Welcome! Log In Create A New Profile

Advanced

Mutual authentication for SSL termination for TCP Upstream

Posted by abiswas 
Mutual authentication for SSL termination for TCP Upstream
March 04, 2016 02:27AM
Hi All,

The particular feature I am interested is SSL termination for TCP Upstream.

We have an application which accepts messages (TCP) over TLS. With NGINX, I want to do the following:

1. Terminate TLS at NGINX and then NGINX will forward the decrypted packets to the application.

2. There should be mutual authentication between NGINX and the client (for the application). I am finding out documentation which talks about server side authentication (client verifying server's certificate), but I am not able to find out the steps to configure mutual authentication (both client and server verifying each other's certificates). Any suggestions?

https://www.nginx.com/resources/admin-guide/nginx-tcp-ssl-termination/

3. Also is it possible to allow (SSL handshake) only if client has a specific identity. Is it possible to implement in NGINX or NGINX Plus?

Thanks,
Arnab
Re: Mutual authentication for SSL termination for TCP Upstream
March 04, 2016 04:22AM
I have posted the question in serverfault as well. Please take a look as I have mentioned the problem is details:

http://serverfault.com/questions/761509/nginx-how-to-configure-mutual-authentication-for-tcp-upstream
Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 127
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 500 on July 15, 2024
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready