Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/hannesm/tlstunnel-lwt
TLS tunnel -- an alternative to stud / stunnel
https://github.com/hannesm/tlstunnel-lwt
mirageos ocaml stunnel tls tls-tunnel
Last synced: 19 days ago
JSON representation
TLS tunnel -- an alternative to stud / stunnel
- Host: GitHub
- URL: https://github.com/hannesm/tlstunnel-lwt
- Owner: hannesm
- License: bsd-2-clause
- Created: 2015-03-30T09:59:29.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2023-02-15T17:06:15.000Z (almost 2 years ago)
- Last Synced: 2024-10-23T11:09:02.689Z (28 days ago)
- Topics: mirageos, ocaml, stunnel, tls, tls-tunnel
- Language: OCaml
- Homepage:
- Size: 135 KB
- Stars: 85
- Watchers: 12
- Forks: 7
- Open Issues: 11
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGES.md
- License: LICENSE.md
Awesome Lists containing this project
README
## TLS tunnel -- a TLS reverse proxy
Who needs a stunnel if you have a tls tunnel?
`tlstunnel` is picky; it won't accept connections:
- which do not contain the [secure renegotiation](https://tools.ietf.org/html/rfc5746) extension
- which speak SSL version 3
- if the given certificate chain is not valid (or contains an X.509 version 1 certificate, or less than 1024 bits RSA public key
Deprecated in favour of the [MirageOS unikernel](https://github.com/roburio/tlstunnel).
## Installation
[](https://travis-ci.org/hannesm/tlstunnel)
You first need [OCaml](https://ocaml.org) (at least 4.02.0) and
[OPAM](https://opam.ocaml.org) (at least 1.2.2) from your distribution.
Run `opam install tlstunnel` after `opam init` finished.
## Execution
A sample command line is:
`tlstunnel -b 127.0.0.1:8080 -f 4433 -cert server.pem`
which listens on TCP port `4433` with the given certificate chain
and private key (both in `server.pem`), and forwards
connections to `127.0.0.1` on port `8080`.
An optional argument is `-l FILE` to log into a file instead of to
stdout. Try `--help` for all command line arguments.