Skip to content

Spookly-Network/Hyprox

BranchesTags

Repository files navigation

Hyprox

License GitHub Release Discord

Hyprox installation (plain language)

This guide is for people who just want to get the proxy running.

What you need

  • Java 25 (for local runs).
  • Docker Desktop (optional, easiest path).
  • A few files: proxy TLS cert + key, and a shared HMAC key for referrals.

Option A: Docker (recommended)

  1. Open a terminal in the project root.
  2. Start the container once to generate a default config and self-signed certs:
    • docker compose up --build
    • To use a published image instead: HYPROX_IMAGE=yourorg/hyprox:tag docker compose up
  3. Stop the container after it creates /config/hyprox.yaml.
    • If HYPROX_REFERRAL_HMAC is not set, the container also writes one to /config/secret/referral_hmac.
  4. Edit config/hyprox.yaml:
    • Set proxy.quic.cert and proxy.quic.key to your cert/key paths.
    • Keep the default path:secret/referral_hmac, or switch to env:HYPROX_REFERRAL_HMAC if you prefer env vars.
    • Update backend addresses in routing.pools.
  5. Start again:
    • docker compose up

Option B: Run from the jar

  1. Build:
    • ./gradlew build
  2. Run once to generate a default config:
    • java -jar build/libs/<jar-name>.jar --config config/hyprox.yaml
    • This also creates config/secret/referral_hmac and references it in the config.
  3. Edit config/hyprox.yaml (same notes as Docker).
  4. Run for real:
    • java -jar build/libs/<jar-name>.jar --config config/hyprox.yaml

Option C: Run from Gradle (dev)

  1. ./gradlew run --args="--config config/hyprox.yaml"

Common setup notes

  • The first run writes a default config file and exits. Edit it before running again.
  • The container also generates a self-signed cert in config/certs if none exists.
  • HYPROX_REFERRAL_HMAC is a secret string used to sign referral payloads (use a strong random value).
  • proxy.mode controls how clients connect:
    • redirect: proxy only redirects clients to a backend.
    • full: proxy keeps a live connection and forwards packets.
    • hybrid: choose per pool (default path + fullProxyPools).
  • auth.mode defaults to passthrough. Use terminate only if you need token handling in the proxy.
  • The default config expects local backend ports; change them to your servers.

Do I need a server plugin?

No. Hyprox runs as a standalone proxy and does not require a backend plugin to route traffic. Certificate exchange is manual today: generate a CA + certs and configure the proxy and backends to use them.

An optional Hyprox agent stub is included for command registration. It is a placeholder for future features like referral signing and backend metadata publishing, and it does not handle cert exchange yet.

Where to go next

  • Full config reference: docs/plan/10-config.md
  • Usage details: docs/plan/15-usage-setup.md
  • Docker notes: infra/README.md

About

A hytale multiserver proxy

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages