Skip to content

winglq/l4proxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
proto
proto
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

l4proxy

Description

l4proxy is used to export services on non static ip hosts by a public host. For example you can export sshd/vnc/3389 service in your homelab by a vps using l4proxy.

Features

  • l4 reverse proxy.
  • API to list connected clients and backend users.
  • load balance for same backend service on different host.
  • l7 forwarder.
  • connect backend user and backend directly (STUN like).

Architecture

The following is how different components are connected together. SSH service is used as an example.

+-backend user-+      +---public host------+   +------protected host 1----------+ 
| +----------+ |      | +--------------+   |   |   +--------------+      +----+ |
| |ssh client| | <--> | |l4proxy server| <-+-+-+-> |l4proxy client| <--> |sshd| |
| +----------+ |      | +--------------+   | | |   +--------------+      +----+ |
+--------------+      +--------------------+ | +--------------------------------+ 
                                             | +------protected host 2----------+
                                             | |   +--------------+      +----+ |
                                             +-+   |l4proxy client| <--> |sshd| |
                                               |   +--------------+      +----+ |
                                               +--------------------------------+

One (backend user <--> l4proxy server) connection is mapped to one (l4proxy server <--> l4proxy client) connection. Each client will connect to a seperate internal socket. A public control port is required, and two addition ports for each client.

Build

git clone https://github.com/winglq/l4proxy
cd l4proxy
make bin # linux
make win # windows
make rasp # raspberry

Usage

Create l4proxy server. Run the following command on vps.

l4proxy server --host 1.2.3.4

Create l4proxy client. Run the following command on homelab servers.

l4proxy client --svr_addr 1.2.3.4 127.0.0.1 22

Use --int_port and --pub_port in l4proxy client to specify the listen port on l4proxy server, make sure a tcp rule is added to the firewall to allow connection on these ports.

If you want to connect backend user and backend directly, use --backend_port to specify the port that was manually mapped on your home router. l4proxy server will try to connect the port directly if connection is established, the backend's public network address and backend port is returned to client, otherwise the server fallback to a proxy server.

For more detail usage use l4proxy -h.

To do

  1. unit tests reqired.
  2. CI.
  3. integration tests.
  4. shared internal port between different clients.
  5. error handling.
  6. rate limit support
  7. web ?
  8. l7 forwarder client and service closing is working in progress
  9. will add a real port map or unmap implementation(like openwrt) to make STUN easy.

About

l4 proxy for services only having dynamic ips

Topics

golang proxy grpc l4

Resources

Readme

License

MIT license
Activity

Stars

8 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages