-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
HFP - TLS connection to HEP server #10
Comments
Hi! Haven't tried TLS, in theory it could work as TLS is transported by TCP which this proxy is doing, just set outbound/backend side using -r command line switch to point to HEP TLS server endpoint which should take care of TLS decoding, HFP in this case should just transparently pass TLS over TCP to backend. We would appreciate feedback about this case. Thanks, |
as i understood i could use the heplfiy as hep Proxy from HFP to
as i understood i could use the heplfiy as hep Proxy from HFP to the HEP server and that will be TLS. So native agent will send HEP to HFP -> heplify hep proxy -> TLS ->HEP server still haven't tested |
Hi, Heplify server also supports TLS, so it can be terminated there. But not sure it will work at all as packet will change its IP along the way breaking TLS integrity. Nonethless, would be interesting to try :) So, something like this: HEP agent(TLS over TCP) > (TCP) HFP (TCP proxy) > (TLS over TCP) Heplify server |
Well my idea is that HEP agent, HFP ane Heplify will be the same localhost.
So only Heplify will communicate with HEP server over TLS
But as i write this i understand in this case HFP will be useless because
how will he know the hep server is down in order to buffer the hep packets?
He needs to be upfront the HEP server to be effective
…On Tue, May 9, 2023, 16:30 Ivica Lovrić ***@***.***> wrote:
Hi,
Heplify server also supports TLS, so it can be terminated there. But not
sure it will work at all as packet will change its IP along the way
breaking TLS integrity. Nonethless, would be interesting to try :)
So, something like this: *HEP agent*(TLS over TCP) > (TCP) *HFP* (TCP
proxy) > (TLS over TCP) *Heplify server*
https://github.com/sipcapture/heplify-server/blob/master/example/homer7_config/heplify-server.toml#LL3C5-L3C5
—
Reply to this email directly, view it on GitHub
<#10 (comment)>, or
unsubscribe
<https://github.com/notifications/unsubscribe-auth/A7GVSLKOQSPNWZEISGM5WPTXFJBH7ANCNFSM6AAAAAAXSVGLZI>
.
You are receiving this because you authored the thread.Message ID:
***@***.***>
|
I've tested this setup HEP agent (UDP) > heplify as HEP COLLECTOR (TLS over TCP) > (TCP) HFP (TCP proxy) > (TLS over TCP) Heplify server
Now i will test the HFP capabilities by initiating network outages using UFW at heplify server |
2 issues. While using latest release. https://github.com/ivlovric/HFP/releases
||-->X File Send HEP from buffer to file error read tcp4 127.0.0.1:9063->127.0.0.1:35144: use of closed network connection |
Hi,
Thanks |
hey, does this supports TLS connection to HEP server? If so, how to configure it?
The text was updated successfully, but these errors were encountered: