tlsrouter

command

v0.0.0-...-b6bb9b5 Latest Latest Go to latest Published: Jan 25, 2020 License: Apache-2.0 Imports: 16 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

README ¶

TLS SNI router

TLSRouter is a TLS proxy that routes connections to backends based on the TLS SNI (Server Name Indication) of the TLS handshake. It carries no encryption keys and cannot decode the traffic that it proxies.

Installation

Install TLSRouter via go get:

go get go.universe.tf/tcpproxy/cmd/tlsrouter

Usage

TLSRouter requires a configuration file that tells it what backend to use for a given hostname. The config file looks like:

# Basic hostname -> backend mapping
go.universe.tf localhost:1234

# DNS wildcards are understood as well.
*.go.universe.tf 1.2.3.4:8080

# DNS wildcards can go anywhere in name.
google.* 10.20.30.40:443

# RE2 regexes are also available
/(alpha|beta|gamma)\.mon(itoring)?\.dave\.tf/ 100.200.100.200:443

# If your backend supports HAProxy's PROXY protocol, you can enable
# it to receive the real client ip:port.

fancy.backend 2.3.4.5:443 PROXY

TLSRouter takes one mandatory commandline argument, the configuration file to use:

tlsrouter -conf tlsrouter.conf

Optional flags are:

-listen <addr>: set the listen address (default :443)
-hello-timeout <duration>: how long to wait for the start of the TLS handshake (default 3s)

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL