Skip to content

NodePassProject/Nowhere

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.github/workflows
.github/workflows
 
 
assets
assets
 
 
docs
docs
 
 
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Nowhere Protocol

One protocol for streams, datagrams, and difficult networks.

Nowhere is a compact encrypted relay protocol for carrying TCP and UDP traffic across TLS/TCP and QUIC. Each deployment exposes one authenticated entry point. TCP flows use dedicated TLS connections or QUIC streams; UDP flows use QUIC DATAGRAM or UDP-over-TCP (UoT) when native UDP is not available.

Core Features

  • TLS/TCP transport for TCP flows and length-prefixed UoT flows.
  • QUIC transport for TCP streams and DATAGRAM-based UDP flows.
  • Deterministic spec derivation for auth material, padding, and field ordering.
  • Independent ALPN selection through alpn, without changing the wire layout.
  • IPv4, IPv6, and dual-stack listener behavior from a single URL.
  • Directional traffic limits through rate and etar.
  • Structured local event records for operational counters.
  • No plaintext mode. tls=1 and tls=2 are the supported TLS modes.

Quick Start

cargo run --release -- 'portal://secret@:2077'

The empty listen host binds IPv4 and IPv6 wildcard sockets. The URL username is the shared key. The default network mode is mix, which enables TLS/TCP and QUIC/UDP on the same port. net=tcp still supports UDP through UoT; net=udp still supports TCP through QUIC bidirectional streams.

Build a release binary:

cargo build --release --locked
./target/release/nowhere --help
./target/release/nowhere --version

Configuration Shape

portal://<shared-key>@<listen-host>:<listen-port>?tls=<mode>&spec=<spec>&alpn=<alpn>&net=<mode>&dial=<ip-or-auto>&rate=<mbps>&etar=<mbps>&crt=<path>&key=<path>&log=<level>

Common examples:

nowhere 'portal://secret@:2077'
nowhere 'portal://secret@0.0.0.0:2077?net=tcp&log=info'
nowhere 'portal://secret@:2077?tls=2&crt=/etc/nowhere/cert.pem&key=/etc/nowhere/key.pem'
nowhere 'portal://secret@:2077?rate=100&etar=200'

Documentation

Development

cargo fmt --all
cargo test
cargo clippy --all-targets -- -D warnings

The repository targets the Rust 2024 edition. Protocol changes should update the tests and the documentation in the same commit.

License

GPL-3.0-only. See LICENSE.

About

One protocol for streams, datagrams, and difficult networks.

Resources

Readme

License

GPL-3.0 license

Security policy

Security policy
Activity
Custom properties

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

v1.2.3 Latest
Jun 27, 2026

Packages

 
 
 

Contributors

Languages