ei
/
mtg
espejo de https://github.com/9seconds/mtg
Seguir 1
Destacar 0
Cuchillo 0
Código Incidencias 0 Lanzamientos 48 Wiki Actividad
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1152 Commits
8 Ramas
Árbol: 0488f246ba
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '0488f246ba'
${ noResults }
mtg/contrib/sni-router/mtg-config.toml

mtg-config.toml 1021B
Histórico Original

12345678910111213141516171819202122232425262728 
  1. # Minimal mtg configuration for the SNI-router setup.

  2. #

  3. # 1. Generate a secret:  mtg generate-secret --hex <your.domain>

  4. # 2. Paste it into the `secret` field below.

  5. # 3. Set DOMAIN=<your.domain> in .env (HAProxy + Caddy pick it up).

  6. 

  7. secret = "PASTE_YOUR_SECRET_HERE"

  8. bind-to = "[::]:3128"

  9. 

  10. # HAProxy in front sends PROXY protocol v2 headers so mtg can see the

  11. # real client IP.  Keep this in sync with haproxy.cfg (`send-proxy-v2`).

  12. proxy-protocol-listener = true

  13. 

  14. # Fronting target: point mtg at the Caddy container directly so its

  15. # fallback dial (for non-Telegram TLS) bypasses HAProxy and doesn't

  16. # loop back here.  Without this, mtg resolves the secret's hostname

  17. # via DNS, which in this setup resolves to this server -> HAProxy ->

  18. # mtg again.  See README's "Fronting loop" section for the long form.

  19. # Requires mtg >= 2.4 (#480 added hostname acceptance for the target).

  20. [domain-fronting]

  21. host = "web"

  22. port = 8443

  23. proxy-protocol = true

  24. 

  25. [defense.anti-replay]

  26. enabled = true

  27. max-size = "1mib"

  28. error-rate = 0.001