常见问题

SSLcat is an enterprise-grade SSL certificate management and intelligent forwarding server, built with Go. It automates SSL certificate management, implements smart domain forwarding, and provides a modern web interface for server management.

You can download the latest version from the GitHub releases page or use the package manager. SSLcat supports Linux, macOS, and Windows. Full installation instructions are available in the documentation.

Yes, SSLcat supports fully automatic SSL certificate renewal via Let's Encrypt. Certificates are automatically updated before expiration without downtime.

SSLcat supports HTTP/1.1, HTTP/2, and HTTP/3 with QUIC. It also supports the latest TLS 1.3 encryption standard for maximum security.

Absolutely. SSLcat is designed for enterprise use with high availability, automatic failover, and extensive monitoring capabilities. It is already used by many organizations worldwide.

The admin panel is accessible via the web interface at https://your-domain:8443. You need to configure admin credentials in the configuration file before accessing.

Yes, SSLcat automatically renews SSL certificates 30 days before expiration. The renewal process is completely transparent and requires no manual intervention.

SSLcat can be deployed via Docker, direct binary installation, or using systemd service management. Docker deployment is recommended for easier management.

Graceful restart allows SSLcat to reload configuration and update certificates without dropping existing connections. This ensures zero-downtime updates for production environments.

SSLcat uses the ACME protocol (Let's Encrypt) which validates domain ownership through HTTP-01 challenge. It places a verification file on your server that the CA can access.

SSLcat automatically requests certificates from Let's Encrypt when you add a new domain. It handles the ACME challenge validation process automatically.

Configure reverse proxy in the SSLcat configuration file by specifying the upstream server address and port. SSLcat will handle SSL termination and forward traffic.

Configure the static file root directory in SSLcat config. SSLcat will serve static files directly with automatic HTTPS encryption.

SSLcat automatically handles domain verification through ACME challenge. Just point your domain to the SSLcat server IP.

Yes, SSLcat fully supports HTTP/3 with QUIC protocol, providing faster connection establishment and improved performance over UDP.

Yes, SSLcat supports multiple upstream servers with round-robin and least-connections load balancing algorithms.

Access logs are available through the admin panel web interface, or you can view them directly from the log file configured in SSLcat settings.

Add multiple domains in the SSLcat configuration file. Each domain will get its own SSL certificate automatically.

SSLcat includes HTTP/2 multiplexing, TLS session resumption, zero-copy forwarding, and optimized connection pooling for maximum performance.

Yes, SSLcat supports FastCGI for PHP and other FastCGI-compatible applications. Configure the FastCGI backend in the SSLcat config.

SSLcat includes DDoS protection, rate limiting, IP whitelisting/blacklisting, TLS 1.3 enforcement, and automatic security updates.

SSLcat supports Linux (all major distributions), macOS, and Windows. Binary packages are available for amd64 and arm64 architectures.

Minimum requirements: 512MB RAM, 100MB disk space. Recommended: 2GB RAM, 1GB disk space. Requires Go 1.21+ runtime.

Check the SSLcat logs, verify DNS configuration, ensure ports 80 and 443 are open, and check certificate status in the admin panel.

Yes, SSLcat fully supports WebSocket connections with SSL termination. WebSocket connections are transparently forwarded to upstream servers.

SSLcat uses Let's Encrypt, a free certificate authority that provides SSL certificates at no cost to promote HTTPS adoption worldwide.

Yes, SSLcat supports wildcard certificates (*.example.com) through Let's Encrypt DNS-01 challenge validation.