# Drip Server Configuration (Direct TLS mode)
# Use with: docker-compose.yml

# Server port (required)
port: 443

# Domain for client connections (required)
domain: tunnel.example.com

# Domain for tunnel URLs (optional, defaults to domain)
# tunnel_domain: example.com

# Authentication token (optional, but recommended)
token: your-secret-token

# TLS settings
# drip-server handles TLS directly, requires certificate files
tls_enabled: true
tls_cert: /app/certs/fullchain.pem
tls_key: /app/certs/privkey.pem

# TCP tunnel port range
tcp_port_min: 20000
tcp_port_max: 20100

# Optional settings
# public_port: 443          # Port to display in URLs (for reverse proxy)
# metrics_token: secret     # Token for /metrics endpoint
# debug: false              # Enable debug logging
# pprof_port: 6060          # Enable pprof profiling
# transports:               # Allowed transports (default: tcp,wss)
#   - tcp
#   - wss
# tunnel_types:             # Allowed tunnel types (default: http,https,tcp)
#   - http
#   - https
#   - tcp