# proxy-inspector

`proxy_config.json` sample config:

```json
{
  "groups": [
    {
      "port": 443,
      "lookup_dns": true,
      "tls": {
        "issuer_cert": "cert.pem",
        "issuer_key": "cert.key"
      },
      "proxy_map": {
        "hatter.ink": {
          "address": "101.132.122.240:443",
          "tls": true
        }
      }
    }
  ]
}
```

Only send DNS query for assigned domain patterns:

```json
{
  "groups": [
    {
      "lookup_dns": false,
      "dns_domains": [
        "example.com",
        "*.example.com",
        "example.*",
        "*.example.*"
      ]
    }
  ]
}
```

Generate self signed certificate:

```shell
$ cargo r --example generate_self_signed_ca
```

When generate success, cert and key will write to files `cert.pem`, `cert.key`, fail if any file is existed.

Important

* Intermediate certificate tested:
    * ECDSA(P384) with SHA384
    * P256 with SHA256
* P384 with SHA256 is NOT supported