[prev in list] [next in list] [prev in thread] [next in thread]
List: stunnel-users
Subject: [stunnel-users] STunnel not creating connections.
From: "Paul Morrison" <Paul.Morrison () ts3services ! co ! uk>
Date: 2007-01-09 13:56:48
Message-ID: 3CB19FE0D5795D409E971F6F7263328B5E7420 () Ulysses ! ts3interactive ! co ! uk
[Download RAW message or body]
--===============1678094784==
Content-class: urn:content-classes:message
Content-Type: multipart/alternative;
boundary="----_=_NextPart_001_01C733F6.02150101"
This is a multi-part message in MIME format.
I have a problem perhaps someone can help me with.
I have setup Stunnel and OpenSSL on a Windows 2003 server. It is
configured to accept data on TCP port 2000, decrypt it, then pass it on
to TCP port 8014. I have placed the certificates provided for this in a
directory and I have told STunnel where these certificates are. The
problem I am having is I can see the connection from port 2000 coming in
to the system, but STunnel then does nothing before finally dropping the
connection.
The version of STunnel and OpenSSL are (stunnel 4.15 on
x86-pc-mingw32-gnu with OpenSSL 0.9.7i 14 Oct 2005)
I have the same setup at a different site on a different server and it
works fine.
In the debug.log the following is output:
2007.01.09 13:41:02 LOG7[684:352]: MATSU_GPRS started
2007.01.09 13:41:02 LOG7[684:352]: FD 196 in non-blocking mode
2007.01.09 13:41:02 LOG5[684:352]: MATSU_GPRS connected from
212.183.136.192:57511
2007.01.09 13:41:02 LOG7[684:352]: SSL state (accept): before/accept
initialization
2007.01.09 13:41:22 LOG3[684:352]: SSL_accept: Peer suddenly
disconnected
2007.01.09 13:41:22 LOG5[684:352]: Connection reset: 0 bytes sent to
SSL, 0 bytes sent to socket
2007.01.09 13:41:22 LOG7[684:352]: MATSU_GPRS finished (0 left)
I would normally expect to see details of the SSL connection and the
certificates being checked after the line 2007.01.09 13:41:02
LOG7[684:352]: SSL state (accept): before/accept initialization, but as
you can see it does nothing before dropping the connection after 20
seconds.
Does anyone know why this installation of STunnel does not seem to be
attempting to use the certificates provided?
I would be very grateful for any advice.
P.S. Do I need to have a Certifcate Authority server setup at the site
in order for STunnel to work?
Paul Morrison
IT Support Specialist
TS3 Services Ltd
Castle Court, Carnegie Campus
Dunfermline
KY11 8PB
TEL: 01383 629900
Mob: 07918078864
EMAIL: Paul.Morrison@ts3services.co.uk
<BLOCKED::mailto:Paul.Morrison@ts3services.co.uk>
[Attachment #3 (text/html)]
<html xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns:st1="urn:schemas-microsoft-com:office:smarttags" \
xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 11 (filtered medium)">
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="place" downloadurl="http://www.5iantlavalamp.com/"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="Street"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="address"/>
<!--[if !mso]>
<style>
st1\:*{behavior:url(#default#ieooui) }
</style>
<![endif]-->
<style>
<!--
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:Arial;
color:windowtext;}
@page Section1
{size:595.3pt 841.9pt;
margin:72.0pt 90.0pt 72.0pt 90.0pt;}
div.Section1
{page:Section1;}
-->
</style>
</head>
<body lang=EN-GB link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I have a problem perhaps someone can help me \
with.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I have setup Stunnel and OpenSSL on a Windows 2003
server. It is configured to accept data on TCP port 2000, decrypt it,
then pass it on to TCP port 8014. I have placed the certificates provided
for this in a directory and I have told STunnel where these certificates
are. The problem I am having is I can see the connection from port 2000
coming in to the system, but STunnel then does nothing before finally dropping
the connection.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>The version of STunnel and OpenSSL are (stunnel 4.15 on
x86-pc-mingw32-gnu with OpenSSL 0.9.7i 14 Oct 2005)<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I have the same setup at a different site on a different
server and it works fine.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>In the debug.log the following is \
output:<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG7[684:352]: MATSU_GPRS \
started<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG7[684:352]: FD 196 in non-blocking
mode<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG5[684:352]: MATSU_GPRS connected from
212.183.136.192:57511<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG7[684:352]: SSL state (accept):
before/accept initialization<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:22 LOG3[684:352]: SSL_accept: Peer suddenly
disconnected<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:22 LOG5[684:352]: Connection reset: 0 bytes
sent to SSL, 0 bytes sent to socket<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:22 LOG7[684:352]: MATSU_GPRS finished (0
left)<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I would normally expect to see details of the SSL connection
and the certificates being checked after the line 2007.01.09 13:41:02
LOG7[684:352]: SSL state (accept): before/accept initialization, but as you can
see it does nothing before dropping the connection after 20 \
seconds.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Does anyone know why this installation of STunnel does not
seem to be attempting to use the certificates provided?<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I would be very grateful for any \
advice.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>P.S. Do I need to have a Certifcate Authority server setup
at the site in order for STunnel to work?<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>Paul Morrison<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>IT Support Specialist<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>TS3 Services Ltd<o:p></o:p></span></font></p>
<p class=MsoNormal><st1:Street w:st="on"><st1:address w:st="on"><font size=1
face="Times New Roman"><span style='font-size:8.0pt'>Castle \
Court</span></font></st1:address></st1:Street><font size=1><span \
style='font-size:8.0pt'>, Carnegie Campus<o:p></o:p></span></font></p>
<p class=MsoNormal><st1:place w:st="on"><font size=1 face="Times New Roman"><span
style='font-size:8.0pt'>Dunfermline</span></font></st1:place><font size=1><span
style='font-size:8.0pt'><o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>KY11 8PB<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'> <o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>TEL: 01383 629900<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>Mob: 07918078864<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>EMAIL: <a href="BLOCKED::mailto:Paul.Morrison@ts3services.co.uk"
title="mailto:Paul.Morrison@ts3services.co.uk">Paul.Morrison@ts3services.co.uk</a></span></font><font
size=1><span style='font-size:8.0pt'><o:p></o:p></span></font></p>
<p class=MsoNormal><font size=3 face="Times New Roman"><span style='font-size:
12.0pt'><o:p> </o:p></span></font></p>
</div>
</body>
</html>
_______________________________________________
stunnel-users mailing list
stunnel-users@mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users
--===============1678094784==--
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic