Add a tlsonly option

This commit is contained in:
Björn Busse 2018-03-08 17:37:26 +00:00
parent de42ef98b6
commit dec20c2cd0

View File

@ -49,6 +49,7 @@ var (
passwords = flag.String("passwords", "", "Optional path to passwords file") passwords = flag.String("passwords", "", "Optional path to passwords file")
tlsBind = flag.String("tlsbind", "", "TLS address to bind to") tlsBind = flag.String("tlsbind", "", "TLS address to bind to")
tlsPEM = flag.String("tlspem", "", "Path to TLS certificat+key PEM file") tlsPEM = flag.String("tlspem", "", "Path to TLS certificat+key PEM file")
tlsonly = flag.Bool("tlsonly", false, "Disable listening on non tls-port")
proxyTimeout = flag.Uint("proxytimeout", PROXY_TIMEOUT, "Timeout when using proxy protocol") proxyTimeout = flag.Uint("proxytimeout", PROXY_TIMEOUT, "Timeout when using proxy protocol")
metrics = flag.Bool("metrics", false, "Enable metrics export") metrics = flag.Bool("metrics", false, "Enable metrics export")
verbose = flag.Bool("v", false, "Enable verbose logging.") verbose = flag.Bool("v", false, "Enable verbose logging.")
@ -150,7 +151,7 @@ func Run() {
proxyTimeout := time.Duration(uint(*proxyTimeout)) * time.Second proxyTimeout := time.Duration(uint(*proxyTimeout)) * time.Second
if *bind != "" { if *bind != "" && !*tlsonly {
listener, err := net.Listen("tcp", *bind) listener, err := net.Listen("tcp", *bind)
if err != nil { if err != nil {
log.Fatalf("Can not listen on %s: %v", *bind, err) log.Fatalf("Can not listen on %s: %v", *bind, err)