npm - @push.rocks/smartproxy - Versions diffs - 15.0.2 → 16.0.3 - Mend

@push.rocks/smartproxy 15.0.2 → 16.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (160) hide show

package/dist_ts/00_commitinfo_data.js +1 -1
package/dist_ts/certificate/index.d.ts +10 -4
package/dist_ts/certificate/index.js +5 -7
package/dist_ts/certificate/models/certificate-types.d.ts +35 -15
package/dist_ts/certificate/providers/cert-provisioner.d.ts +41 -15
package/dist_ts/certificate/providers/cert-provisioner.js +201 -41
package/dist_ts/core/models/index.d.ts +2 -0
package/dist_ts/core/models/index.js +3 -1
package/dist_ts/core/models/route-context.d.ts +62 -0
package/dist_ts/core/models/route-context.js +43 -0
package/dist_ts/core/models/socket-augmentation.d.ts +12 -0
package/dist_ts/core/models/socket-augmentation.js +18 -0
package/dist_ts/core/utils/event-system.d.ts +200 -0
package/dist_ts/core/utils/event-system.js +224 -0
package/dist_ts/core/utils/index.d.ts +7 -0
package/dist_ts/core/utils/index.js +8 -1
package/dist_ts/core/utils/route-manager.d.ts +118 -0
package/dist_ts/core/utils/route-manager.js +383 -0
package/dist_ts/core/utils/route-utils.d.ts +94 -0
package/dist_ts/core/utils/route-utils.js +264 -0
package/dist_ts/core/utils/security-utils.d.ts +111 -0
package/dist_ts/core/utils/security-utils.js +212 -0
package/dist_ts/core/utils/shared-security-manager.d.ts +110 -0
package/dist_ts/core/utils/shared-security-manager.js +252 -0
package/dist_ts/core/utils/template-utils.d.ts +37 -0
package/dist_ts/core/utils/template-utils.js +104 -0
package/dist_ts/core/utils/websocket-utils.d.ts +23 -0
package/dist_ts/core/utils/websocket-utils.js +86 -0
package/dist_ts/forwarding/config/forwarding-types.d.ts +40 -76
package/dist_ts/forwarding/config/forwarding-types.js +19 -18
package/dist_ts/forwarding/config/index.d.ts +4 -2
package/dist_ts/forwarding/config/index.js +5 -3
package/dist_ts/forwarding/handlers/base-handler.js +3 -1
package/dist_ts/forwarding/index.d.ts +5 -6
package/dist_ts/forwarding/index.js +3 -3
package/dist_ts/http/models/http-types.js +1 -1
package/dist_ts/http/port80/acme-interfaces.d.ts +30 -0
package/dist_ts/http/port80/acme-interfaces.js +46 -1
package/dist_ts/http/port80/port80-handler.d.ts +17 -2
package/dist_ts/http/port80/port80-handler.js +49 -11
package/dist_ts/http/router/index.d.ts +5 -1
package/dist_ts/http/router/index.js +4 -2
package/dist_ts/http/router/route-router.d.ts +108 -0
package/dist_ts/http/router/route-router.js +393 -0
package/dist_ts/index.d.ts +8 -2
package/dist_ts/index.js +10 -3
package/dist_ts/proxies/index.d.ts +7 -2
package/dist_ts/proxies/index.js +10 -4
package/dist_ts/proxies/network-proxy/certificate-manager.d.ts +21 -0
package/dist_ts/proxies/network-proxy/certificate-manager.js +92 -1
package/dist_ts/proxies/network-proxy/context-creator.d.ts +34 -0
package/dist_ts/proxies/network-proxy/context-creator.js +108 -0
package/dist_ts/proxies/network-proxy/function-cache.d.ts +90 -0
package/dist_ts/proxies/network-proxy/function-cache.js +198 -0
package/dist_ts/proxies/network-proxy/http-request-handler.d.ts +40 -0
package/dist_ts/proxies/network-proxy/http-request-handler.js +256 -0
package/dist_ts/proxies/network-proxy/http2-request-handler.d.ts +24 -0
package/dist_ts/proxies/network-proxy/http2-request-handler.js +201 -0
package/dist_ts/proxies/network-proxy/models/types.d.ts +73 -1
package/dist_ts/proxies/network-proxy/models/types.js +242 -1
package/dist_ts/proxies/network-proxy/network-proxy.d.ts +23 -20
package/dist_ts/proxies/network-proxy/network-proxy.js +147 -60
package/dist_ts/proxies/network-proxy/request-handler.d.ts +38 -5
package/dist_ts/proxies/network-proxy/request-handler.js +584 -198
package/dist_ts/proxies/network-proxy/security-manager.d.ts +65 -0
package/dist_ts/proxies/network-proxy/security-manager.js +255 -0
package/dist_ts/proxies/network-proxy/websocket-handler.d.ts +13 -2
package/dist_ts/proxies/network-proxy/websocket-handler.js +238 -20
package/dist_ts/proxies/smart-proxy/index.d.ts +1 -1
package/dist_ts/proxies/smart-proxy/index.js +3 -3
package/dist_ts/proxies/smart-proxy/models/interfaces.d.ts +5 -66
package/dist_ts/proxies/smart-proxy/models/interfaces.js +5 -4
package/dist_ts/proxies/smart-proxy/models/route-types.d.ts +173 -6
package/dist_ts/proxies/smart-proxy/network-proxy-bridge.d.ts +20 -7
package/dist_ts/proxies/smart-proxy/network-proxy-bridge.js +49 -108
package/dist_ts/proxies/smart-proxy/port-manager.d.ts +81 -0
package/dist_ts/proxies/smart-proxy/port-manager.js +166 -0
package/dist_ts/proxies/smart-proxy/route-connection-handler.d.ts +7 -5
package/dist_ts/proxies/smart-proxy/route-connection-handler.js +155 -160
package/dist_ts/proxies/smart-proxy/route-helpers/index.d.ts +9 -0
package/dist_ts/proxies/smart-proxy/route-helpers/index.js +11 -0
package/dist_ts/proxies/smart-proxy/route-helpers.d.ts +5 -125
package/dist_ts/proxies/smart-proxy/route-helpers.js +8 -195
package/dist_ts/proxies/smart-proxy/route-manager.d.ts +14 -11
package/dist_ts/proxies/smart-proxy/route-manager.js +81 -124
package/dist_ts/proxies/smart-proxy/smart-proxy.d.ts +101 -12
package/dist_ts/proxies/smart-proxy/smart-proxy.js +178 -306
package/dist_ts/proxies/smart-proxy/timeout-manager.js +3 -3
package/dist_ts/proxies/smart-proxy/utils/index.d.ts +12 -0
package/dist_ts/proxies/smart-proxy/utils/index.js +19 -0
package/dist_ts/proxies/smart-proxy/utils/route-helpers.d.ts +240 -0
package/dist_ts/proxies/smart-proxy/utils/route-helpers.js +451 -0
package/dist_ts/proxies/smart-proxy/utils/route-migration-utils.d.ts +51 -0
package/dist_ts/proxies/smart-proxy/utils/route-migration-utils.js +124 -0
package/dist_ts/proxies/smart-proxy/utils/route-patterns.d.ts +131 -0
package/dist_ts/proxies/smart-proxy/utils/route-patterns.js +217 -0
package/dist_ts/proxies/smart-proxy/utils/route-utils.d.ts +79 -0
package/dist_ts/proxies/smart-proxy/utils/route-utils.js +266 -0
package/dist_ts/proxies/smart-proxy/utils/route-validators.d.ts +73 -0
package/dist_ts/proxies/smart-proxy/utils/route-validators.js +264 -0
package/package.json +1 -1
package/readme.md +241 -125
package/readme.plan.md +73 -286
package/ts/00_commitinfo_data.ts +1 -1
package/ts/certificate/index.ts +17 -9
package/ts/certificate/models/certificate-types.ts +37 -16
package/ts/certificate/providers/cert-provisioner.ts +247 -54
package/ts/core/models/index.ts +2 -0
package/ts/core/models/route-context.ts +113 -0
package/ts/core/models/socket-augmentation.ts +33 -0
package/ts/core/utils/event-system.ts +376 -0
package/ts/core/utils/index.ts +7 -0
package/ts/core/utils/route-manager.ts +489 -0
package/ts/core/utils/route-utils.ts +312 -0
package/ts/core/utils/security-utils.ts +309 -0
package/ts/core/utils/shared-security-manager.ts +333 -0
package/ts/core/utils/template-utils.ts +124 -0
package/ts/core/utils/websocket-utils.ts +81 -0
package/ts/forwarding/config/forwarding-types.ts +79 -107
package/ts/forwarding/config/index.ts +4 -2
package/ts/forwarding/handlers/base-handler.ts +4 -2
package/ts/forwarding/index.ts +3 -2
package/ts/http/models/http-types.ts +0 -1
package/ts/http/port80/acme-interfaces.ts +84 -0
package/ts/http/port80/port80-handler.ts +61 -15
package/ts/http/router/index.ts +8 -1
package/ts/http/router/route-router.ts +482 -0
package/ts/index.ts +14 -2
package/ts/proxies/index.ts +12 -3
package/ts/proxies/network-proxy/certificate-manager.ts +114 -10
package/ts/proxies/network-proxy/context-creator.ts +145 -0
package/ts/proxies/network-proxy/function-cache.ts +259 -0
