Comments (5)
@gabrielarrais Do you have anything specific about SSL offloading you'd like to recommend/suggest? Like, are you suggesting that Caddy become an SSL offloader for other backend systems? That could perhaps be built into the proxy middleware...
from caddy.
I think he want Caddy to work like nginx ssl directive...
(Example from: http://nginx.com/blog/nginx-ssl/)
And now you want to add HTTPS support, with NGINX decrypting the traffic using the certificate and private key and communicating with the backend servers over HTTP:
upstream backends {
server 192.168.100.100:80;
server 192.168.100.101:80;
}
server {
listen 80;
listen 443 ssl; # The ssl directive tells NGINX to decrypt
# the traffic
server_name www.example.com;
ssl_certificate www.example.com.crt; # This is the certificate file
ssl_certificate_key www.example.com.key; # This is the private key file
location / {
proxy_pass http://backends;
}
}
from caddy.
I see. If that's the case, that could definitely be a good enhancement for the existing proxy middleware. I think. Someone is welcome to look into this since I may not get around to it for a while.
from caddy.
Ok I can look at this =]
from caddy.
@gabrielarrais You can try this caddyfile?
0.0.0.0 {
tls web/server.crt web/server.key
proxy / http://172.17.42.1:8080/
}
Using proxy + tls works for me, please try this and see if works for you =]
from caddy.
Related Issues (20)
- Set `sign_with_root` via Caddyfile HOT 3
- core: caddy unable to start with an empty $HOME HOT 5
- Using proxy_protocol v2 with h2c backend gives wrong IP address to backend. HOT 19
- TLS does not work on NATed IPv4 literal HOT 1
- Feature-Request: [Templates] include from string buffer HOT 2
- Permission denied when first run after fresh installation. HOT 11
- ZeroSSL Issuer can't use dns_challenge_override_domain HOT 4
- Client_ip not merged as remote_ip used to in "not" expression HOT 3
- v2.8 is a major breaking change: update to CertMagic breaks LegoDeprecated HOT 1
- the change to SanitizedPathJoin in v2.8.x can cause routing to break in certain configurations HOT 5
- Build amd64 and arm are broken HOT 3
- X-Accel-Redirect style of header matching is broken in handle_response
- using the file ext caddyfile for a config file does not work HOT 1
- Weighted Round-Robin strategy doesn't support zero values HOT 2
- regression in 2.8 file_server serving root index file HOT 3
- Any possibility/Hope for GUI like Nginx proxy manager ? HOT 2
- `Error: ambiguous config file format; please specify adapter (use --adapter)` since 2.8.2 HOT 10
- TLSv1.3 (IN), TLS alert, internal error (592) - When use TLS for IP address with Caddy HOT 6
- Missing image for 2.8.4 on docker.io HOT 1
- How to run 'crontab' ? HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from caddy.