Merge b57bba48a9a35fdbea1a620260a7cb5a71a65354 into 8023d147b0b4782d89935802329270c629f0f5d2

Update README.md for TLS configuration
Modified the configuration in the tls configuration to better connect with the context. Added precautions in the certificate configuration below
2025-05-10 17:08:26 +00:00 · 2024-01-24 22:59:36 -08:00 · 2024-01-21 21:19:27 +08:00
1 changed files with 9 additions and 4 deletions
--- a/README.md
+++ b/README.md
@ -644,8 +644,8 @@ To **enforce** `frps` to only accept TLS connections - configure `transport.tls.

 ```toml
 transport.tls.enable = true
-transport.tls.certFile = "certificate.crt"
-transport.tls.keyFile = "certificate.key"
+transport.tls.certFile = "client.crt"
+transport.tls.keyFile = "client.key"
 transport.tls.trustedCaFile = "ca.crt"
 ```

@ -653,8 +653,8 @@ transport.tls.trustedCaFile = "ca.crt"

 ```toml
 transport.tls.force = true
-transport.tls.certFile = "certificate.crt"
-transport.tls.keyFile = "certificate.key"
+transport.tls.certFile = "server.crt"
+transport.tls.keyFile = "server.key"
 transport.tls.trustedCaFile = "ca.crt"
 ```

@ -714,6 +714,11 @@ openssl x509 -req -days 365 -sha256 \
 	-extfile <(printf "subjectAltName=DNS:localhost,IP:127.0.0.1,DNS:example.server.com") \
 	-out server.crt
 ```
+**Note: The above IP must be changed to your server IP, otherwise an error message will be displayed:**
+
+```
+tls: failed to verify certificate: x509: certificate is valid for 127.0.0.1, not your_ IP
+```

 * build frpc certificates：
 ```
Author	SHA1	Message	Date
凌	bcb3fd9748	Merge b57bba48a9a35fdbea1a620260a7cb5a71a65354 into 8023d147b0b4782d89935802329270c629f0f5d2	2024-01-24 22:59:36 -08:00
凌	b57bba48a9	Update README.md for TLS configuration Modified the configuration in the tls configuration to better connect with the context. Added precautions in the certificate configuration below	2024-01-21 21:19:27 +08:00