package/ts/proxies/network-proxy/http-request-handler.ts +330 -0
package/ts/proxies/network-proxy/http2-request-handler.ts +255 -0
package/ts/proxies/network-proxy/models/types.ts +312 -1
package/ts/proxies/network-proxy/network-proxy.ts +195 -86
package/ts/proxies/network-proxy/request-handler.ts +698 -246
package/ts/proxies/network-proxy/security-manager.ts +298 -0
package/ts/proxies/network-proxy/websocket-handler.ts +276 -33
package/ts/proxies/smart-proxy/index.ts +2 -12
package/ts/proxies/smart-proxy/models/interfaces.ts +13 -67
package/ts/proxies/smart-proxy/models/route-types.ts +223 -25
package/ts/proxies/smart-proxy/network-proxy-bridge.ts +57 -123
package/ts/proxies/smart-proxy/port-manager.ts +195 -0
package/ts/proxies/smart-proxy/route-connection-handler.ts +191 -225
package/ts/proxies/smart-proxy/route-manager.ts +101 -144
package/ts/proxies/smart-proxy/smart-proxy.ts +206 -377
package/ts/proxies/smart-proxy/timeout-manager.ts +2 -2
package/ts/proxies/smart-proxy/utils/index.ts +40 -0
package/ts/proxies/smart-proxy/utils/route-helpers.ts +621 -0
package/ts/proxies/smart-proxy/utils/route-migration-utils.ts +165 -0
package/ts/proxies/smart-proxy/utils/route-patterns.ts +309 -0
package/ts/proxies/smart-proxy/utils/route-utils.ts +330 -0
package/ts/proxies/smart-proxy/utils/route-validators.ts +288 -0
package/ts/forwarding/config/domain-config.ts +0 -28
package/ts/forwarding/config/domain-manager.ts +0 -283
package/ts/proxies/smart-proxy/connection-handler.ts +0 -1240
package/ts/proxies/smart-proxy/domain-config-manager.ts +0 -441
package/ts/proxies/smart-proxy/port-range-manager.ts +0 -211
package/ts/proxies/smart-proxy/route-helpers.ts +0 -344

package/ts/proxies/smart-proxy/route-connection-handler.ts CHANGED Viewed

@@ -1,26 +1,23 @@
 import * as plugins from '../../plugins.js';
 import type {
   IConnectionRecord,
-  IDomainConfig,
   ISmartProxyOptions
 } from './models/interfaces.js';
 import {
-  isRoutedOptions,
-  isLegacyOptions
+  isRoutedOptions
 } from './models/interfaces.js';
 import type {
   IRouteConfig,
-  IRouteAction
+  IRouteAction,
+  IRouteContext
 } from './models/route-types.js';
 import { ConnectionManager } from './connection-manager.js';
 import { SecurityManager } from './security-manager.js';
-import { DomainConfigManager } from './domain-config-manager.js';
 import { TlsManager } from './tls-manager.js';
 import { NetworkProxyBridge } from './network-proxy-bridge.js';
 import { TimeoutManager } from './timeout-manager.js';
 import { RouteManager } from './route-manager.js';
 import type { ForwardingHandler } from '../../forwarding/handlers/base-handler.js';
-import type { TForwardingType } from '../../forwarding/config/forwarding-types.js';
 /**
  * Handles new connection processing and setup logic with support for route-based configuration
@@ -28,11 +25,13 @@ import type { TForwardingType } from '../../forwarding/config/forwarding-types.j
 export class RouteConnectionHandler {
   private settings: ISmartProxyOptions;
+  // Cache for route contexts to avoid recreation
+  private routeContextCache: Map<string, IRouteContext> = new Map();
   constructor(
     settings: ISmartProxyOptions,
     private connectionManager: ConnectionManager,
     private securityManager: SecurityManager,
-    private domainConfigManager: DomainConfigManager,
     private tlsManager: TlsManager,
     private networkProxyBridge: NetworkProxyBridge,
     private timeoutManager: TimeoutManager,
@@ -41,6 +40,47 @@ export class RouteConnectionHandler {
     this.settings = settings;
   }
+  /**
+   * Create a route context object for port and host mapping functions
+   */
+  private createRouteContext(options: {
+    connectionId: string;
+    port: number;
+    domain?: string;
+    clientIp: string;
