Nginx TCP forwarding based on hostname

by

This is now possible with the addition of the ngx_stream_ssl_preread module added in Nginx 1.11.5 and the ngx_stream_map module added in 1.11.2.

This allows Nginx to read the TLS Client Hello and decide based on the SNI extension which backend to use.

stream {

    map $ssl_preread_server_name $name {
        vpn1.app.com vpn1_backend;
        vpn2.app.com vpn2_backend;
        https.app.com https_backend;
        default https_default_backend;
    }

    upstream vpn1_backend {
        server 10.0.0.3:443;
    }

    upstream vpn2_backend {
        server 10.0.0.4:443;
    }

    upstream https_backend {
        server 10.0.0.5:443;
    }

    upstream https_default_backend {
        server 127.0.0.1:443;
    }

    server {
        listen 10.0.0.1:443;
        proxy_pass $name;
        ssl_preread on;
    }
}

More Related Contents:

  1. Kubernetes service external ip pending
  2. nginx reverse proxy – how to serve multiple apps
  3. A little confused about trailing slash behavior in nginx
  4. React-router and nginx
  5. Nginx location priority
  6. NGINX to reverse proxy websockets AND enable SSL (wss://)?
  7. recommended nginx configuration for meteor
  8. How do I rewrite URLs in a proxy response in NGINX
  9. nginx doesn’t listen on port 80 twice?
  10. Nginx 403 forbidden for all files
  11. Setup nginx not to crash if host in upstream is not found
  12. Nginx pass_proxy subdirectory without url decoding
  13. Nginx variables similar to SetEnv in Apache?
  14. nginx docker container: 502 bad gateway response
  15. Nginx Different Domains on Same IP
  16. Error 502 in nginx + php5-fpm
  17. Socket.io with nginx
  18. How to add a response header on nginx when using proxy_pass?
  19. nginx – read custom header from upstream server
  20. “proxy_pass” cannot have URI part in location given by regular expression
  21. Kubernetes Ingress network deny some paths
  22. nginx showing blank PHP pages
  23. How to redirect single URL in Nginx?
  24. Nginx: Reject request if header is not present or wrong
  25. nginx proxy_pass 404 error, don’t understand why
  26. NGINX try_files + alias directives
  27. nginx redirect HTTPS to HTTP
  28. Jenkins: How to configure Jenkins behind Nginx reverse proxy for JNLP slaves to connect
  29. NGINX + uWSGI Connection Reset by Peer
  30. How to fix nginx throws 400 bad request headers on any header testing tools?

Leave a Comment