github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 08:05:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #4520] [Question] Behavior of "transport.useEncryption" and "transport.tls.enable" setting on client. #3569

New issue
Closed
opened 2026-05-05 14:17:37 -06:00 by gitea-mirror · 2 comments
gitea-mirror commented 2026-05-05 14:17:37 -06:00
Owner
Copy link

Originally created by @lcharles123 on GitHub (Nov 1, 2024).
Original GitHub issue: https://github.com/fatedier/frp/issues/4520

Bug Description

The frpc.toml have transport.tls.enable option on general section. Under[[proxies]]section there are a transport.useEncryption option. Both true means two layers of encryption? So transport.tls.enable are enough to encrypting the packets? I want only one layer of encryption, possible the one more simple and fast.
Anyway, thanks for this awesome software!

frpc Version

0.60.0

frps Version

0.60.0

System Architecture

linux/amd64

Configurations

Client:

serverAddr = "server.org"
serverPort = 7000
transport.protocol = "tcp"
transport.ConnectServerLocalIP = "one.local.ip"

transport.tls.enable = true
transport.tls.certFile = "/root/frp_0.60.0_linux_amd64/certs/client.crt"
transport.tls.keyFile = "/root/frp_0.60.0_linux_amd64/certs/client.key"
transport.tls.trustedCaFile = "/root/frp_0.60.0_linux_amd64/certs/ca.crt"

auth.token = "mytoken"

[[proxies]]
name = "net.11."
type = "tcp"
localPort = 4433
remotePort = 4433
transport.useEncryption = true

Server:

bindPort = 7000
quicBindPort = 7000

transport.tls.force = true
transport.tls.certFile = "/etc/frp/server.crt"
transport.tls.keyFile = "/etc/frp/server.key"
transport.tls.trustedCaFile = "/etc/frp/ca.crt"
transport.maxPoolCount = 256

auth.method = "token"
auth.token = "mytoken"

webServer.addr = "127.0.0.1"
webServer.port = 7500

Logs

No response

Steps to reproduce

...

Affected area

  • Docs
  • Installation
  • Performance and Scalability
  • Security
  • User Experience
  • Test and Release
  • Developer Infrastructure
  • Client Plugin
  • Server Plugin
  • Extensions
  • Others
Originally created by @lcharles123 on GitHub (Nov 1, 2024). Original GitHub issue: https://github.com/fatedier/frp/issues/4520 ### Bug Description The frpc.toml have `transport.tls.enable` option on general section. Under` [[proxies]] `section there are a `transport.useEncryption` option. Both true means two layers of encryption? So `transport.tls.enable` are enough to encrypting the packets? I want only one layer of encryption, possible the one more simple and fast. Anyway, thanks for this awesome software! ### frpc Version 0.60.0 ### frps Version 0.60.0 ### System Architecture linux/amd64 ### Configurations Client: ``` serverAddr = "server.org" serverPort = 7000 transport.protocol = "tcp" transport.ConnectServerLocalIP = "one.local.ip" transport.tls.enable = true transport.tls.certFile = "/root/frp_0.60.0_linux_amd64/certs/client.crt" transport.tls.keyFile = "/root/frp_0.60.0_linux_amd64/certs/client.key" transport.tls.trustedCaFile = "/root/frp_0.60.0_linux_amd64/certs/ca.crt" auth.token = "mytoken" [[proxies]] name = "net.11." type = "tcp" localPort = 4433 remotePort = 4433 transport.useEncryption = true ``` Server: ``` bindPort = 7000 quicBindPort = 7000 transport.tls.force = true transport.tls.certFile = "/etc/frp/server.crt" transport.tls.keyFile = "/etc/frp/server.key" transport.tls.trustedCaFile = "/etc/frp/ca.crt" transport.maxPoolCount = 256 auth.method = "token" auth.token = "mytoken" webServer.addr = "127.0.0.1" webServer.port = 7500 ``` ### Logs _No response_ ### Steps to reproduce 1. 2. 3. ... ### Affected area - [X] Docs - [ ] Installation - [ ] Performance and Scalability - [ ] Security - [X] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [ ] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others
gitea-mirror 2026-05-05 14:17:37 -06:00
gitea-mirror commented 2026-05-05 14:17:41 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Nov 1, 2024):

Simply put, all you need is TLS.

<!-- gh-comment-id:2451215688 --> @fatedier commented on GitHub (Nov 1, 2024): Simply put, all you need is TLS.
gitea-mirror commented 2026-05-05 14:17:42 -06:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Nov 23, 2024):

Issues go stale after 21d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.

<!-- gh-comment-id:2495150258 --> @github-actions[bot] commented on GitHub (Nov 23, 2024): Issues go stale after 21d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#3569
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?