+    serverIp: string;
+    isTls: boolean;
+    tlsVersion?: string;
+    routeName?: string;
+    routeId?: string;
+    path?: string;
+    query?: string;
+    headers?: Record<string, string>;
+  }): IRouteContext {
+    return {
+      // Connection information
+      port: options.port,
+      domain: options.domain,
+      clientIp: options.clientIp,
+      serverIp: options.serverIp,
+      path: options.path,
+      query: options.query,
+      headers: options.headers,
+      // TLS information
+      isTls: options.isTls,
+      tlsVersion: options.tlsVersion,
+      // Route information
+      routeName: options.routeName,
+      routeId: options.routeId,
+      // Additional properties
+      timestamp: Date.now(),
+      connectionId: options.connectionId
+    };
+  }
   /**
    * Handle a new incoming connection
    */
@@ -244,37 +284,20 @@ export class RouteConnectionHandler {
     if (!routeMatch) {
       console.log(`[${connectionId}] No route found for ${serverName || 'connection'} on port ${localPort}`);
-      // Fall back to legacy matching if we're using a hybrid configuration
-      const domainConfig = serverName
-        ? this.domainConfigManager.findDomainConfig(serverName)
-        : this.domainConfigManager.findDomainConfigForPort(localPort);
-      if (domainConfig) {
-        if (this.settings.enableDetailedLogging) {
-          console.log(`[${connectionId}] Using legacy domain configuration for ${serverName || 'port ' + localPort}`);
-        }
-        // Associate this domain config with the connection
-        record.domainConfig = domainConfig;
-        // Handle the connection using the legacy setup
-        return this.handleLegacyConnection(socket, record, serverName, domainConfig, initialChunk);
-      }
-      // No matching route or domain config, use default/fallback handling
+      // No matching route, use default/fallback handling
       console.log(`[${connectionId}] Using default route handling for connection`);
       // Check default security settings
       const defaultSecuritySettings = this.settings.defaults?.security;
       if (defaultSecuritySettings) {
-        if (defaultSecuritySettings.allowedIPs && defaultSecuritySettings.allowedIPs.length > 0) {
+        if (defaultSecuritySettings.allowedIps && defaultSecuritySettings.allowedIps.length > 0) {
           const isAllowed = this.securityManager.isIPAuthorized(
             remoteIP,
-            defaultSecuritySettings.allowedIPs,
-            defaultSecuritySettings.blockedIPs || []
+            defaultSecuritySettings.allowedIps,
+            defaultSecuritySettings.blockedIps || []
           );
           if (!isAllowed) {
             console.log(`[${connectionId}] IP ${remoteIP} not in default allowed list`);
             socket.end();
@@ -282,34 +305,24 @@ export class RouteConnectionHandler {
             return;
           }
         }
-      } else if (this.settings.defaultAllowedIPs && this.settings.defaultAllowedIPs.length > 0) {
-        // Legacy default IP restrictions
-        const isAllowed = this.securityManager.isIPAuthorized(
-          remoteIP,
-          this.settings.defaultAllowedIPs,
-          this.settings.defaultBlockedIPs || []
-        );
-        if (!isAllowed) {
-          console.log(`[${connectionId}] IP ${remoteIP} not in default allowed list`);
-          socket.end();
-          this.connectionManager.cleanupConnection(record, 'ip_blocked');
-          return;
-        }
       }
       // Setup direct connection with default settings
-      let targetHost: string;
-      let targetPort: number;
+      if (this.settings.defaults?.target) {
+        // Use defaults from configuration
+        const targetHost = this.settings.defaults.target.host;
+        const targetPort = this.settings.defaults.target.port;
-      if (isRoutedOptions(this.settings) && this.settings.defaults?.target) {
-        // Use defaults from routed configuration
-        targetHost = this.settings.defaults.target.host;
-        targetPort = this.settings.defaults.target.port;
-      } else if (this.settings.targetIP && this.settings.toPort) {
-        // Fall back to legacy settings
-        targetHost = this.settings.targetIP;
-        targetPort = this.settings.toPort;
+        return this.setupDirectConnection(
+          socket,
+          record,
+          undefined,
+          serverName,
+          initialChunk,
+          undefined,
+          targetHost,
+          targetPort
+        );
       } else {
         // No default target available, terminate the connection
         console.log(`[${connectionId}] No default target configured. Closing connection.`);
@@ -317,17 +330,6 @@ export class RouteConnectionHandler {
         this.connectionManager.cleanupConnection(record, 'no_default_target');
         return;
       }
-      return this.setupDirectConnection(
-        socket,
-        record,
-        undefined,
-        serverName,
-        initialChunk,
-        undefined,
-        targetHost,
-        targetPort
-      );
     }
     // A matching route was found
@@ -368,7 +370,7 @@ export class RouteConnectionHandler {
   ): void {
     const connectionId = record.id;
     const action = route.action;
     // We should have a target configuration for forwarding
     if (!action.target) {
       console.log(`[${connectionId}] Forward action missing target configuration`);
@@ -376,24 +378,82 @@ export class RouteConnectionHandler {
       this.connectionManager.cleanupConnection(record, 'missing_target');
       return;
     }
+    // Create the routing context for this connection
+    const routeContext = this.createRouteContext({
+      connectionId: record.id,
+      port: record.localPort,
+      domain: record.lockedDomain,
+      clientIp: record.remoteIP,
+      serverIp: socket.localAddress || '',
+      isTls: record.isTLS || false,
+      tlsVersion: record.tlsVersion,
+      routeName: route.name,
+      routeId: route.id
+    });
+    // Cache the context for potential reuse
+    this.routeContextCache.set(connectionId, routeContext);
+    // Determine host using function or static value
+    let targetHost: string | string[];
+    if (typeof action.target.host === 'function') {
+      try {
+        targetHost = action.target.host(routeContext);
+        if (this.settings.enableDetailedLogging) {
+          console.log(`[${connectionId}] Dynamic host resolved to: ${Array.isArray(targetHost) ? targetHost.join(', ') : targetHost}`);
+        }
+      } catch (err) {
+        console.log(`[${connectionId}] Error in host mapping function: ${err}`);
+        socket.end();
+        this.connectionManager.cleanupConnection(record, 'host_mapping_error');
+        return;
+      }
+    } else {
+      targetHost = action.target.host;
+    }
+    // If an array of hosts, select one randomly for load balancing
+    const selectedHost = Array.isArray(targetHost)
+      ? targetHost[Math.floor(Math.random() * targetHost.length)]
+      : targetHost;
+    // Determine port using function or static value
+    let targetPort: number;
+    if (typeof action.target.port === 'function') {
+      try {
+        targetPort = action.target.port(routeContext);
+        if (this.settings.enableDetailedLogging) {
+          console.log(`[${connectionId}] Dynamic port mapping: ${record.localPort} -> ${targetPort}`);
+        }
+        // Store the resolved target port in the context for potential future use
+        routeContext.targetPort = targetPort;
+      } catch (err) {
