-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.conf
282 lines (278 loc) · 9.66 KB
/
server.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
#-------------------------------------------------------------------------------
# Generates "Sample Server" certificate
#-------------------------------------------------------------------------------
# Commands:
# openssl req -new -key server.key -out server.csr -config server.conf
# openssl x509 -req -days 36500 -in server.csr -CA ca.cer -CAkey ca.key -CAcreateserial -out server.cer -extfile server.conf -extensions v3_ca
# openssl verify -CAfile ca.cer server.cer
#-------------------------------------------------------------------------------
[req]
distinguished_name = req_distinguished_name
req_extensions = v3_ca
x509_extensions = v3_ca
prompt = no
[req_distinguished_name]
commonName = Sample Server
[v3_ca]
basicConstraints = critical, CA:false
keyUsage = critical, digitalSignature, keyEncipherment
extendedKeyUsage = critical, serverAuth
subjectAltName = @alt_names
[alt_names]
# For testing purposes, we use the same certificate for all services.
# Includes all IPs from the subnet '172.16.0.0/24'.
DNS.1 = 172.16.0.1
DNS.2 = 172.16.0.2
DNS.3 = 172.16.0.3
DNS.4 = 172.16.0.4
DNS.5 = 172.16.0.5
DNS.6 = 172.16.0.6
DNS.7 = 172.16.0.7
DNS.8 = 172.16.0.8
DNS.9 = 172.16.0.9
DNS.10 = 172.16.0.10
DNS.11 = 172.16.0.11
DNS.12 = 172.16.0.12
DNS.13 = 172.16.0.13
DNS.14 = 172.16.0.14
DNS.15 = 172.16.0.15
DNS.16 = 172.16.0.16
DNS.17 = 172.16.0.17
DNS.18 = 172.16.0.18
DNS.19 = 172.16.0.19
DNS.20 = 172.16.0.20
DNS.21 = 172.16.0.21
DNS.22 = 172.16.0.22
DNS.23 = 172.16.0.23
DNS.24 = 172.16.0.24
DNS.25 = 172.16.0.25
DNS.26 = 172.16.0.26
DNS.27 = 172.16.0.27
DNS.28 = 172.16.0.28
DNS.29 = 172.16.0.29
DNS.30 = 172.16.0.30
DNS.31 = 172.16.0.31
DNS.32 = 172.16.0.32
DNS.33 = 172.16.0.33
DNS.34 = 172.16.0.34
DNS.35 = 172.16.0.35
DNS.36 = 172.16.0.36
DNS.37 = 172.16.0.37
DNS.38 = 172.16.0.38
DNS.39 = 172.16.0.39
DNS.40 = 172.16.0.40
DNS.41 = 172.16.0.41
DNS.42 = 172.16.0.42
DNS.43 = 172.16.0.43
DNS.44 = 172.16.0.44
DNS.45 = 172.16.0.45
DNS.46 = 172.16.0.46
DNS.47 = 172.16.0.47
DNS.48 = 172.16.0.48
DNS.49 = 172.16.0.49
DNS.50 = 172.16.0.50
DNS.51 = 172.16.0.51
DNS.52 = 172.16.0.52
DNS.53 = 172.16.0.53
DNS.54 = 172.16.0.54
DNS.55 = 172.16.0.55
DNS.56 = 172.16.0.56
DNS.57 = 172.16.0.57
DNS.58 = 172.16.0.58
DNS.59 = 172.16.0.59
DNS.60 = 172.16.0.60
DNS.61 = 172.16.0.61
DNS.62 = 172.16.0.62
DNS.63 = 172.16.0.63
DNS.64 = 172.16.0.64
DNS.65 = 172.16.0.65
DNS.66 = 172.16.0.66
DNS.67 = 172.16.0.67
DNS.68 = 172.16.0.68
DNS.69 = 172.16.0.69
DNS.70 = 172.16.0.70
DNS.71 = 172.16.0.71
DNS.72 = 172.16.0.72
DNS.73 = 172.16.0.73
DNS.74 = 172.16.0.74
DNS.75 = 172.16.0.75
DNS.76 = 172.16.0.76
DNS.77 = 172.16.0.77
DNS.78 = 172.16.0.78
DNS.79 = 172.16.0.79
DNS.80 = 172.16.0.80
DNS.81 = 172.16.0.81
DNS.82 = 172.16.0.82
DNS.83 = 172.16.0.83
DNS.84 = 172.16.0.84
DNS.85 = 172.16.0.85
DNS.86 = 172.16.0.86
DNS.87 = 172.16.0.87
DNS.88 = 172.16.0.88
DNS.89 = 172.16.0.89
DNS.90 = 172.16.0.90
DNS.91 = 172.16.0.91
DNS.92 = 172.16.0.92
DNS.93 = 172.16.0.93
DNS.94 = 172.16.0.94
DNS.95 = 172.16.0.95
DNS.96 = 172.16.0.96
DNS.97 = 172.16.0.97
DNS.98 = 172.16.0.98
DNS.99 = 172.16.0.99
DNS.100 = 172.16.0.100
DNS.101 = 172.16.0.101
DNS.102 = 172.16.0.102
DNS.103 = 172.16.0.103
DNS.104 = 172.16.0.104
DNS.105 = 172.16.0.105
DNS.106 = 172.16.0.106
DNS.107 = 172.16.0.107
