|
#
|
|
# Each protocol entry consists of:
|
|
# name: name of the protocol
|
|
# service: (optional) libwrap service name (see hosts_access(5))
|
|
# host: host name to connect that protocol
|
|
# port: port number to connect that protocol
|
|
# probe: "builtin" or a list of regular expressions
|
|
#
|
|
# In case of timeout sslh will connect to the first
|
|
# protocol: this should be SSH.
|
|
# SSL should have a "always true" probe, and come last.
|
|
# sslh will try each probe in order they are declared, and
|
|
# connect to the first that matches.
|
|
|
|
protocols:
|
|
(
|
|
{ name: "ssh"; service: "ssh"; host: "localhost"; port: "22"; probe: "builtin"; },
|
|
{ name: "openvpn"; host: "localhost"; port: "1194"; probe: [ "^\x00[\x0D-\xFF]$", "^\x00[\x0D-\xFF]\x38" ]; },
|
|
{ name: "xmpp"; host: "localhost"; port: "5222"; probe: [ "jabber" ]; },
|
|
{ name: "http"; host: "localhost"; port: "80"; probe: "builtin"; },
|
|
{ name: "ssl"; host: "localhost"; port: "443"; probe: [ "" ]; }
|
|
);
|
|
|