+        console.log(`[${connectionId}] Error in port mapping function: ${err}`);
+        socket.end();
+        this.connectionManager.cleanupConnection(record, 'port_mapping_error');
+        return;
+      }
+    } else if (action.target.preservePort) {
+      // Use incoming port if preservePort is true
+      targetPort = record.localPort;
+    } else {
+      // Use static port from configuration
+      targetPort = action.target.port;
+    }
+    // Store the resolved host in the context
+    routeContext.targetHost = selectedHost;
     // Determine if this needs TLS handling
     if (action.tls) {
       switch (action.tls.mode) {
         case 'passthrough':
           // For TLS passthrough, just forward directly
           if (this.settings.enableDetailedLogging) {
-            console.log(`[${connectionId}] Using TLS passthrough to ${action.target.host}`);
+            console.log(`[${connectionId}] Using TLS passthrough to ${selectedHost}:${targetPort}`);
           }
-          // Allow for array of hosts
-          const targetHost = Array.isArray(action.target.host)
-            ? action.target.host[Math.floor(Math.random() * action.target.host.length)]
-            : action.target.host;
-          // Determine target port - either target port or preserve incoming port
-          const targetPort = action.target.preservePort ? record.localPort : action.target.port;
           return this.setupDirectConnection(
             socket,
             record,
@@ -401,7 +461,7 @@ export class RouteConnectionHandler {
             record.lockedDomain,
             initialChunk,
             undefined,
-            targetHost,
+            selectedHost,
             targetPort
           );
@@ -445,14 +505,36 @@ export class RouteConnectionHandler {
         console.log(`[${connectionId}] Using basic forwarding to ${action.target.host}:${action.target.port}`);
       }
-      // Allow for array of hosts
-      const targetHost = Array.isArray(action.target.host)
-        ? action.target.host[Math.floor(Math.random() * action.target.host.length)]
-        : action.target.host;
-      // Determine target port - either target port or preserve incoming port
-      const targetPort = action.target.preservePort ? record.localPort : action.target.port;
+      // Get the appropriate host value
+      let targetHost: string;
+      if (typeof action.target.host === 'function') {
+        // For function-based host, use the same routeContext created earlier
+        const hostResult = action.target.host(routeContext);
+        targetHost = Array.isArray(hostResult)
+          ? hostResult[Math.floor(Math.random() * hostResult.length)]
+          : hostResult;
+      } else {
+        // For static host value
+        targetHost = Array.isArray(action.target.host)
+          ? action.target.host[Math.floor(Math.random() * action.target.host.length)]
+          : action.target.host;
+      }
+      // Determine port - either function-based, static, or preserve incoming port
+      let targetPort: number;
+      if (typeof action.target.port === 'function') {
+        targetPort = action.target.port(routeContext);
+      } else if (action.target.preservePort) {
+        targetPort = record.localPort;
+      } else {
+        targetPort = action.target.port;
+      }
+      // Update the connection record and context with resolved values
+      record.targetHost = targetHost;
+      record.targetPort = targetPort;
       return this.setupDirectConnection(
         socket,
         record,
@@ -575,114 +657,8 @@ export class RouteConnectionHandler {
   }
   /**
-   * Handle a connection using legacy domain configuration
+   * Legacy connection handling has been removed in favor of pure route-based approach
    */
