recommend: dep

I put slt into production yesterday reverse-proxying and terminating tls in front of single golang http server backend. Over the course of the next day I got some user reports of occasional mysterious hanging pages in their browser. Testing it myself I have seen it happen a few times today, though I can't find a sequence of steps that repeats it. @inconshreveable I know you are using slt in production. Are you proxying https with it? Have you ever seen this hanging behavior? Any ideas where I might look to track it down and fix? I love the simplicity of slt and would like to make it work.

From: https://bugs.debian.org/851876

There is a race condition in the testsuite related to closing the listener mux.

Due to golang/go#10527 (which may or may not be a bug), calling Listener.Close does not actually close the socket if any goroutines are still blocked in Listener.Accept. This means that after TestSimple finishes, TestMany may run immediately afterwards and try to bind to port 55111 but it can't because the socket from TestSimple hasn't been closed yet.

This can happen by chance on any system, but on uniprocessor systems this is 100% reproducible because the go scheduler always schedules TaskMany first. If you are on Linux, I found that it's easy to reproduce this by hotplugging all but one CPU out.

With current TLS config it's not possible to get higher than a B grade from ssllabs.com

when i connect it,show me this:

slt 2015/02/03 23:16:57 server.go:104: Failed to mux connection from 183.206.192.151:32656, error: Host not found:

i can't understand what happened.

$ netstat -tulnp | grep -ie slt
tcp6       0      0 :::443                  :::*                    LISTEN      3376/slt

Why netstat only detects slt is listening on IPv6 port?

Currently, to terminate TLS with slt you have to manage the cert on your own. It would be nice to support on-the-fly autoenrollment for a valid cert via Let's Encrypt. There's already great support for this via golang.org/x/crypto/acme/autocert, it just needs to be integrated.

PR to follow

Is it possible some kind of wilcard or regular expression to specify frontend names?
For example:
www.* -> backend1
*.example.net -> backend2

It is recommended to start a software with the main file name

I saw this thread for the usage on Linux: https://www.v2ex.com/t/158001

It will be great if the installation on Mac OSX could be done using Homebrew: http://brew.sh/

Having hot reload functionality to change the backends in the configuration file and have those take effect without restarting "slt" can take this package really to the next level.

Cool project. I was looking at the source code and it looks like you establish a new connection to each backend each time a new connection to the frontend is made. Is that right?

I noticed the DefaultRoundTripper in net/http has some mechanism for re-using connections... have you considered adding this capability? Perhaps it's a non-issue if you leverage persistent connections with the real web server?

When client is not using SNI, in some scenarios the backend can return unwanted content.
There should be 2 differenced default frontends: default SNI and default without SNI. In second case if a SNI could be added to communication to backend this would be very good.