nginx mail starttls ip based
Maxim Dounin
mdounin at mdounin.ru
Tue Dec 11 12:31:07 UTC 2012
Hello!
On Tue, Dec 11, 2012 at 10:14:05AM +0000, Marco wrote:
> Hello,
>
> I'm new in nginx world. I would like to configure a single nginx server
> to proxy imap/pop servers with starttls option.
>
> I would like that the "starttls" could be "on" on a list of known safe IPs
> and "only" on other IPs. Using the same listen port and protocol.
>
> Could you tell me how to achieve this?
> Maybe, is there a way to set the starttls in auth phase?
>
> For instance, let suppose I have configured this:
>
> server {
> listen 110;
> protocol pop3;
> starttls on;
> proxy on;
> }
>
> server {
> listen 110;
> protocol pop3;
> starttls only;
> proxy on;
> }
>
> I would select first or second server block using Client-IP header.
> Is it possible?
No. Either use "starttls only" for all clients, or configure
different servers on different ip addresses/ports.
--
Maxim Dounin
http://nginx.com/support.html
More information about the nginx
mailing list