[sslh] Does sslh support OpenVPN and sni hostname matching together?
Sean Warner
plica2006 at gmail.com
Sun Nov 22 22:13:24 UTC 2020
Thanks for clarifying.
Flex
-----Original Message-----
From: Yves Rutschle [mailto:yves at rutschle.net]
Sent: 21 November 2020 18:03
To: Sean Warner
Cc: sslh at lists.rutschle.net
Subject: Re: [sslh] Does sslh support OpenVPN and sni hostname matching
together?
On Sat, Nov 21, 2020 at 03:55:23AM +0000, Sean Warner wrote:
> I would like to use just port 443 to send OpenVPN traffic to two different
> OpenVPN servers in my lan... a bridged server and a routed server.
>
> Is it possible to use TLS SNI AND OpenVPN protocol detection together in
> sslh to detect OpenVPN coming from two different domain names on port 443
> so I could filter traffic to the correct OpenVPN server?
I don't think the OpenVPN protocol allows for virtual
hosting (two services with different names on the same IP).
SNI is for TLS only, which OpenVPN does not use, so it won't
help.
Y.
More information about the sslh
mailing list