# client sending

# run driver in TLS-only mode
$ActionSendStreamDriverMode 1

# enable only one of below authentication schemes

# client is NOT authenticated
# (client needs only CAFile certificate)
#$ActionSendStreamDriverAuthMode anon

# restrict access based on server certificate
# (adjust Peer line as needed)
#$ActionSendStreamDriverAuthMode x509/name
#$ActionSendStreamDriverPermittedPeer central.example.net

# forward everything to remote server
# (adjust as needed)
#*.* @@(o)central.example.net:10514

# (repeat all above lines for each restricted server, not just last two)