-  private handleLegacyConnection(
-    socket: plugins.net.Socket,
-    record: IConnectionRecord,
-    serverName: string,
-    domainConfig: IDomainConfig,
-    initialChunk?: Buffer
-  ): void {
-    const connectionId = record.id;
-    // Get the forwarding type for this domain
-    const forwardingType = this.domainConfigManager.getForwardingType(domainConfig);
-    // IP validation
-    const ipRules = this.domainConfigManager.getEffectiveIPRules(domainConfig);
-    if (!this.securityManager.isIPAuthorized(record.remoteIP, ipRules.allowedIPs, ipRules.blockedIPs)) {
-      console.log(
-        `[${connectionId}] Connection rejected: IP ${record.remoteIP} not allowed for domain ${domainConfig.domains.join(', ')}`
-      );
-      socket.end();
-      this.connectionManager.initiateCleanupOnce(record, 'ip_blocked');
-      return;
-    }
-    // Handle based on forwarding type
-    switch (forwardingType) {
-      case 'http-only':
-        // For HTTP-only configs with TLS traffic
-        if (record.isTLS) {
-          console.log(`[${connectionId}] Received TLS connection for HTTP-only domain ${serverName}`);
-          socket.end();
-          this.connectionManager.initiateCleanupOnce(record, 'wrong_protocol');
-          return;
-        }
-        break;
-      case 'https-passthrough':
-        // For TLS passthrough with TLS traffic
-        if (record.isTLS) {
-          try {
-            const handler = this.domainConfigManager.getForwardingHandler(domainConfig);
-            if (this.settings.enableDetailedLogging) {
-              console.log(`[${connectionId}] Using forwarding handler for SNI passthrough to ${serverName}`);
-            }
-            // Handle the connection using the handler
-            return handler.handleConnection(socket);
-          } catch (err) {
-            console.log(`[${connectionId}] Error using forwarding handler: ${err}`);
-          }
-        }
-        break;
-      case 'https-terminate-to-http':
-      case 'https-terminate-to-https':
-        // For TLS termination with TLS traffic
-        if (record.isTLS) {
-          const networkProxyPort = this.domainConfigManager.getNetworkProxyPort(domainConfig);
-          if (this.settings.enableDetailedLogging) {
-            console.log(`[${connectionId}] Using TLS termination (${forwardingType}) for ${serverName} on port ${networkProxyPort}`);
-          }
-          // Forward to NetworkProxy with domain-specific port
-          return this.networkProxyBridge.forwardToNetworkProxy(
-            connectionId,
-            socket,
-            record,
-            initialChunk!,
-            networkProxyPort,
-            (reason) => this.connectionManager.initiateCleanupOnce(record, reason)
-          );
-        }
-        break;
-    }
-    // If we're still here, use the forwarding handler if available
-    try {
-      const handler = this.domainConfigManager.getForwardingHandler(domainConfig);
-      if (this.settings.enableDetailedLogging) {
-        console.log(`[${connectionId}] Using general forwarding handler for domain ${serverName || 'unknown'}`);
-      }
-      // Handle the connection using the handler
-      return handler.handleConnection(socket);
-    } catch (err) {
-      console.log(`[${connectionId}] Error using forwarding handler: ${err}`);
-    }
-    // Fallback: set up direct connection
-    const targetIp = this.domainConfigManager.getTargetIP(domainConfig);
-    const targetPort = this.domainConfigManager.getTargetPort(domainConfig, this.settings.toPort);
-    return this.setupDirectConnection(
-      socket,
-      record,
-      domainConfig,
-      serverName,
-      initialChunk,
-      undefined,
-      targetIp,
-      targetPort
-    );
-  }
   /**
