Mercurial > hg > waaad
view doc/waaad.conf.sample @ 123:d1cef88ac5f2
Added new directives in conf, improved peer internal dsecription, replaces sockaddr with aliases
author | Sebastien Decugis <sdecugis@nict.go.jp> |
---|---|
date | Fri, 08 Aug 2008 18:04:38 +0900 |
parents | 9a341105760a |
children | 641999eb7a1d |
line wrap: on
line source
# This is a sample configuration file for waaad # This file is divided in sections. # The [general] and [extensions] sections are mandatory. # See bellow for more contextual information. [general] # The Diameter-Id of this peer. # This must be a valid FQDN that resolves to the local host. # Default: no default diameter-id = "aaa.koganei.wide.ad.jp"; # The port this peer is listening on for incoming connections (TCP and SCTP). # Default: 3868 # LocalPort = 3868; # Directives for the addresses that the local peer will use. # The following directives are defined: # 'no_tcp;' : do not listen for TCP traffic, or attempt TCP connections. -- SCTP cannot be disabled. # 'no_ip4;' : do not use local IP addresses. # 'no_ip6;' : do not use local IPv6 addresses. # 'primary = "xxx.xxx.xxx.xxx";' : Listen TCP and SCTP connections on this address. # 'primary = "aaaa:bbbb::dddd:eeee";' : Listen TCP and SCTP connections on this address. # 'secondary = "xxx.xxx.xxx.xxx";' : also use this IP for SCTP multihoming, but not as TCP server. # 'secondary = "aaaa:bbbb::dddd:eeee";': also use this IPv6 for SCTP multihoming, but not as TCP server. # # Note that: # If no_ip4 is specified, no_ip6, primary4 and secondary4 are forbidden. # If no_ip6 is specified, no_ip4, primary6 and secondary6 are forbidden. # primary* directives use more resources than secondary* (one thread per primary sockets). # The first "primary" directive that appears will be used as primary for SCTP and as # value for Host-IP-Address for CER/CEA exchanged over TCP. # # The default is to use both IP and IPv6, allow TCP, and let the system select the addresses. # In that case, the address used in CER/CEA will be the first value returned by DNS for the diameter-id resolution. # Where the messages are sent? # Valid values: console, syslog. # Multiple values are allowed. Separator is ','. Example: ## Log = console, syslog; # Default: console # log = console; # The Tc timer of this peer. # This is the delay before an attempt is made to reconnect a disconnected peer. # The value is expressed in seconds. The recommended value is 30 seconds. # Default: 30 # tctimer = 30; # The Tw timer of this peer. # This is the delay before a watchdog message is sent, as described in RFC 3539. # The value is expressed in seconds. The default value is 30 seconds. Value must # be greater or equal to 6 seconds. See details in the RFC. # Default: 30 # twtimer = 30; # Disable the relaying of Diameter messages? # For messages not handled locally, the default behavior is to forward the # message to another peer if any is available, according to the routing # mechanism. # If this variable is set to non-0 value, then the messages are not relayed and # the "0xffffff" application is not advertised in CER/CEA exchanges. # Default: 0 # DisableRelay = 0; [extensions] # Each dynamic extension that must be loaded is specified with this syntax: # "extname" = { filename="path/to/extfile"; conffile="path/to/conffile"; }; # Where: # extname is an alias for the extension. You may provide anything here. # filename is the location of the dynamic library to open. # conffile is optional. When provided, it is passed to the extension. # "sample" = { filename="/root/sources/waaad/build/extensions/sample/.libs/sample.so"; }; "sec_nosec" = { filename="/root/sources/waaad/build/extensions/sec_nosec/.libs/sec_nosec.so"; conffile="/root/sources/waaad/doc/sec_nosec.conf.sample"; }; [peers] # This section allows to declare the other diameter peers that we must connect to. # You have to provide the Diameter-Id (= fqdn) of these peers. # During the Capabilities-Exchange process, if the remote peer claims a different Diameter-Id, # the connexion will be closed. # # The format is: # "peer_fqdn" = { uri="peer_uri"; }; # where: # peer_fqdn is the Diameter-Id of the remote peer. # peer_uri is optional. If provided, it must comply to this format: # scheme "://" node [ ":" port] [ ";transport=" transport ] # where: # scheme : "aaa" (no security) or "aaas" (default security). Do not use "aaa" unless you have some other security mechanism deployed (IKEv2, ...). Default is "aaas". # node : a name or address that resolves to the peer (dns name, alias, ip, [ipv6], ...). This string is passed to getaddrinfo. Default is to resolve the "peer_fqdn". # port : an integer to specify the port to connect to. Default is the Diameter port 3868. # transport: either "sctp" or "tcp". Default is "sctp". # "peer1.localdomain" = { uri = "aaas://192.168.2.24"; }; "peer2.localdomain" = { uri = "aaas://aaa.koganei.wide.ad.jp:3869;transport=tcp"; }; "peer3.localdomain" = {};