1.证书
openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr -subj "/C=CN/ST=Beijing/L=Beijing/O=TestOrg/OU=TestUnit/CN=localhost"
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
rm server.csr
2. 服务端
SERVER_PORT=${1:-8443}
TARGET_PORT=${2:-80}
CERT_DIR="."
socat -d -d \
OPENSSL-LISTEN:$SERVER_PORT,cert=$CERT_DIR/server.crt,key=$CERT_DIR/server.key,verify=0,reuseaddr,fork \
TCP:localhost:$TARGET_PORT
3. 客户端
SERVER_IP=${1:-xxx.com}
SERVER_PORT=${2:-8443}
LOCAL_PORT=${3:-8080}
socat -d -d \
TCP-LISTEN:$LOCAL_PORT,reuseaddr,fork \
OPENSSL-CONNECT:$SERVER_IP:$SERVER_PORT,verify=0