tlsgate

TLS reverse proxy
git clone git://git.akobets.xyz/tlsgate
Log | Files | Refs | README | LICENSE

commit b34680058ab5005839eec4d2e79abb14cc34036f
parent 75180ff1bf1099a129f6f6ae0bf24874f234b7c5
Author: Artem Kobets <artem@akobets.xyz>
Date:   Wed, 23 Sep 2020 21:48:56 +0300

style

Diffstat:
Mmain.c | 8++++----
Mtlsgate.1 | 34+++++++++++++++++-----------------
2 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/main.c b/main.c @@ -280,9 +280,9 @@ usage(void) { fprintf( stderr, - "usage: %s -s/-S [-v] [-c cert] [-k key] [-C ca] [-t timeout]" - " [-h host] [-p port] [-u file]" - " [-H host] [-P port] [-U file]\n", + "usage: %s -s/-S [-h host] [-p port] [-u file]" + " [-H host] [-P port] [-U file]" + " [-c cert] [-k key] [-C ca] [-t timeout] [-v]\n", argv0 ); exit(1); @@ -314,7 +314,7 @@ main(int argc, char **argv) s.server_port = NULL; s.server_udsfile = NULL; - while ((opt = getopt(argc, argv, "sSc:k:C:h:p:u:H:P:U:t:v")) != -1) { + while ((opt = getopt(argc, argv, "sSh:p:u:H:P:U:c:k:C:t:v")) != -1) { switch (opt) { case 's': s.mode = MODE_TLS_CLIENT; diff --git a/tlsgate.1 b/tlsgate.1 @@ -3,8 +3,8 @@ tlsgate - TLS reverse proxy .SH SYNOPSIS .B tlsgate --s/-S [-v] [-c cert] [-k key] [-C ca] [-t timeout] [-h host] [-p port] -[-u file] [-H host] [-P port] [-U file] +-s/-S [-h host] [-p port] [-u file] [-H host] [-P port] [-U file] +[-c cert] [-k key] [-C ca] [-t timeout] [-v] .SH DESCRIPTION .B tlsgate is a TLS reverse proxy which can be used to expose an unencrypted connection. @@ -17,21 +17,6 @@ Client side is TLS side. .B -S Server side is TLS side. .TP -.B -c cert -Path to public certificate. Required with -s. -.TP -.B -k key -Path to private key. Required with -s. -.TP -.B -C ca -Path to CA root certificates. -.TP -.B -t timeout -Connection timeout (in seconds). Default is 30. 0 means no timeout. -Default makes sure hanging client connections are removed. -Setting this to 0 is useful if you do not want connections to timeout, -for example if you're setting up TLS support for an IRC client (see EXAMPLES). -.TP .B -h host TLS proxy hostname. .TP @@ -50,6 +35,21 @@ Server port number. .B -U file Server UNIX domain socket path. .TP +.B -c cert +Path to public certificate. Required with -s. +.TP +.B -k key +Path to private key. Required with -s. +.TP +.B -C ca +Path to CA root certificates. +.TP +.B -t timeout +Connection timeout (in seconds). Default is 30. 0 means no timeout. +Default makes sure hanging client connections are removed. +Setting this to 0 is useful if you do not want connections to timeout, +for example if you're setting up TLS support for an IRC client (see EXAMPLES). +.TP .B -v Print version number and exit. .SH EXAMPLES