Google Groups

Re: [spdy-dev] SPDY proxy?

Ryan Hamilton Sep 28, 2010 11:21 AM
Posted in group: spdy-dev
Hi Roman,

Tunneling SSL through a SPDY Proxy does add extra overhead.  In many circumstance, you are right, this overhead does not provide any additional benefits.  In such circumstance, it would make the most sense to use such a SPDY Proxy only for HTTP urls (for example with a proxy.pac that sends HTTPS URLs direct).  However there are also scenarios when tunneling SSL through a SPDY Proxy makes sense.  One simple case is using a SPDY Proxy as a "web VPN".  Such a proxy would know how to connect to hosts which do not have hostnames that resolve publicly.  This would allow users to send both HTTP and HTTPS traffic through the proxy for hostnames that they are unable to reach directly.  This would allow a SPDY Proxy enabled browser to be a VPN client.



On Tue, Sep 28, 2010 at 8:35 AM, Roman Shterenzon <> wrote:
I'm curious...

Regarding the - what is the
reasoning behind tunneling SSL through SPDY? It looks like an
additional overhead without any added benefits. Should several SSL
streams be tunnelled through one SPDY session?

And regarding putting such a proxy before your website - I think that
the current chrome doesn't yet support Alternate-Protocol: XXX:spdy/2


On Tue, Sep 28, 2010 at 5:12 PM, Mike Belshe <> wrote:
> On Tue, Sep 28, 2010 at 7:25 AM, William Chan (陈智昌) <>
> wrote:
>> [ +rch ]
>> Yes, Ryan is working on this.
> To expand on this a bit - yes - efforts are underway.  I'm not sure if that
> will be a public tool.  One of these days, if nobody else gets to it, I'm
> going to hack on the in-mem-server to turn it into a proxy and put it in
> front of :-)
> Mike
>> On Mon, Sep 27, 2010 at 11:10 PM, Lars Eggert <>
>> wrote:
>>> Hi,
>>> wondering what the status of is?
>>> A continuation of the work we've been doing with Binoy would benefit if a
>>> SPDY proxy were available. Is anyone working on this?
>>> Thanks,
>>> Lars