@Racco wrote:
Hi!
Is there a reliable way to check the clients requested destination domain within a TLS connection?
I know I could use req_ssl_sni but the problem is that not all browsers support it. I would like to forbid clients to connect to defined sites, but I wont like to block them on IP. My aim is to block them on the requested SNI, CN of the Server’s Cert or something like that. Do u have an idea?
Posts: 1
Participants: 1