[stunnel-users] Re: Windows config with both SSL listen and non-SSL

This is a discussion on [stunnel-users] Re: Windows config with both SSL listen and non-SSL within the Stunnel Users forums, part of the Networking and Network Related category; Paul, This is a temporary solution but it works. What you need to do is run two instances of Stunnel--...


Go Back   Usenet Forums > Networking and Network Related > Stunnel Users

Reload this Page [stunnel-users] Re: Windows config with both SSL listen and non-SSL

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 12-08-2005
Han Jun Li
 
Posts: n/a
Default [stunnel-users] Re: Windows config with both SSL listen and non-SSL
Paul,
This is a temporary solution but it works. What you need to do is
run two instances of Stunnel--one instance configured in client mode and
the other in server mode. If you want to run both as services, you can
install the standard one with the "-install" switch. For the second
instance, you need to use some other binary to install it with a different
name and change the imagepath to point to the executable.

/han

>_____
>
>From: stunnel-users-bounces@mirt.net [mailto:stunnel-users-bounces@mirt.net]
>On Behalf Of Paul Hethmon
>Sent: Wednesday, December 07, 2005 2:50 PM
>To: stunnel-users@mirt.net
>Subject: [stunnel-users] Windows config with both SSL listen and
>non-SSLlisten
>
>
>I'm trying to set up using the Windows service the ability to listen in SSL
>mode on one port (5102) and forward to non-SSL port (5010) and then also
>listen on one port (5101) in non-SSL mode and forward to a remote port
>(5102) in SSL mode. What I have currently in the config is:
>
>[inbound]
>accept = 5102
>connect = 5010
>
>[outbound]
>accept = 5101
>connect = x.x.x.x:5102
>
>The first STunnel example on the website talks about doing this, sort of,
>but I don't see any options to specify on a service configuration level
>whether the listen port is in SSL or non-SSL mode. The use of a service name
>like [pop3] vs [pop3s] seems to imply a difference, but I've got a custom
>application I'm trying to tunnel two way, not a standard IETF service.
>
>A perusal of the last year's mailing list archives didn't yield anything. I
>guess the next step is to look at the source and see if it's supported
>unless someone here can tell me one way or the other. If it's not supported,
>I guess I'll add it in.
>
>thanks,
>
>Paul
>
>
>Paul Hethmon
>Senior Engineer
>ClareityT Security
>SAFEMLST Security Education, Consulting and Solutions
>http://www.SAFEMLS.com <http://www.safemls.com/>
>paul.hethmon@callclareity.com
>work: 865.671.6630
>cell: 865.250.3517
>
>



_______________________________________________
stunnel-users mailing list
stunnel-users@mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 04:59 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0