package tlstunnel

  1. Overview
  2. Docs
A TLS proxy using OCaml-TLS

Install

Dune Dependency

github.com Readme Edit opam file Versions (5)

Authors

  1. H
    Hannes Mehnert <hannes@mehnert.org>

Maintainers

  1. H
    Hannes Mehnert <hannes@mehnert.org>

Sources

0.1.3.tar.gz
md5=3796bef070ace18f187f1efda83371af

Description

The tlstunnel is a UNIX binary which provides a TLS listener socket, and forwards each connection, after removing the TLS layer, to a configurable TCP/IP host.

Published: 22 Mar 2016

README

README.md

Who needs a stunnel if you have a tls tunnel?

tlstunnel is picky; it won't accept connections:

  • which do not contain the secure renegotiation extension

  • which speak SSL version 3

  • if the given certificate chain is not valid (or contains an X.509 version 1 certificate, or less than 1024 bits RSA public key

Installation

You first need OCaml (at least 4.1.0) and OPAM (1.2.*) from your distribution.

Run opam install tlstunnel after opam init finished.

Execution

A sample command line is:

tlstunnel -b 127.0.0.1:8080 -f 4433 -cert server.pem

which listens on TCP port 4433 with the given certificate chain and private key (both in server.pem), and forwards connections to 127.0.0.1 on port 8080.

An optional argument is -l FILE to log into a file instead of to stdout. Try --help for all command line arguments.

Dependencies (9)

  1. cmdliner
  2. sexplib
  3. lwt < "2.7.0"
  4. nocrypto >= "0.4.0"
  5. x509 >= "0.3.0"
  6. tls >= "0.6.0"
  7. ocamlbuild build
  8. ocamlfind build
  9. ocaml

Dev Dependencies

None

Used by

None

Conflicts

None