github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 16:15:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #2649] a problem when forword https and the domain is IP #2111

New issue
Closed
opened 2026-05-05 13:21:27 -06:00 by gitea-mirror · 2 comments
gitea-mirror commented 2026-05-05 13:21:27 -06:00
Owner
Copy link

Originally created by @ZhiShengYuan on GitHub (Nov 9, 2021).
Original GitHub issue: https://github.com/fatedier/frp/issues/2649

Bug Description

when I try to use FRP(version 0.38.0) to forward IP SSL(like https://1.1.1.1), I meet a problem, that I can't use this IP to access SSL(but HTTP is normal), and use any domain which binds to this IP, I find the certificates is this IP, is anyone meet it too?
anyway,i enabled the proxy_protocol v2 and config correct in FRPC and Nginx,and the connection between server and client is normal,the connection of client and webserver too
by cap TCP package by tcpdump,it's seems that there is no any package send to the webserver at all
and there is no any new log science I try to access this(the log level already be trace)

frpc Version

0.38.0

frps Version

0.38.0

System Architecture

linux/amd64

Configurations

[common]
server_addr = SERVERIP
server_port = 7000
token = TOKEN
pool_count = 5
tcp_mux = true
protocol = tcp
tls_enable = true
tls_server_name = SERVER_SSL
udp_packet_size = 1500
disable_custom_tls_first_byte = true
[iphttpLocal]
type = http
local_ip = LocalServerIp
local_port = 80
use_encryption = true
use_compression = true
custom_domains = SERVERIP
header_X-From-Where = frp
[iphttpsLocal]
type = https
local_ip = LocalServerIp
local_port = 443
use_encryption = false
use_compression = false
custom_domains = SERVERIP
proxy_protocol_version = v2

Logs

2021/11/09 08:53:43 [I] [https.go:51] [160fff7092393c42] [iphttpsLocal] https proxy listen for host [IPSSL]
2021/11/09 08:53:43 [I] [control.go:444] [160fff7092393c42] new proxy [iphttpsLocal] success
2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered
2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered
2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered
2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered
2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered
2021/11/09 08:53:44 [T] [service.go:393] start check TLS connection...
2021/11/09 08:53:44 [T] [service.go:402] check TLS connection success, isTLS: true custom: false

Steps to reproduce

  1. deploy frps in server and frpc in another device
    2.config Nginx to accept proxy_protocol
  2. config IP SSL for Nginx
    4.use FRP to forward IP SSL

Affected area

  • Docs
  • Installation
  • Performance and Scalability
  • Security
  • User Experience
  • Test and Release
  • Developer Infrastructure
  • Client Plugin
  • Server Plugin
  • Extensions
  • Others
Originally created by @ZhiShengYuan on GitHub (Nov 9, 2021). Original GitHub issue: https://github.com/fatedier/frp/issues/2649 ### Bug Description when I try to use FRP(version 0.38.0) to forward IP SSL(like https://1.1.1.1), I meet a problem, that I can't use this IP to access SSL(but HTTP is normal), and use any domain which binds to this IP, I find the certificates is this IP, is anyone meet it too? anyway,i enabled the proxy_protocol v2 and config correct in FRPC and Nginx,and the connection between server and client is normal,the connection of client and webserver too by cap TCP package by tcpdump,it's seems that there is no any package send to the webserver at all and there is no any new log science I try to access this(the log level already be trace) ### frpc Version 0.38.0 ### frps Version 0.38.0 ### System Architecture linux/amd64 ### Configurations [common] server_addr = SERVERIP server_port = 7000 token = TOKEN pool_count = 5 tcp_mux = true protocol = tcp tls_enable = true tls_server_name = SERVER_SSL udp_packet_size = 1500 disable_custom_tls_first_byte = true [iphttpLocal] type = http local_ip = LocalServerIp local_port = 80 use_encryption = true use_compression = true custom_domains = SERVERIP header_X-From-Where = frp [iphttpsLocal] type = https local_ip = LocalServerIp local_port = 443 use_encryption = false use_compression = false custom_domains = SERVERIP proxy_protocol_version = v2 ### Logs 2021/11/09 08:53:43 [I] [https.go:51] [160fff7092393c42] [iphttpsLocal] https proxy listen for host [IPSSL] 2021/11/09 08:53:43 [I] [control.go:444] [160fff7092393c42] new proxy [iphttpsLocal] success 2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered 2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered 2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered 2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered 2021/11/09 08:53:43 [D] [control.go:219] [160fff7092393c42] new work connection registered 2021/11/09 08:53:44 [T] [service.go:393] start check TLS connection... 2021/11/09 08:53:44 [T] [service.go:402] check TLS connection success, isTLS: true custom: false ### Steps to reproduce 1. deploy frps in server and frpc in another device 2.config Nginx to accept proxy_protocol 3. config IP SSL for Nginx 4.use FRP to forward IP SSL ### Affected area - [ ] Docs - [ ] Installation - [ ] Performance and Scalability - [ ] Security - [X] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [ ] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others
gitea-mirror 2026-05-05 13:21:27 -06:00
gitea-mirror commented 2026-05-05 13:21:32 -06:00
Author
Owner
Copy link

@ZhiShengYuan commented on GitHub (Nov 12, 2021):

so maybe is the problem of SSL host match?because i can got 301 by HTTP access(hsts enabled)

<!-- gh-comment-id:966927464 --> @ZhiShengYuan commented on GitHub (Nov 12, 2021): so maybe is the problem of SSL host match?because i can got 301 by HTTP access(hsts enabled)
gitea-mirror commented 2026-05-05 13:21:32 -06:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Dec 13, 2021):

Issues go stale after 30d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.

<!-- gh-comment-id:992006083 --> @github-actions[bot] commented on GitHub (Dec 13, 2021): Issues go stale after 30d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#2111
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?