diff options
Diffstat (limited to 'configuration/sstp.html')
| -rw-r--r-- | configuration/sstp.html | 199 |
1 files changed, 199 insertions, 0 deletions
diff --git a/configuration/sstp.html b/configuration/sstp.html new file mode 100644 index 0000000..f0d989c --- /dev/null +++ b/configuration/sstp.html @@ -0,0 +1,199 @@ +<!DOCTYPE html> +<html class="writer-html5" lang="en" data-content_root="../"> +<head> + <meta charset="utf-8" /><meta name="viewport" content="width=device-width, initial-scale=1" /> + + <meta name="viewport" content="width=device-width, initial-scale=1.0" /> + <title>[sstp] — Accel-ppp 1.12 documentation</title> + <link rel="stylesheet" type="text/css" href="../_static/pygments.css?v=80d5e7a1" /> + <link rel="stylesheet" type="text/css" href="../_static/css/theme.css?v=19f00094" /> + + + <link rel="shortcut icon" href="../_static/favicon.ico"/> + <!--[if lt IE 9]> + <script src="../_static/js/html5shiv.min.js"></script> + <![endif]--> + + <script src="../_static/jquery.js?v=5d32c60e"></script> + <script src="../_static/_sphinx_javascript_frameworks_compat.js?v=2cd50e6c"></script> + <script src="../_static/documentation_options.js?v=2d52a127"></script> + <script src="../_static/doctools.js?v=9a2dae69"></script> + <script src="../_static/sphinx_highlight.js?v=dc90522c"></script> + <script src="../_static/js/theme.js"></script> + <link rel="index" title="Index" href="../genindex.html" /> + <link rel="search" title="Search" href="../search.html" /> + <link rel="next" title="[dns]" href="dns.html" /> + <link rel="prev" title="[ip-pool]" href="ip-pool.html" /> +</head> + +<body class="wy-body-for-nav"> + <div class="wy-grid-for-nav"> + <nav data-toggle="wy-nav-shift" class="wy-nav-side"> + <div class="wy-side-scroll"> + <div class="wy-side-nav-search" > + + + + <a href="../index.html" class="icon icon-home"> + Accel-ppp + <img src="../_static/logo.png" class="logo" alt="Logo"/> + </a> +<div role="search"> + <form id="rtd-search-form" class="wy-form" action="../search.html" method="get"> + <input type="text" name="q" placeholder="Search docs" aria-label="Search docs" /> + <input type="hidden" name="check_keywords" value="yes" /> + <input type="hidden" name="area" value="default" /> + </form> +</div> + </div><div class="wy-menu wy-menu-vertical" data-spy="affix" role="navigation" aria-label="Navigation menu"> + <p class="caption" role="heading"><span class="caption-text">Contents:</span></p> +<ul class="current"> +<li class="toctree-l1"><a class="reference internal" href="../installation/install.html">Installation</a></li> +<li class="toctree-l1 current"><a class="reference internal" href="configuration.html">Configuration</a><ul class="current"> +<li class="toctree-l2"><a class="reference internal" href="modules.html">[modules]</a></li> +<li class="toctree-l2"><a class="reference internal" href="core.html">[core]</a></li> +<li class="toctree-l2"><a class="reference internal" href="common.html">[common]</a></li> +<li class="toctree-l2"><a class="reference internal" href="radius.html">[radius]</a></li> +<li class="toctree-l2"><a class="reference internal" href="chap_secrets.html">[chap-secrets]</a></li> +<li class="toctree-l2"><a class="reference internal" href="ppp.html">[ppp]</a></li> +<li class="toctree-l2"><a class="reference internal" href="pppoe.html">[pppoe]</a></li> +<li class="toctree-l2"><a class="reference internal" href="pptp.html">[pptp]</a></li> +<li class="toctree-l2"><a class="reference internal" href="l2tp.html">[l2tp]</a></li> +<li class="toctree-l2"><a class="reference internal" href="ipoe.html">[ipoe]</a></li> +<li class="toctree-l2"><a class="reference internal" href="ip-pool.html">[ip-pool]</a></li> +<li class="toctree-l2 current"><a class="current reference internal" href="#">[sstp]</a><ul> +<li class="toctree-l3"><a class="reference internal" href="#configuration-of-sstp-module">Configuration of SSTP module.</a></li> +</ul> +</li> +<li class="toctree-l2"><a class="reference internal" href="dns.html">[dns]</a></li> +<li class="toctree-l2"><a class="reference internal" href="ipv6-dns.html">[ipv6-dns]</a></li> +<li class="toctree-l2"><a class="reference internal" href="ipv6-pool.html">[ipv6-pool]</a></li> +<li class="toctree-l2"><a class="reference internal" href="ipv6-nd.html">[ipv6-nd]</a></li> +<li class="toctree-l2"><a class="reference internal" href="ipv6-dhcp.html">[ipv6-dhcp]</a></li> +<li class="toctree-l2"><a class="reference internal" href="shaper.html">[shaper]</a></li> +<li class="toctree-l2"><a class="reference internal" href="log.html">[log]</a></li> +<li class="toctree-l2"><a class="reference internal" href="cli.html">[cli]</a></li> +<li class="toctree-l2"><a class="reference internal" href="pppd_compat.html">[pppd-compat]</a></li> +<li class="toctree-l2"><a class="reference internal" href="snmp.html">SNMP</a></li> +</ul> +</li> +<li class="toctree-l1"><a class="reference internal" href="../guides/control_features.html">Control features</a></li> +<li class="toctree-l1"><a class="reference internal" href="../guides/recommendations.html">Recommendations</a></li> +<li class="toctree-l1"><a class="reference internal" href="../guides/BRAS_tuning.html">BRAS tuning</a></li> +<li class="toctree-l1"><a class="reference internal" href="../guides/radius_features.html">RADIUS and DM/CoA features</a></li> +<li class="toctree-l1"><a class="reference internal" href="../examples/examples.html">Examples</a></li> +<li class="toctree-l1"><a class="reference internal" href="../debugging/index.html">Debugging</a></li> +<li class="toctree-l1"><a class="reference internal" href="../debugging/faq.html">FAQ</a></li> +</ul> + + </div> + </div> + </nav> + + <section data-toggle="wy-nav-shift" class="wy-nav-content-wrap"><nav class="wy-nav-top" aria-label="Mobile navigation menu" > + <i data-toggle="wy-nav-top" class="fa fa-bars"></i> + <a href="../index.html">Accel-ppp</a> + </nav> + + <div class="wy-nav-content"> + <div class="rst-content"> + <div role="navigation" aria-label="Page navigation"> + <ul class="wy-breadcrumbs"> + <li><a href="../index.html" class="icon icon-home" aria-label="Home"></a></li> + <li class="breadcrumb-item"><a href="configuration.html">Configuration</a></li> + <li class="breadcrumb-item active">[sstp]</li> + <li class="wy-breadcrumbs-aside"> + <a href="../_sources/configuration/sstp.rst.txt" rel="nofollow"> View page source</a> + </li> + </ul> + <hr/> +</div> + <div role="main" class="document" itemscope="itemscope" itemtype="http://schema.org/Article"> + <div itemprop="articleBody"> + + <section id="sstp"> +<span id="id1"></span><h1>[sstp]<a class="headerlink" href="#sstp" title="Link to this heading"></a></h1> +<p>Configuration options of sstp module.</p> +<section id="configuration-of-sstp-module"> +<h2>Configuration of SSTP module.<a class="headerlink" href="#configuration-of-sstp-module" title="Link to this heading"></a></h2> +<dl class="simple"> +<dt><strong>bind=x.x.x.x|ipv6address|unix:pathname|unix:@abstract</strong></dt><dd><p>If this option is given then sstp server will bind to specified IP address or unix pathname/abstract socket.</p> +</dd> +<dt><strong>port=n</strong></dt><dd><p>If this option is given then sstp server will bind to specified port. Default is 443.</p> +</dd> +<dt><strong>verbose=n</strong></dt><dd><p>If this option is given and n is greater of zero then sstp module will produce verbose logging.</p> +</dd> +<dt><strong>timeout=n</strong></dt><dd><p>Timeout waiting reply from client in seconds. Default is 60.</p> +</dd> +<dt><strong>hello-interval=n</strong></dt><dd><p>If this option is given and greater then zero then sstp will send echo-request every n seconds and drop connection without a reply. Default is 60.