DNS.108 = 172.16.0.108
DNS.109 = 172.16.0.109
DNS.110 = 172.16.0.110
DNS.111 = 172.16.0.111
DNS.112 = 172.16.0.112
DNS.113 = 172.16.0.113
DNS.114 = 172.16.0.114
DNS.115 = 172.16.0.115
DNS.116 = 172.16.0.116
DNS.117 = 172.16.0.117
DNS.118 = 172.16.0.118
DNS.119 = 172.16.0.119
DNS.120 = 172.16.0.120
DNS.121 = 172.16.0.121
DNS.122 = 172.16.0.122
DNS.123 = 172.16.0.123
DNS.124 = 172.16.0.124
DNS.125 = 172.16.0.125
DNS.126 = 172.16.0.126
DNS.127 = 172.16.0.127
DNS.128 = 172.16.0.128
DNS.129 = 172.16.0.129
DNS.130 = 172.16.0.130
DNS.131 = 172.16.0.131
DNS.132 = 172.16.0.132
DNS.133 = 172.16.0.133
DNS.134 = 172.16.0.134
DNS.135 = 172.16.0.135
DNS.136 = 172.16.0.136
DNS.137 = 172.16.0.137
DNS.138 = 172.16.0.138
DNS.139 = 172.16.0.139
DNS.140 = 172.16.0.140
DNS.141 = 172.16.0.141
DNS.142 = 172.16.0.142
DNS.143 = 172.16.0.143
DNS.144 = 172.16.0.144
DNS.145 = 172.16.0.145
DNS.146 = 172.16.0.146
DNS.147 = 172.16.0.147
DNS.148 = 172.16.0.148
DNS.149 = 172.16.0.149
DNS.150 = 172.16.0.150
DNS.151 = 172.16.0.151
DNS.152 = 172.16.0.152
DNS.153 = 172.16.0.153
DNS.154 = 172.16.0.154
DNS.155 = 172.16.0.155
DNS.156 = 172.16.0.156
DNS.157 = 172.16.0.157
DNS.158 = 172.16.0.158
DNS.159 = 172.16.0.159
DNS.160 = 172.16.0.160
DNS.161 = 172.16.0.161
DNS.162 = 172.16.0.162
DNS.163 = 172.16.0.163
DNS.164 = 172.16.0.164
DNS.165 = 172.16.0.165
DNS.166 = 172.16.0.166
DNS.167 = 172.16.0.167
DNS.168 = 172.16.0.168
DNS.169 = 172.16.0.169
DNS.170 = 172.16.0.170
DNS.171 = 172.16.0.171
DNS.172 = 172.16.0.172
DNS.173 = 172.16.0.173
DNS.174 = 172.16.0.174
DNS.175 = 172.16.0.175
DNS.176 = 172.16.0.176
DNS.177 = 172.16.0.177
DNS.178 = 172.16.0.178
DNS.179 = 172.16.0.179
DNS.180 = 172.16.0.180
DNS.181 = 172.16.0.181
DNS.182 = 172.16.0.182
DNS.183 = 172.16.0.183
DNS.184 = 172.16.0.184
DNS.185 = 172.16.0.185
DNS.186 = 172.16.0.186
DNS.187 = 172.16.0.187
DNS.188 = 172.16.0.188
DNS.189 = 172.16.0.189
DNS.190 = 172.16.0.190
DNS.191 = 172.16.0.191
DNS.192 = 172.16.0.192
DNS.193 = 172.16.0.193
DNS.194 = 172.16.0.194
DNS.195 = 172.16.0.195
DNS.196 = 172.16.0.196
DNS.197 = 172.16.0.197
DNS.198 = 172.16.0.198
DNS.199 = 172.16.0.199
DNS.200 = 172.16.0.200
DNS.201 = 172.16.0.201
DNS.202 = 172.16.0.202
DNS.203 = 172.16.0.203
DNS.204 = 172.16.0.204
DNS.205 = 172.16.0.205
DNS.206 = 172.16.0.206
DNS.207 = 172.16.0.207
DNS.208 = 172.16.0.208
DNS.209 = 172.16.0.209
DNS.210 = 172.16.0.210
DNS.211 = 172.16.0.211
DNS.212 = 172.16.0.212
DNS.213 = 172.16.0.213
DNS.214 = 172.16.0.214
DNS.215 = 172.16.0.215
DNS.216 = 172.16.0.216
DNS.217 = 172.16.0.217
DNS.218 = 172.16.0.218
DNS.219 = 172.16.0.219
DNS.220 = 172.16.0.220
DNS.221 = 172.16.0.221
DNS.222 = 172.16.0.222
DNS.223 = 172.16.0.223
DNS.224 = 172.16.0.224
DNS.225 = 172.16.0.225
DNS.226 = 172.16.0.226
DNS.227 = 172.16.0.227
DNS.228 = 172.16.0.228
DNS.229 = 172.16.0.229
DNS.230 = 172.16.0.230
DNS.231 = 172.16.0.231
DNS.232 = 172.16.0.232
DNS.233 = 172.16.0.233
DNS.234 = 172.16.0.234
DNS.235 = 172.16.0.235
DNS.236 = 172.16.0.236
DNS.237 = 172.16.0.237
DNS.238 = 172.16.0.238
DNS.239 = 172.16.0.239
DNS.240 = 172.16.0.240
DNS.241 = 172.16.0.241
DNS.242 = 172.16.0.242
DNS.243 = 172.16.0.243
DNS.244 = 172.16.0.244
DNS.245 = 172.16.0.245
DNS.246 = 172.16.0.246
DNS.247 = 172.16.0.247
DNS.248 = 172.16.0.248
DNS.249 = 172.16.0.249
DNS.250 = 172.16.0.250
DNS.251 = 172.16.0.251
DNS.252 = 172.16.0.252
DNS.253 = 172.16.0.253
DNS.254 = 172.16.0.254
DNS.255 = 172.16.0.255