Mercurial > hg > freeDiameter
diff doc/freediameter.conf.sample @ 1187:436e4342ecd0
Rollback to using TLS/SCTP in release 1.2.0. DTLS dev to happen in freeDiameter-dtls branch
author | Sebastien Decugis <sdecugis@freediameter.net> |
---|---|
date | Mon, 10 Jun 2013 12:04:50 +0800 |
parents | 22de21feec64 |
children | 50bf33dc8fe0 |
line wrap: on
line diff
--- a/doc/freediameter.conf.sample Fri Jun 07 18:48:34 2013 +0800 +++ b/doc/freediameter.conf.sample Mon Jun 10 12:04:50 2013 +0800 @@ -30,16 +30,10 @@ # The port this peer is listening on for incoming TLS-protected connections (TCP and SCTP). # See TLS_old_method for more information about TLS flavours. +# Note: we use TLS/SCTP instead of DTLS/SCTP at the moment. This will change in future version of freeDiameter. # Default: 5658. Use 0 to disable. #SecPort = 5658; -# freeDiameter 1.2.0 introduces the support of DTLS over SCTP (RFC6083) instead of TLS over SCTP (RFC3436), -# as specified in RFC6733. If you need compatibility with older implementation that use TLS over SCTP, you -# can open an additional SCTP server port using TLS/SCTP by specifying the following parameter. -# Note that no TCP server is started on the following port. -# Default: 0 (disabled). Use 3869 for compatibility with freeDiameter < 1.2.0. -#SctpSec3436 = 0; - # Use RFC3588 method for TLS protection, where TLS is negociated after CER/CEA exchange is completed # on the unsecure connection. The alternative is RFC6733 mechanism, where TLS protects also the # CER/CEA exchange on a dedicated secure port. @@ -217,8 +211,7 @@ #ConnectPeer = "diameterid" [ { parameter1; parameter2; ...} ] ; # Parameters that can be specified in the peer's parameter list: # No_TCP; No_SCTP; No_IP; No_IPv6; Prefer_TCP; TLS_old_method; -# No_TLS; # assume transparent security instead of TLS -# SctpSec3436; # Use TLS/SCTP instead of DTLS/SCTP to protect SCTP associations with this peer. +# No_TLS; # assume transparent security instead of TLS. DTLS is not supported yet (will change in future versions). # Port = 5658; # The port to connect to # TcTimer = 30; # TwTimer = 30;