Encrypted Tracker data
We don't support TLS, so you would need a proxy for it.
The same story as with TLS for the main Web page with virtual hosts and what not. Right?
Thanks
Kind of. Depends on what protocol you're using.
Teltonika protocol
Please let me know if there is a common way to do it.
Thanks
I don't know if there's a common way. You need to find a proxy for it. That's all I know.
perfect As soon as I know I will let you know how I did it.
So I found the solution using : nginx
You have to build nginx from source including the following arguments
--with-debug --with-stream --with-stream_ssl_module
Then after you build it and it works.
You need to create your own CA authority and an SSL cert for your server front looking encryption. (EASY-RSA)
Then you setup on the nginx.conf the following :
stream {
upstream stream_backend {
server "what ever IP : port non encrypted internal )
}
server {
listen "any-port you like for the outside world SSL traffic" ssl;
proxy_pass stream_backend;
ssl_certificate /etc/ssl/certs/"SSL".crt;
ssl_certificate_key /etc/ssl/certs/"SSL".key;
ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_session_cache shared:SSL:20m;
ssl_session_timeout 4h;
ssl_handshake_timeout 10s;
#...
}
}
That's it.
Dear All ,
I would like to know if its possible to use TLS on the incoming port for the trackers.
thanks