[prev in list] [next in list] [prev in thread] [next in thread] 

List:       stunnel-users
Subject:    [stunnel-users] xforwardedfor in config
From:       "Jill Rochelle" <jrochelle () digitalchalk ! com>
Date:       2008-01-31 21:58:54
Message-ID: AFEADBD2688541C1A5B47D952683A161 () JillHP
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


I am new to stunnel and the ssl world.  I'm trying to get stunnel to work
with haproxy for load balancing https requests.  In the haproxy
documentation it says that the stunnel.conf should look like this

 

    cert=/etc/stunnel/stunnel.pem
    setuid=stunnel
    setgid=proxy
 
    socket=l:TCP_NODELAY=1
    socket=r:TCP_NODELAY=1
 
    [https]
    accept=192.168.1.1:443
    connect=192.168.1.1:80
    xforwardedfor=yes

 

 

However, when I try to start the stunnel service I get this

 

Starting stunnel: file /etc/stunnel/stunnel.conf line 9: Specified option
name is not valid here

 

 

If I comment out the xforwardedfor parameter, it starts.

 

 

Any help is greatly appreciated.

 

Thank you,

Jill Rochelle


[Attachment #5 (text/html)]

<html xmlns:v="urn:schemas-microsoft-com:vml" \
xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns="http://www.w3.org/TR/REC-html40">

<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 11 (filtered medium)">
<style>
<!--
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:12.0pt;
	font-family:"Times New Roman";}
a:link, span.MsoHyperlink
	{color:blue;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{color:purple;
	text-decoration:underline;}
pre
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:10.0pt;
	font-family:"Courier New";}
span.EmailStyle17
	{mso-style-type:personal-compose;
	font-family:Arial;
	color:windowtext;}
@page Section1
	{size:8.5in 11.0in;
	margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
	{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
 <o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
 <o:shapelayout v:ext="edit">
  <o:idmap v:ext="edit" data="1" />
 </o:shapelayout></xml><![endif]-->
</head>

<body lang=EN-US link=blue vlink=purple>

<div class=Section1>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I am new to stunnel and the ssl world.&nbsp; I&#8217;m trying to
get stunnel to work with haproxy for load balancing https requests.&nbsp; In the
haproxy documentation it says that the stunnel.conf should look like \
this<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<pre><font size=2 face="Courier New"><span \
style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
cert=/etc/stunnel/stunnel.pem<o:p></o:p></span></font></pre><pre><font size=2 \
face="Courier New"><span style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
setuid=stunnel<o:p></o:p></span></font></pre><pre><font size=2 face="Courier \
New"><span style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
setgid=proxy<o:p></o:p></span></font></pre><pre><font size=2 face="Courier New"><span \
style='font-size:10.0pt'><o:p>&nbsp;</o:p></span></font></pre><pre><font size=2 \
face="Courier New"><span style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
socket=l:TCP_NODELAY=1<o:p></o:p></span></font></pre><pre><font size=2 face="Courier \
New"><span style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
socket=r:TCP_NODELAY=1<o:p></o:p></span></font></pre><pre><font size=2 face="Courier \
New"><span style='font-size:10.0pt'><o:p>&nbsp;</o:p></span></font></pre><pre><font \
size=2 face="Courier New"><span style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
[https]<o:p></o:p></span></font></pre><pre><font size=2 face="Courier New"><span \
style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
accept=192.168.1.1:443<o:p></o:p></span></font></pre><pre><font size=2 face="Courier \
New"><span style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
connect=192.168.1.1:80<o:p></o:p></span></font></pre><pre><font size=2 face="Courier \
New"><span style='font-size:10.0pt'>&nbsp;&nbsp;&nbsp; \
xforwardedfor=yes<o:p></o:p></span></font></pre>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>However, when I try to start the stunnel service I get \
this<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Starting stunnel: file /etc/stunnel/stunnel.conf line 9:
Specified option name is not valid here<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>If I comment out the xforwardedfor parameter, it \
starts.<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Any help is greatly appreciated.<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Thank you,<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Jill Rochelle<o:p></o:p></span></font></p>

</div>

</body>

</html>



_______________________________________________
stunnel-users mailing list
stunnel-users@mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users


[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic