Skip to content
/ tls-terminating-proxy Public

Terminates TLS connections, then forwards the unencrypted traffic

8 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Psiphon-Labs/tls-terminating-proxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
main.go
main.go
 
 

Repository files navigation

TLS Terminating Proxy

Purpose

Terminates TLS (w/ client authentication and verification), then forwards unwrapped traffic on to a destination host:port

Prerequisites

  • Go 1.6.2+

Usage

  1. go build -o tls-terminating-proxy main.go
  2. ./tls-terminating-proxy <options>

Options:

--backend string
  backend address (default "localhost:9999")
--ca string
  SSL CA certificate path (default "ssl/ca.pem")
--cn string
  whitelist of allowed CNs in the client certificate (this flag can be repeated to allow multiple CNs)
--local string
  local address (default ":44300")
--log string
  path to log file (default ""). If blank, logs are written to stdout
--server-certificate string
  SSL server certificate path (default "ssl/cert.pem")
--server-key string
  SSL server key path (default "ssl/key.pem")

NOTE: If you do not specify any --cn flags, any CN presented by the client will be accepted

About

Terminates TLS connections, then forwards the unencrypted traffic

Resources

Readme
Activity
Custom properties

Stars

8 stars

Watchers

13 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages