-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add SSL and Host support for streams #1829
Comments
Any timeline on this idea to be implemented? |
+1 |
+1 Forwarding a specific port towards a backend server now is only possible without SSL (using stream). |
+1. Want to terminate TLS for MQTT at the perimeter with mTLS to keep unauthenticated traffic away from the origin servers. |
+1 SSL is everywhere. Please add support. |
+1. :) |
+1 |
1 similar comment
+1 |
Any updates? :) |
+1 |
+1 |
Is that feature already planned? |
Just installed this to try, and I can't use stream with SSL for rabbitMq. |
can this not be added, by simply adding a custom stream .conf .. like pointed out in this comment ? |
Yes, but for example 0xJacky/nginx-ui have stream custom conf from UI out of box. I use it for my server. |
Bump. |
Is your feature request related to a problem? Please describe.
If i want to ex:
Add a host stream for TCP with SSL support to proxy DoT( Dns-over-TLS) this is not possible right now.
This requires modules: ngx_stream_map_module and ngx_stream_ssl_preread_module
to be implemented.
Also a feature in the WebUI to be able to add streams with SSL and host support.
Describe the solution you'd like
Add the ability to use hosts redirect and SSL with a TCP stream proxy.
Include these modules in proxy manager:
https://nginx.org/en/docs/stream/ngx_stream_ssl_preread_module.html
https://nginx.org/en/docs/stream/ngx_stream_map_module.html
Describe alternatives you've considered
Only alternative is to forward TCP 853 directly via streams, not using host or ssl.
Additional context
These modules are needed for this to work and does need to be implemented.
https://nginx.org/en/docs/stream/ngx_stream_ssl_preread_module.html
https://nginx.org/en/docs/stream/ngx_stream_map_module.html
The text was updated successfully, but these errors were encountered: