问题描述
我想知道如何使用SNI反向代理openvpn连接,我已经阅读了很多有关该内容的信息:和
i was wondering how it is possible to reverse proxying an openvpn connection using the SNI, i've read so much about that: HERE and HERE
我尝试过使用haproxy和nginx进行任何形式的解决方案,但是似乎我的客户端(我已经尝试过Tunnelblick和Linux上的一个简单的openvpn客户端)没有发送SNI信息
I've tried any kind of solution, using haproxy and using nginx, but it seems that my client (i've tried Tunnelblick and a simple openvpn client on linux) does not send the SNI information
基本上,这是我想要实现的结果:
Basically, this is the result that i want to achieve:
vpn1.app.com ─┬─► *.app.com dns -> nginx at my public ip ─┬─► vpn1 at 10.0.0.3
vpn2.app.com ─┤ ├─► vpn2 at 10.0.0.4
vpn3.app.com ─┘ └─► vpn3 at 10.0.0.5
有什么想法吗?
推荐答案
[更新] 这些天来我一直在搜索并寻找解决方案,但总的来说,看来在其体系结构中,OpenVpn不会向服务器发送SNI指示,因此,没有机会这样做.
[UPDATE] I've searched for all these days and looked around for a solution, but, in conclusion, it seems that OpenVpn, in it's architecture, isn't sending around to the server the SNI indication, so, no chance to do that.
我将使用经典的老式方法:NAT和适当的公共DNS来管理它们.
I'll use the classic old-school way: NAT and a proper public dns to manage them.
这篇关于使用Haproxy或Nginx反向代理OpenVpn的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!