[sslh] sslh as http multiplexer

[Felix Niederwanger]

Hi,

I'm trying to setup sslh as a http and https multiplexer for redirecting
the traffic from one public IPv4 address to two hosts in a private subnet.

My configuration file /etc/sslh.cfg looks like the following (cropped to
the relevant parts):

     listen:
     (
         { host: "192.168.0.1"; port: "443"; keepalive: true; },
         { host: "192.168.0.1"; port: "80"; keepalive: true; }
     );
     protocols:
     (
          { name: "tls"; host: "192.168.0.2"; port: "443";
alpn_protocols: [ "http/1.1", "http/1.0", "http/2.0" ]; sni_hostnames: [
"host_A.acme" ] },
          { name: "tls"; host: "192.168.0.3"; port: "443";
alpn_protocols: [ "http/1.1", "http/1.0", "http/2.0" ]; sni_hostnames: [
"host_B.acme" ] },
          { name: "http", host: "192.168.0.2"; port: "80"; hostname:
"host_A.acme"; log_level: 0 },
          { name: "http", host: "192.168.0.3"; port: "80"; hostname:
"host_B.acme"; log_level: 0 },
     );

https works nicely, but http always redirects the traffic to the first
host, i.e. 192.168.0.2. I already tried to replace `hostname:
"host_A.acme"` with `hostnames: [ "host_A.acme" ]` but that doesn't
change anything.

Is hostname selection not yet included for http or am I doing some
wrong? Help would be much appreciated:-)

Best,
Felix

-- 
feldspaten.org | PGP: 0x96C6237EE8C57C7C9989AA036E77A590E3F6D71C
Please, https://useplaintext.email/


-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <https://lists.rutschle.net/mailman/archives/sslh/attachments/20201216/c884e48a/attachment.sig>