diff options
Diffstat (limited to 'plugin')
| -rw-r--r-- | plugin/forward/README.md | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/plugin/forward/README.md b/plugin/forward/README.md index b74154fb2..c4e383fd4 100644 --- a/plugin/forward/README.md +++ b/plugin/forward/README.md @@ -62,12 +62,14 @@ forward FROM TO... { * `expire` **DURATION**, expire (cached) connections after this time, the default is 10s. * `tls` **CERT** **KEY** **CA** define the TLS properties for TLS connection. From 0 to 3 arguments can be provided with the meaning as described below + * `tls` - no client authentication is used, and the system CAs are used to verify the server certificate * `tls` **CA** - no client authentication is used, and the file CA is used to verify the server certificate * `tls` **CERT** **KEY** - client authentication is used with the specified cert/key pair. The server certificate is verified with the system CAs * `tls` **CERT** **KEY** **CA** - client authentication is used with the specified cert/key pair. The server certificate is verified using the specified CA file + * `tls_servername` **NAME** allows you to set a server name in the TLS configuration; for instance 9.9.9.9 needs this to be set to `dns.quad9.net`. * `policy` specifies the policy to use for selecting upstream servers. The default is `random`. |