diff --git a/Debian.yml b/Debian.yml deleted file mode 100644 index 6eb4721..0000000 --- a/Debian.yml +++ /dev/null @@ -1,47 +0,0 @@ ---- -# vars file for zabbix_agent (Debian) - -zabbix_agent: zabbix-agent -zabbix_agent_service: zabbix-agent -zabbix_agent_conf: zabbix_agentd.conf -zabbix_agent2_conf: zabbix_agent2.conf - -zabbix_valid_agent_versions: - # Debian - "12": - - 6.4 - - 6.2 - - 6.0 - - "11": - - 6.4 - - 6.2 - - 6.0 - - "10": - - 6.4 - - 6.2 - - 6.0 - - "9": - - 6.4 - - 6.2 - - 6.0 - # Ubuntu - "22": - - 6.4 - - 6.2 - - 6.0 - - "20": - - 6.4 - - 6.2 - - 6.0 - - "18": - - 6.4 - - 6.2 - - 6.0 - -debian_keyring_path: /etc/apt/keyrings/ -zabbix_gpg_key: "{{ debian_keyring_path }}/zabbix-official-repo.asc" diff --git a/os/ansible.cfg b/linux/os/ansible.cfg similarity index 100% rename from os/ansible.cfg rename to linux/os/ansible.cfg diff --git a/create_user_ssh/add_authorized_key.yml b/linux/os/create_user_ssh/add_authorized_key.yml similarity index 100% rename from create_user_ssh/add_authorized_key.yml rename to linux/os/create_user_ssh/add_authorized_key.yml diff --git a/create_user_ssh/add_public_key/add_public_key.yml b/linux/os/create_user_ssh/add_public_key/add_public_key.yml similarity index 100% rename from create_user_ssh/add_public_key/add_public_key.yml rename to linux/os/create_user_ssh/add_public_key/add_public_key.yml diff --git a/create_user_ssh/add_public_key/variables.yml b/linux/os/create_user_ssh/add_public_key/variables.yml similarity index 100% rename from create_user_ssh/add_public_key/variables.yml rename to linux/os/create_user_ssh/add_public_key/variables.yml diff --git a/create_user_ssh/check_and _add_authorized_key.yml b/linux/os/create_user_ssh/check_and _add_authorized_key.yml similarity index 100% rename from create_user_ssh/check_and _add_authorized_key.yml rename to linux/os/create_user_ssh/check_and _add_authorized_key.yml diff --git a/create_user_ssh/main.yml b/linux/os/create_user_ssh/main.yml similarity index 100% rename from create_user_ssh/main.yml rename to linux/os/create_user_ssh/main.yml diff --git a/create_user_ssh/user_create_ssh.yml b/linux/os/create_user_ssh/user_create_ssh.yml similarity index 100% rename from create_user_ssh/user_create_ssh.yml rename to linux/os/create_user_ssh/user_create_ssh.yml diff --git a/os/install_packages.yml b/linux/os/install_packages.yml similarity index 100% rename from os/install_packages.yml rename to linux/os/install_packages.yml diff --git a/os/multiples.yml b/linux/os/multiples.yml similarity index 100% rename from os/multiples.yml rename to linux/os/multiples.yml diff --git a/os/os-release.yml b/linux/os/os-release.yml similarity index 100% rename from os/os-release.yml rename to linux/os/os-release.yml diff --git a/os/uninstall_packages.yml b/linux/os/uninstall_packages.yml similarity index 100% rename from os/uninstall_packages.yml rename to linux/os/uninstall_packages.yml diff --git a/ping/ping.yml b/linux/ping/ping.yml similarity index 100% rename from ping/ping.yml rename to linux/ping/ping.yml diff --git a/zabbix-agent/Debian.yaml b/linux/zabbix-agent/Debian.yaml similarity index 100% rename from zabbix-agent/Debian.yaml rename to linux/zabbix-agent/Debian.yaml diff --git a/zabbix-agent/main.yaml b/linux/zabbix-agent/main.yaml similarity index 100% rename from zabbix-agent/main.yaml rename to linux/zabbix-agent/main.yaml diff --git a/zabbix-agent/zabbix_agentd.conf.j2 b/linux/zabbix-agent/zabbix_agentd.conf.j2 similarity index 100% rename from zabbix-agent/zabbix_agentd.conf.j2 rename to linux/zabbix-agent/zabbix_agentd.conf.j2 diff --git a/windows/install_packages.ym b/windows/install_packages.ym deleted file mode 100644 index f7d3bd5..0000000 --- a/windows/install_packages.ym +++ /dev/null @@ -1,14 +0,0 @@ ---- -- name: Installing Apache MSI - hosts: W2019 - - tasks: - - name: Download the Apache installer - win_get_url: - url: https://archive.apache.org/dist/httpd/binaries/win32/httpd-2.2.25-win32-x86-no_ssl.msi - dest: C:\ansible_examples\httpd-2.2.25-win32-x86-no_ssl.msi - - - name: Install MSI - win_package: - path: C:\ansible_examples\httpd-2.2.25-win32-x86-no_ssl.msi - state: present \ No newline at end of file diff --git a/zabbix/Debian.yml b/zabbix/Debian.yml deleted file mode 100644 index 6eb4721..0000000 --- a/zabbix/Debian.yml +++ /dev/null @@ -1,47 +0,0 @@ ---- -# vars file for zabbix_agent (Debian) - -zabbix_agent: zabbix-agent -zabbix_agent_service: zabbix-agent -zabbix_agent_conf: zabbix_agentd.conf -zabbix_agent2_conf: zabbix_agent2.conf - -zabbix_valid_agent_versions: - # Debian - "12": - - 6.4 - - 6.2 - - 6.0 - - "11": - - 6.4 - - 6.2 - - 6.0 - - "10": - - 6.4 - - 6.2 - - 6.0 - - "9": - - 6.4 - - 6.2 - - 6.0 - # Ubuntu - "22": - - 6.4 - - 6.2 - - 6.0 - - "20": - - 6.4 - - 6.2 - - 6.0 - - "18": - - 6.4 - - 6.2 - - 6.0 - -debian_keyring_path: /etc/apt/keyrings/ -zabbix_gpg_key: "{{ debian_keyring_path }}/zabbix-official-repo.asc" diff --git a/zabbix/RedHat.yml b/zabbix/RedHat.yml deleted file mode 100644 index 50f0b01..0000000 --- a/zabbix/RedHat.yml +++ /dev/null @@ -1,21 +0,0 @@ ---- -# vars file for zabbix_agent (RedHat) - -zabbix_agent: zabbix-agent -zabbix_agent_service: zabbix-agent -zabbix_agent_conf: zabbix_agentd.conf -zabbix_agent2_conf: zabbix_agent2.conf - -zabbix_valid_agent_versions: - "9": - - 6.4 - - 6.2 - - 6.0 - "8": - - 6.4 - - 6.2 - - 6.0 - "7": - - 6.4 - - 6.2 - - 6.0 diff --git a/zabbix/agent.yaml b/zabbix/agent.yaml deleted file mode 100644 index e51f8df..0000000 --- a/zabbix/agent.yaml +++ /dev/null @@ -1,38 +0,0 @@ -# ansible-playbook -i inventory agent.yaml -u centos --key-file=node.pem -b - -#- hosts: {"{ hostvars[hostname].ansible_host }"} - ---- -- name: Gather client information - hosts: "{{ hostname }}" - gather_facts: yes - vars: - ansible_python_interpreter: /usr/bin/python3 - tasks: - - name: get zabbix package - get_url: - url: https://repo.zabbix.com/zabbix/6.4/debian/pool/main/z/zabbix/zabbix-agent_6.4.0-1%2Bdebian11_amd64.deb - dest: /tmp - - - name: dpkg zabbix - ansible.builtin.dpkg_selections: - name: zabbix-release_6.0-3+ubuntu22.04_all.deb - selection: install - - - name: update package index - ansible.builtin.apt: - update_cache: yes - - # - name: Copy zabbix_agentd.conf file with owner and permissions - # ansible.builtin.copy: - # src: zabbix_agentd.conf - # dest: /etc/zabbix/zabbix_agentd.conf - - - name: install zabbix-agent #Zabbixエージェントをインストールします。 - ansible.builtin.apt: - name: - - zabbix-agent - state: present - - - \ No newline at end of file diff --git a/zabbix/main.yml b/zabbix/main.yml deleted file mode 100644 index 06d7405..0000000 Binary files a/zabbix/main.yml and /dev/null differ diff --git a/zabbix/zabbix_agentd.conf b/zabbix/zabbix_agentd.conf deleted file mode 100644 index 42d4e96..0000000 --- a/zabbix/zabbix_agentd.conf +++ /dev/null @@ -1,549 +0,0 @@ -# This is a configuration file for Zabbix agent daemon (Unix) -# To get more information about