3proxy

mirror of https://github.com/3proxy/3proxy.git synced 2025-02-23 02:25:40 +08:00

History

Vladimir Dubrovin 013d4bc333 tlspr (SNI proxy) implemented Options -cN - level of TLS check default - allow non-TLS traffic 1 - require TLS, only check client HELLO packet 2 - require TLS, check both client and server HELLO 3 - require TLS, check server send certificate (not compatible with TLS 1.3) 4 - require mutual TLS, check server send certificate request and client sends certificate (not compatible with TLS 1.3) -P - default port examples: 1. tlspr -p1443 -P443 -c1 (port 1443 may be used to redirect traffic to destination port 143). SNI is used to find destination host 2. allow * * * 80 parent 1000 http 0.0.0.0 0 allow * * * * CONNECT parent 1000 tls 0.0.0.0 0 deny * * some.not.allowed.host allow * socks attempts to take destination hostname from SNI in SOCKS	2024-05-20 13:01:38 +03:00
..
.gitignore	Use -fPIC instead of -fpic	2020-08-06 16:19:55 +03:00
tlspr	tlspr (SNI proxy) implemented	2024-05-20 13:01:38 +03:00

Vladimir Dubrovin 013d4bc333 tlspr (SNI proxy) implemented

Options -cN - level of TLS check
default - allow non-TLS traffic
1 - require TLS, only check client HELLO packet
2 - require TLS, check both client and server HELLO
3 - require TLS, check server send certificate (not compatible with TLS 1.3)
4 - require mutual TLS, check server send certificate request and client sends certificate (not compatible with TLS 1.3)
-P - default port

examples:

1.
tlspr -p1443 -P443 -c1
(port 1443 may be used to redirect traffic to destination port 143). SNI is used to find destination host

2.
allow * * * 80
parent 1000 http 0.0.0.0 0
allow * * * * CONNECT
parent 1000 tls 0.0.0.0 0
deny * * some.not.allowed.host
allow *
socks

attempts to take destination hostname from SNI in SOCKS

2024-05-20 13:01:38 +03:00

.gitignore

Use -fPIC instead of -fpic

2020-08-06 16:19:55 +03:00

tlspr

tlspr (SNI proxy) implemented

2024-05-20 13:01:38 +03:00