Go to file
Simon Ser 18dd507ea5
Don't try to guess listening address
Always listen on all hosts. Only use the host part of a frontend
address for TLS cert names.

Customizing the listen host will be better done with a `bind`
directive, like Caddy does.
2020-09-12 13:41:11 +02:00
cmd/tlstunnel Don't try to guess listening address 2020-09-12 13:41:11 +02:00
.build.yml ci: add .build.yml 2020-09-09 16:13:35 +02:00
.gitignore Add Makefile 2020-09-09 15:13:57 +02:00
LICENSE Initial commit 2020-09-08 12:11:32 +02:00
Makefile Store certificates in /var/lib/tlstunnel by default 2020-09-10 23:33:09 +02:00
README.md ci: add .build.yml 2020-09-09 16:13:35 +02:00
config.go Move executable to cmd/tlstunnel 2020-09-10 14:49:59 +02:00
directives.go Don't try to guess listening address 2020-09-12 13:41:11 +02:00
go.mod Add support for the PROXY protocol 2020-09-09 14:52:41 +02:00
go.sum Add support for the PROXY protocol 2020-09-09 14:52:41 +02:00
server.go Store certificates in /var/lib/tlstunnel by default 2020-09-10 23:33:09 +02:00
tlstunnel.1.scd Add man page 2020-09-09 15:13:39 +02:00

README.md

tlstunnel

builds.sr.ht status

A TLS reverse proxy.

  • Automatic TLS with Let's Encrypt
  • Route incoming connections to backends using Server Name Indication
  • Support for the PROXY protocol

Example configuration:

frontend example.org:443 {
    backend localhost:8080
}

See the man page for more information.

License

MIT