Zabbix, visit http://www.zabbix.com - -############ GENERAL PARAMETERS ################# - -### Option: PidFile -# Name of PID file. -# -# Mandatory: no -# Default: -# PidFile=/tmp/zabbix_agentd.pid - -### Option: LogType -# Specifies where log messages are written to: -# system - syslog -# file - file specified with LogFile parameter -# console - standard output -# -# Mandatory: no -# Default: -# LogType=file -LogType=console - -### Option: LogFile -# Log file name for LogType 'file' parameter. -# -# Mandatory: yes, if LogType is set to file, otherwise no -# Default: -# LogFile= - - -### Option: LogFileSize -# Maximum size of log file in MB. -# 0 - disable automatic log rotation. -# -# Mandatory: no -# Range: 0-1024 -# Default: -# LogFileSize=1 - -### Option: DebugLevel -# Specifies debug level: -# 0 - basic information about starting and stopping of Zabbix processes -# 1 - critical information -# 2 - error information -# 3 - warnings -# 4 - for debugging (produces lots of information) -# 5 - extended debugging (produces even more information) -# -# Mandatory: no -# Range: 0-5 -# Default: -# DebugLevel=3 - -### Option: SourceIP -# Source IP address for outgoing connections. -# -# Mandatory: no -# Default: -# SourceIP= - -### Option: AllowKey -# Allow execution of item keys matching pattern. -# Multiple keys matching rules may be defined in combination with DenyKey. -# Key pattern is wildcard expression, which support "*" character to match any number of any characters in certain position. It might be used in both key name and key arguments. -# Parameters are processed one by one according their appearance order. -# If no AllowKey or DenyKey rules defined, all keys are allowed. -# -# Mandatory: no - -### Option: DenyKey -# Deny execution of items keys matching pattern. -# Multiple keys matching rules may be defined in combination with AllowKey. -# Key pattern is wildcard expression, which support "*" character to match any number of any characters in certain position. It might be used in both key name and key arguments. -# Parameters are processed one by one according their appearance order. -# If no AllowKey or DenyKey rules defined, all keys are allowed. -# Unless another system.run[*] rule is specified DenyKey=system.run[*] is added by default. -# -# Mandatory: no -# Default: -# DenyKey=system.run[*] - -### Option: EnableRemoteCommands - Deprecated, use AllowKey=system.run[*] or DenyKey=system.run[*] instead -# Internal alias for AllowKey/DenyKey parameters depending on value: -# 0 - DenyKey=system.run[*] -# 1 - AllowKey=system.run[*] -# -# Mandatory: no - -### Option: LogRemoteCommands -# Enable logging of executed shell commands as warnings. -# 0 - disabled -# 1 - enabled -# -# Mandatory: no -# Default: -# LogRemoteCommands=0 - -##### Passive checks related - -### Option: Server -# List of comma delimited IP addresses, optionally in CIDR notation, or DNS names of Zabbix servers and Zabbix proxies. -# Incoming connections will be accepted only from the hosts listed here. -# If IPv6 support is enabled then '127.0.0.1', '::127.0.0.1', '::ffff:127.0.0.1' are treated equally -# and '::/0' will allow any IPv4 or IPv6 address. -# '0.0.0.0/0' can be used to allow any IPv4 address. -# Example: Server=127.0.0.1,192.168.1.0/24,::1,2001:db8::/32,zabbix.example.com -# -# Mandatory: yes, if StartAgents is not explicitly set to 0 -# Default: -# Server= - -Server=zabbix-server - -### Option: ListenPort -# Agent will listen on this port for connections from the server. -# -# Mandatory: no -# Range: 1024-32767 -# Default: -# ListenPort=10050 - -### Option: ListenIP -# List of comma delimited IP addresses that the agent should listen on. -# First IP address is sent to Zabbix server if connecting to it to retrieve list of active checks. -# -# Mandatory: no -# Default: -# ListenIP=0.0.0.0 - -### Option: StartAgents -# Number of pre-forked instances of zabbix_agentd that process passive checks. -# If set to 0, disables passive checks and the agent will not listen on any TCP port. -# -# Mandatory: no -# Range: 0-100 -# Default: -# StartAgents=3 - -##### Active checks related - -### Option: ServerActive -# Zabbix server/proxy address or cluster configuration to get active checks from. -# Server/proxy address is IP address or DNS name and optional port separated by colon. -# Cluster configuration is one or more server addresses separated by semicolon. -# Multiple Zabbix servers/clusters and Zabbix proxies can be specified, separated by comma. -# More than one Zabbix proxy should not be specified from each Zabbix server/cluster. -# If Zabbix proxy is specified then Zabbix server/cluster for that proxy should not be specified. -# Multiple comma-delimited addresses can be provided to use several independent Zabbix servers in parallel. Spaces are allowed. -# If port is not specified, default port is used. -# IPv6 addresses must be enclosed in square brackets if port for that host is specified. -# If port is not specified, square brackets for IPv6 addresses are optional. -# If this parameter is not specified, active checks are disabled. -# Example for Zabbix proxy: -# ServerActive=127.0.0.1:10051 -# Example for multiple servers: -# ServerActive=127.0.0.1:20051,zabbix.domain,[::1]:30051,::1,[12fc::1] -# Example for high availability: -# ServerActive=zabbix.cluster.node1;zabbix.cluster.node2:20051;zabbix.cluster.node3 -# Example for high availability with two clusters and one server: -# ServerActive=zabbix.cluster.node1;zabbix.cluster.node2:20051,zabbix.cluster2.node1;zabbix.cluster2.node2,zabbix.domain -# -# Mandatory: no -# Default: -# ServerActive= - -ServerActive=zabbix-server:10051 - -### Option: Hostname -# List of comma delimited unique, case sensitive hostnames. -# Required for active checks and must match hostnames as configured on the server. -# Value is acquired from HostnameItem if undefined. -# -# Mandatory: no -# Default: -# Hostname= - - -### Option: HostnameItem -# Item used for generating Hostname if it is undefined. Ignored if Hostname is defined. -# Does not support UserParameters or aliases. -# -# Mandatory: no -# Default: -# HostnameItem=system.hostname - -### Option: HostMetadata -# Optional parameter that defines host metadata. -# Host metadata is used at host auto-registration process. -# An agent will issue an error and not start if the value is over limit of 2034 bytes. -# If not defined, value will be acquired from HostMetadataItem. -# -# Mandatory: no -# Range: 0-2034 bytes -# Default: -# HostMetadata= - -### Option: HostMetadataItem -# Optional parameter that defines an item used for getting host metadata. -# Host metadata is used at host auto-registration process. -# During an auto-registration request an agent will log a warning message if -# the value returned by specified item is over limit of 65535 characters. -# This option is only used when HostMetadata is not defined. -# -# Mandatory: no -# Default: -# HostMetadataItem= - -### Option: HostInterface -# Optional parameter that defines host interface. -# Host interface is used at host auto-registration process. -# An agent will issue an error and not start if the value is over limit of 255 characters. -# If not defined, value will be acquired from HostInterfaceItem. -# -# Mandatory: no -# Range: 0-255 characters -# Default: -# HostInterface= - -### Option: HostInterfaceItem -# Optional parameter that defines an item used for getting host interface. -# Host interface is used at host auto-registration process. -# During an auto-registration request an agent will log a warning message if -# the value returned by specified item is over limit of 255 characters. -# This option is only used when HostInterface is not defined. -# -# Mandatory: no -# Default: -# HostInterfaceItem= - -### Option: RefreshActiveChecks -# How often list of active checks is refreshed, in seconds. -# -# Mandatory: no -# Range: 1-86400 -# Default: -# RefreshActiveChecks=5 - -### Option: BufferSend -# Do not keep data longer than N seconds in buffer. -# -# Mandatory: no -# Range: 1-3600 -# Default: -# BufferSend=5 - -### Option: BufferSize -# Maximum number of values in a memory buffer. The agent will send -# all collected data to Zabbix Server or Proxy if the buffer is full. -# -# Mandatory: no -# Range: 2-65535 -# Default: -# BufferSize=100 - -### Option: MaxLinesPerSecond -# Maximum number of new lines the agent will send per second to Zabbix Server -# or Proxy processing 'log' and 'logrt' active checks. -# The provided value will be overridden by the parameter 'maxlines', -# provided in 'log' or 'logrt' item keys. -# -# Mandatory: no -# Range: 1-1000 -# Default: -# MaxLinesPerSecond=20 - -### Option: HeartbeatFrequency -# Frequency of heartbeat messages in seconds. -# Used for monitoring availability of active checks. -# 0 - heartbeat messages disabled. -# -# Mandatory: no -# Range: 0-3600 -# Default: 60 -# HeartbeatFrequency= - -############ ADVANCED PARAMETERS ################# - -### Option: Alias -# Sets an alias for an item key. It can be used to substitute long and complex item key with a smaller and simpler one. -# Multiple Alias parameters may be present. Multiple parameters with the same Alias key are not allowed. -# Different Alias keys may reference the same item key. -# For example, to retrieve the ID of user 'zabbix': -# Alias=zabbix.userid:vfs.file.regexp[/etc/passwd,^zabbix:.:([0-9]+),,,,\1] -# Now shorthand key zabbix.userid may be used to retrieve data. -# Aliases can be used in HostMetadataItem but not in HostnameItem parameters. -# -# Mandatory: no -# Range: -# Default: - -### Option: Timeout -# Spend no more than Timeout seconds on processing -# -# Mandatory: no -# Range: 1-30 -# Default: -# Timeout=3 - -### Option: AllowRoot -# Allow the agent to run as 'root'. If disabled and the agent is started by 'root', the agent -# will try to switch to the user specified by the User configuration option instead. -# Has no effect if started under a regular user. -# 0 - do not allow -# 1 - allow -# -# Mandatory: no -# Default: -# AllowRoot=0 - -### Option: User -# Drop privileges to a specific, existing user on the system. -# Only has effect if run as 'root' and AllowRoot is disabled. -# -# Mandatory: no -# Default: -# User=zabbix -User=zabbix - -### Option: Include -# You may include individual files or all files in a directory in the configuration file. -# Installing Zabbix will create include