    * Sets up a direct connection to the target
@@ -690,7 +666,7 @@ export class RouteConnectionHandler {
   private setupDirectConnection(
     socket: plugins.net.Socket,
     record: IConnectionRecord,
-    domainConfig?: IDomainConfig,
+    _unused?: any, // kept for backward compatibility
     serverName?: string,
     initialChunk?: Buffer,
     overridePort?: number,
@@ -698,22 +674,25 @@ export class RouteConnectionHandler {
     targetPort?: number
   ): void {
     const connectionId = record.id;
     // Determine target host and port if not provided
-    const finalTargetHost = targetHost || (domainConfig
-      ? this.domainConfigManager.getTargetIP(domainConfig)
-      : this.settings.defaults?.target?.host
-        ? this.settings.defaults.target.host
-        : this.settings.targetIP!);
+    const finalTargetHost = targetHost ||
+      record.targetHost ||
+      (this.settings.defaults?.target?.host || 'localhost');
-    // Determine target port - first try explicit port, then forwarding config, then fallback
-    const finalTargetPort = targetPort || (overridePort !== undefined
-      ? overridePort
-      : domainConfig
-        ? this.domainConfigManager.getTargetPort(domainConfig, this.settings.toPort)
-        : this.settings.defaults?.target?.port
-          ? this.settings.defaults.target.port
-          : this.settings.toPort);
+    // Determine target port
+    const finalTargetPort = targetPort ||
+      record.targetPort ||
+      (overridePort !== undefined ? overridePort :
+       (this.settings.defaults?.target?.port || 443));
+    // Update record with final target information
+    record.targetHost = finalTargetHost;
+    record.targetPort = finalTargetPort;
+    if (this.settings.enableDetailedLogging) {
+      console.log(`[${connectionId}] Setting up direct connection to ${finalTargetHost}:${finalTargetPort}`);
+    }
     // Setup connection options
     const connectionOptions: plugins.net.NetConnectOpts = {
@@ -897,20 +876,7 @@ export class RouteConnectionHandler {
         this.connectionManager.incrementTerminationStat('outgoing', 'connection_failed');
       }
-      // If we have a forwarding handler for this domain, let it handle the error
-      if (domainConfig) {
-        try {
-          const forwardingHandler = this.domainConfigManager.getForwardingHandler(domainConfig);
-          forwardingHandler.emit('connection_error', {
-            socket,
-            error: err,
-            connectionId
-          });
-        } catch (handlerErr) {
-          // If getting the handler fails, just log and continue with normal cleanup
-          console.log(`Error getting forwarding handler for error handling: ${handlerErr}`);
-        }
-      }
+      // Route-based configuration doesn't use domain handlers
       // Clean up the connection
       this.connectionManager.initiateCleanupOnce(record, `connection_failed_${code}`);
@@ -1043,8 +1009,8 @@ export class RouteConnectionHandler {
             `${
               serverName
                 ? ` (SNI: ${serverName})`
-                : domainConfig
-                ? ` (Port-based for domain: ${domainConfig.domains.join(', ')})`
+                : record.lockedDomain
+                ? ` (Domain: ${record.lockedDomain})`
                 : ''
             }` +
             ` TLS: ${record.isTLS ? 'Yes' : 'No'}, Keep-Alive: ${
@@ -1057,8 +1023,8 @@ export class RouteConnectionHandler {
             `${
               serverName
                 ? ` (SNI: ${serverName})`
-                : domainConfig
-                ? ` (Port-based for domain: ${domainConfig.domains.join(', ')})`
+                : record.lockedDomain
+                ? ` (Domain: ${record.lockedDomain})`
                 : ''
             }`
         );