commit - 3c4b712bb2ef520be964da95fd627060f6639bf8
commit + ee68c36198e0e1f0142b18e130c55b73747027e1
blob - 5a310fb9eb57235a28a1086d8f5eab9a88cb9e84
blob + 8898bb8aa384b388d3b98bf580739593ebfbd8c6
--- gmid.1
+++ gmid.1
.Ar file
is empty, OCSP stapling will not be used.
The default is to not use OCSP stapling.
-.It Ic proxy Cm relay-to Ar host : Ns Ar port
-Relay the request to the given
-.Ar host .
+.It Ic proxy Ar option
+Enable requests proxying.
.Nm
-will connect to
-.Ar host : Ns Ar port
-and repeat the gemini request; the response will then be sent as-is
-to the connected client.
-Port is 1965 by default.
+can forward Gemini requests to other hosts on behalf of the client
+if configured to do so.
+Multiple options may be specified within curly braces.
+Valid options are:
+.Bl -tag -width Ds
+.It Ic cert Ar file
+Specify the client certificate to use when making requests.
+.It Ic key Ar file
+Specify the client certificate key to use when making requests.
+.It Ic protocols Ar string
+Specify the TLS protocols allowed when making remote requests.
+Refer to the
+.Xr tls_config_parse_protocols 3
+function for the valid protocol string values.
+By default, both TLSv1.2 and TLSv1.3 are enabled.
+.It Ic relay-to Ar host : Ns Op Ar port
+Relay the request to the given
+.Ar host
+at the given
+.Ar port
+.Pq 1965 by default.
+.It Ic verifyname Ar bool
+Enable or disable the TLS server name verification
+.Pq enabled by default.
+.El
.It Ic root Pa directory
Specify the root directory for this server
.Pq alas the current Dq document root .