</p> +</dd> +<dt><strong>accept=ssl,proxy</strong></dt><dd><p>Specifies incoming connection acceptance mode. +* <strong>ssl</strong> - enable SSL/TLS support. +* <strong>proxy</strong> - enable PROXY protocol 1 & 2 support.</p> +</dd> +<dt><strong>ssl-dhparam=pemfile</strong></dt><dd><p>Specifies a file with DH parameters for DHE ciphers.</p> +</dd> +<dt><strong>ssl-ecdh-curve=string</strong></dt><dd><p>Specifies a curves for ECDHE ciphers. Value is specified in the format understood by the OpenSSL library.</p> +</dd> +<dt><strong>ssl-ciphers=string</strong></dt><dd><p>Specifies the enabled ciphers. The ciphers are specified in the format understood by the OpenSSL library.</p> +</dd> +<dt><strong>ssl-prefer-server-ciphers=n</strong></dt><dd><p>If this option is given and n is greater of zero then server ciphers should be preferred over client ciphers. Default is 0.</p> +</dd> +<dt><strong>ssl-pemfile=pemfile</strong></dt><dd><p>Specifies a file with the certificate in the PEM format for sstp server. Certificate is also used to compute initial SHA1 and SHA256 certificate hash.</p> +</dd> +<dt><strong>ssl-keyfile=keyfile</strong></dt><dd><p>Specifies a file with the secret key in the PEM format for sstp server. If not set, secret key will be loaded from the pemfile certificate.</p> +</dd> +<dt><strong>cert-hash-proto=sha1,sha256</strong></dt><dd><p>Specifies hashing methods that can be used to compute the Compound MAC in the Crypto Binding attribute. Default is sha1 and sha256 both.</p> +</dd> +<dt><strong>cert-hash-sha1=hexstring</strong></dt><dd><p>Given hexadecimal value overrides SHA1 hash computed from the pemfile certificate or used directly for non-ssl mode.</p> +</dd> +<dt><strong>cert-hash-sha256=hexstring</strong></dt><dd><p>Given hexadecimal value overrides SHA256 hash computed from the pemfile certificate or used directly for non-ssl mode.</p> +</dd> +<dt><strong>host-name=string</strong></dt><dd><p>If this option is given, only sstp connection to specified host and with the same TLS SNI will be allowed.</p> +</dd> +<dt><strong>http-error=deny|allow|http[s]://host.tld[/path]</strong></dt><dd><p>Specify http layer error behavior for non-sstp requests. +* <strong>deny</strong> - reset connection without any error response. +* <strong>allow</strong> - respond with http-specific status codes. +* <strong>http[s]://host.tld[/path]</strong> - respond with http redirect to the specified location. If /path is not specified, requested uri will be appended automatically +Default value is allow.</p> +</dd> +<dt><strong>ifname=ifname</strong></dt><dd><p>If this option is given ppp interface will be renamed using ifname as a template, i.e <cite>sstp%d => sstp0</cite>.</p> +</dd> +<dt><strong>ppp-max-mtu=n</strong></dt><dd><p>Set the maximun MTU value that can be negociated for PPP over SSTP sessions. Default value is 1452, maximum is 4087.</p> +</dd> +</dl> +</section> +</section> + + + </div> + </div> + <footer><div class="rst-footer-buttons" role="navigation" aria-label="Footer"> + <a href="ip-pool.html" class="btn btn-neutral float-left" title="[ip-pool]" accesskey="p" rel="prev"><span class="fa fa-arrow-circle-left" aria-hidden="true"></span> Previous</a> + <a href="dns.html" class="btn btn-neutral float-right" title="[dns]" accesskey="n" rel="next">Next <span class="fa fa-arrow-circle-right" aria-hidden="true"></span></a> + </div> + + <hr/> + + <div role="contentinfo"> + <p>© Copyright 2023, Accel-ppp Dev.</p> + </div> + + Built with <a href="https://www.sphinx-doc.org/">Sphinx</a> using a + <a href="https://github.com/readthedocs/sphinx_rtd_theme">theme</a> + provided by <a href="https://readthedocs.org">Read the Docs</a>. + + +</footer> + </div> + </div> + </section> + </div> + <script> + jQuery(function () { + SphinxRtdTheme.Navigation.enable(true); + }); + </script> + +</body> +</html>
\ No newline at end of file |