Hello,
On Tue, 2 Nov 2021 at 21:24, Ben Hart <[email protected]> wrote: > > In the config (pasted here > https://0bin.net/paste/1aOh1F4y#qStfT0m0mER3rhI3DonDbCsr0NRmVuH9XiwvagEkAiE) > My questions surround the syntax of the config file.. Most likely those clients don't send SNI. Capture the SSL handshake and verify to make sure. Although you don't need the "tcp-request*" keywords (we are not extracting SNI "manually" from a TCP connection buffer, but locally deciphering it and accessing it through the OpenSSL API), I don't see any obvious errors in your configuration. Regards, Lukas