directory in /usr/local/etc, unless modified during the compile time. -# -# Mandatory: no -# Default: -Include=/etc/zabbix/zabbix_agentd.d/*.conf -# Include= - -# Include=/usr/local/etc/zabbix_agentd.userparams.conf -# Include=/usr/local/etc/zabbix_agentd.conf.d/ -# Include=/usr/local/etc/zabbix_agentd.conf.d/*.conf - -####### USER-DEFINED MONITORED PARAMETERS ####### - -### Option: UnsafeUserParameters -# Allow all characters to be passed in arguments to user-defined parameters. -# The following characters are not allowed: -# \ ' " ` * ? [ ] { } ~ $ ! & ; ( ) < > | # @ -# Additionally, newline characters are not allowed. -# 0 - do not allow -# 1 - allow -# -# Mandatory: no -# Range: 0-1 -# Default: -# UnsafeUserParameters=0 - -### Option: UserParameter -# User-defined parameter to monitor. There can be several user-defined parameters. -# Format: UserParameter=, -# See 'zabbix_agentd' directory for examples. -# -# Mandatory: no -# Default: -# UserParameter= - -### Option: UserParameterDir -# Directory to execute UserParameter commands from. Only one entry is allowed. -# When executing UserParameter commands the agent will change the working directory to the one -# specified in the UserParameterDir option. -# This way UserParameter commands can be specified using the relative ./ prefix. -# -# Mandatory: no -# Default: -# UserParameterDir= - -####### LOADABLE MODULES ####### - -### Option: LoadModulePath -# Full path to location of agent modules. -# Default depends on compilation options. -# To see the default path run command "zabbix_agentd --help". -# -# Mandatory: no -# Default: -# LoadModulePath=${libdir}/modules -LoadModulePath=/var/lib/zabbix/modules/ - -### Option: LoadModule -# Module to load at agent startup. Modules are used to extend functionality of the agent. -# Formats: -# LoadModule= -# LoadModule= -# LoadModule= -# Either the module must be located in directory specified by LoadModulePath or the path must precede the module name. -# If the preceding path is absolute (starts with '/') then LoadModulePath is ignored. -# It is allowed to include multiple LoadModule parameters. -# -# Mandatory: no -# Default: -# LoadModule= - -####### TLS-RELATED PARAMETERS ####### - -### Option: TLSConnect -# How the agent should connect to server or proxy. Used for active checks. -# Only one value can be specified: -# unencrypted - connect without encryption -# psk - connect using TLS and a pre-shared key -# cert - connect using TLS and a certificate -# -# Mandatory: yes, if TLS certificate or PSK parameters are defined (even for 'unencrypted' connection) -# Default: -# TLSConnect=unencrypted - -### Option: TLSAccept -# What incoming connections to accept. -# Multiple values can be specified, separated by comma: -# unencrypted - accept connections without encryption -# psk - accept connections secured with TLS and a pre-shared key -# cert - accept connections secured with TLS and a certificate -# -# Mandatory: yes, if TLS certificate or PSK parameters are defined (even for 'unencrypted' connection) -# Default: -# TLSAccept=unencrypted - -### Option: TLSCAFile -# Full pathname of a file containing the top-level CA(s) certificates for -# peer certificate verification. -# -# Mandatory: no -# Default: -# TLSCAFile= - -### Option: TLSCRLFile -# Full pathname of a file containing revoked certificates. -# -# Mandatory: no -# Default: -# TLSCRLFile= - -### Option: TLSServerCertIssuer -# Allowed server certificate issuer. -# -# Mandatory: no -# Default: -# TLSServerCertIssuer= - -### Option: TLSServerCertSubject -# Allowed server certificate subject. -# -# Mandatory: no -# Default: -# TLSServerCertSubject= - -### Option: TLSCertFile -# Full pathname of a file containing the agent certificate or certificate chain. -# -# Mandatory: no -# Default: -# TLSCertFile= - -### Option: TLSKeyFile -# Full pathname of a file containing the agent private key. -# -# Mandatory: no -# Default: -# TLSKeyFile= - -### Option: TLSPSKIdentity -# Unique, case sensitive string used to identify the pre-shared key. -# -# Mandatory: no -# Default: -# TLSPSKIdentity= - -### Option: TLSPSKFile -# Full pathname of a file containing the pre-shared key. -# -# Mandatory: no -# Default: -# TLSPSKFile= - -####### For advanced users - TLS ciphersuite selection criteria ####### - -### Option: TLSCipherCert13 -# Cipher string for OpenSSL 1.1.1 or newer in TLS 1.3. -# Override the default ciphersuite selection criteria for certificate-based encryption. -# -# Mandatory: no -# Default: -# TLSCipherCert13= - -### Option: TLSCipherCert -# GnuTLS priority string or OpenSSL (TLS 1.2) cipher string. -# Override the default ciphersuite selection criteria for certificate-based encryption. -# Example for GnuTLS: -# NONE:+VERS-TLS1.2:+ECDHE-RSA:+RSA:+AES-128-GCM:+AES-128-CBC:+AEAD:+SHA256:+SHA1:+CURVE-ALL:+COMP-NULL:+SIGN-ALL:+CTYPE-X.509 -# Example for OpenSSL: -# EECDH+aRSA+AES128:RSA+aRSA+AES128 -# -# Mandatory: no -# Default: -# TLSCipherCert= - -### Option: TLSCipherPSK13 -# Cipher string for OpenSSL 1.1.1 or newer in TLS 1.3. -# Override the default ciphersuite selection criteria for PSK-based encryption. -# Example: -# TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256 -# -# Mandatory: no -# Default: -# TLSCipherPSK13= - -### Option: TLSCipherPSK -# GnuTLS priority string or OpenSSL (TLS 1.2) cipher string. -# Override the default ciphersuite selection criteria for PSK-based encryption. -# Example for GnuTLS: -# NONE:+VERS-TLS1.2:+ECDHE-PSK:+PSK:+AES-128-GCM:+AES-128-CBC:+AEAD:+SHA256:+SHA1:+CURVE-ALL:+COMP-NULL:+SIGN-ALL -# Example for OpenSSL: -# kECDHEPSK+AES128:kPSK+AES128 -# -# Mandatory: no -# Default: -# TLSCipherPSK= - -### Option: TLSCipherAll13 -# Cipher string for OpenSSL 1.1.1 or newer in TLS 1.3. -# Override the default ciphersuite selection criteria for certificate- and PSK-based encryption. -# Example: -# TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256 -# -# Mandatory: no -# Default: -# TLSCipherAll13= - -### Option: TLSCipherAll -# GnuTLS priority string or OpenSSL (TLS 1.2) cipher string. -# Override the default ciphersuite selection criteria for certificate- and PSK-based encryption. -# Example for GnuTLS: -# NONE:+VERS-TLS1.2:+ECDHE-RSA:+RSA:+ECDHE-PSK:+PSK:+AES-128-GCM:+AES-128-CBC:+AEAD:+SHA256:+SHA1:+CURVE-ALL:+COMP-NULL:+SIGN-ALL:+CTYPE-X.509 -# Example for OpenSSL: -# EECDH+aRSA+AES128:RSA+aRSA+AES128:kECDHEPSK+AES128:kPSK+AES128 -# -# Mandatory: no -# Default: -# TLSCipherAll= - -####### For advanced users - TCP-related fine-tuning parameters ####### - -## Option: ListenBacklog -# The maximum number of pending connections in the queue. This parameter is passed to -# listen() function as argument 'backlog' (see "man listen"). -# -# Mandatory: no -# Range: 0 - INT_MAX (depends on system, too large values may be silently truncated to implementation-specified maximum) -# Default: SOMAXCONN (hard-coded constant, depends on system) -# ListenBacklog=