4d05075f64
See http://wiki.nginx.org/Modules#Mail_modules Sample Usage: nginx::resource::mailhost { 'domain1.example': ensure => present, auth_http => 'server2.example/cgi-bin/auth', protocol => 'smtp', listen_port => 587, ssl_port => 465, starttls => 'only', xclient => 'off', ssl => 'true', ssl_cert => '/tmp/server.crt', ssl_key => '/tmp/server.pem', }
23 lines
751 B
Text
23 lines
751 B
Text
|
|
server {
|
|
listen <%= ssl_port %>;
|
|
<% # check to see if ipv6 support exists in the kernel before applying %>
|
|
<% if ipv6_enable && (defined? @ipaddress6) %>
|
|
listen [<%= ipv6_listen_ip %>]:<%= ipv6_listen_port %> <% if @ipv6_listen_options %><%= ipv6_listen_options %><% end %> ipv6only=on;
|
|
<% end %>
|
|
server_name <%= server_name.join(" ") %>;
|
|
protocol <%= protocol %>;
|
|
xclient <%= xclient %>;
|
|
auth_http <%= auth_http %>;
|
|
|
|
ssl on;
|
|
ssl_certificate <%= ssl_cert %>;
|
|
ssl_certificate_key <%= ssl_key %>;
|
|
|
|
ssl_session_timeout 5m;
|
|
|
|
ssl_protocols SSLv3 TLSv1;
|
|
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv3:+EXP;
|
|
ssl_prefer_server_ciphers on;
|
|
|
|
}
|