qpsmtpd/plugins/stunnel

69 lines
1.7 KiB
Plaintext
Raw Permalink Normal View History

#!perl -w
=head1 NAME
stunnel - stunnel proxy protocol client ip helper.
=head1 DESCRIPTION
stunnel proxy protocol remote ip,port setting feature added for smtps.
reference : http://www.stunnel.org/static/stunnel.html
protocol spec : http://haproxy.1wt.eu/download/1.5/doc/proxy-protocol.txt
config/plugins file example
stunnel proxy on
...
=head1 CONFIGURATION
=head2 proxy [ ON | OFF ]
proxy protocol handler on/off
=cut
use strict;
use warnings;
use Qpsmtpd::Constants;
2014-09-18 08:00:31 +02:00
sub register {
my ($self, $qp, %args) = @_;
2014-09-18 08:00:31 +02:00
return if uc $args{proxy} ne 'ON';
2014-09-18 08:00:31 +02:00
$self->log(LOGINFO, "proxy protocol enabled");
$self->register_hook('unrecognized_command', 'stunnel');
}
2014-09-18 08:00:31 +02:00
sub stunnel {
my ($self, $transaction, $cmd, @args) = @_;
return OK if uc $cmd ne 'PROXY';
return DENY_DISCONNECT if $self->connection->remote_ip() ne '127.0.0.1';
return DENY_DISCONNECT if $self->connection->notes('proxy');
# TCP4 192.168.41.227 10.27.11.106 50060 465
if ($args[0] !~ m/^(.*?) (.*?) (.*?) (.*?) (.*?)$/) {
return DENY_DISCONNECT;
}
$self->connection->remote_ip($2);
$self->connection->remote_port($4);
$self->connection->remote_info("[$2]");
$self->connection->notes('proxy', 'YES');
$self->connection->notes('protocol', $1);
$self->connection->notes('remote_ip', $2);
$self->connection->notes('local_ip', $3);
$self->connection->notes('remote_port', $4);
$self->connection->notes('local_port', $5);
$self->log(LOGINFO, "stunnel : $2:$4");
# DNS reverse
2014-11-06 03:02:58 +01:00
my @ptrs = $self->resolve_ptr($self->connection->remote_ip);
$self->connection->remote_host($ptrs[0]);
2014-09-18 08:00:31 +02:00
return DONE;
}