what is tls terminated tcp?
tags: learning networking
content
- as seen in tailscale funnel, a funnel has options
--tls-terminated-tcp, which terminates TLS connection from client, and sends its TCP content to its backend servers- meaning that the TLS stops at funnel service
- in other words, the funnel service should have the TLS cert for the requested domain
- it’s not simply forwarding, it’s decrypting messages