TLS proxy server for NMDC protocol. Currently supported by Verlihub 1.2.0.2 and later.
openssl req -new -newkey rsa:4096 -x509 -sha256 -days 365 -nodes -out "CertName.crt" -keyout "KeyName.key"
In order to install latest version:
sudo snap install --classic go
Else use:
sudo apt-get install golang
git clone https://github.com/verlihub/tls-proxy.git
cd tls-proxy
go build proxy.go
With metrics:
go build --tags metrics proxy.go
./proxy --cert="/path/to/CertName.crt" --key="/path/to/KeyName.key" --host="1.2.3.4:411" --hub="127.0.0.1:411"
1.2.3.4:411 is the proxy listening socket, the address that hub would normally be listening on. 127.0.0.1:411 is the hub listening socket, the address that accepts connections from the proxy. Add & at the end of command to run the process in background.
!set listen_ip 127.0.0.1
!set tls_proxy_ip 127.0.0.1
Then start the hub as usual.
Following command is sent to the hub right after the connection is established:
$MyIP 2.3.4.5 P/S|
2.3.4.5 is the real IP address of connected user. P stands for plain and S stands for secure connection mode.
Remember to set twice the regular ulimit before starting both servers, because there will be twice as many connections than you would usually have.