[stunnel-users] Stunnel + Hybrid-ircd issues
This is a discussion on [stunnel-users] Stunnel + Hybrid-ircd issues within the Stunnel Users forums, part of the Networking and Network Related category; This is a multipart message in MIME format. --===============1184924346== Content-Type: multipart/alternative; boundary="----=_NextPart_000_0016_01C86AE2.5B3A9C20" Content-Language: ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-09-2008
|
|||
|
|||
[stunnel-users] Stunnel + Hybrid-ircd issues
This is a multipart message in MIME format.
--===============1184924346== Content-Type: multipart/alternative; boundary="----=_NextPart_000_0016_01C86AE2.5B3A9C20" Content-Language: en-us This is a multipart message in MIME format. ------=_NextPart_000_0016_01C86AE2.5B3A9C20 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Hi, I'm running Hybrid-7.2 on two PCs, one of which has a dynamic IP, as Hybrid wants a static IP and not hostname in its connect section, we are trying to use stunnel to encrypt server<->server communication. Server 1 specs (To which I'm connecting) running FreeBSD 6.3: *********************************************** #stunnel -version stunnel 4.05 on amd64-unknown-freebsd5.3 PTHREAD+LIBWRAP with OpenSSL 0.9.7e 25 Oct 2004 Global options cert = /usr/local/etc/stunnel/stunnel.pem ciphers = ALL:!ADH:+RC4:@STRENGTH debug = 5 key = /usr/local/etc/stunnel/stunnel.pem pid = /var/tmp/stunnel.pid RNDbytes = 64 RNDfile = /dev/urandom RNDoverwrite = yes #gcc -v Using built-in specs. Configured with: FreeBSD/amd64 system compiler Thread model: posix gcc version 3.4.6 [FreeBSD] 20060305 #uname FreeBSD 6.3-STABLE FreeBSD 6.3-STABLE #6: Tue Jan 22 13:23:51 GMT 2008 root@:/usr/obj/usr/src/sys/SVR1 amd64 Server 2 specs (From which I'm connecting via stunnel as a client) running OpenBSD 4.2: ************************************************** **************** #stunnel -version stunnel 4.20 on i386-unknown-openbsd4.2 with OpenSSL 0.9.7j 04 May 2006 Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP Global options debug = 5 pid = /usr/local/var/run/stunnel/stunnel.pid RNDbytes = 64 RNDfile = /dev/arandom RNDoverwrite = yes Service-level options cert = /etc/stunnel/stunnel.pem ciphers = ALL:!ADH:+RC4:@STRENGTH key = /etc/stunnel/stunnel.pem session = 300 seconds sslVersion = SSLv3 for client, all for server TIMEOUTbusy = 300 seconds TIMEOUTclose = 60 seconds TIMEOUTconnect = 10 seconds TIMEOUTidle = 43200 seconds verify = none # gcc -v Reading specs from /usr/lib/gcc-lib/i386-unknown-openbsd4.2/3.3.5/specs Configured with: Thread model: single gcc version 3.3.5 (propolice) # cat stunnel.conf: cert = /etc/ssl/private/stunnel.pem key = /etc/ssl/private/rsa.key setuid = _stunnel setgid = _stunnel pid = /var/run/stunnel.pid socket = l:TCP_NODELAY=1 socket = r:TCP_NODELAY=1 debug = 7 foreground = yes [irc] client = yes accept = localhost:994 connect = xxx.xxx.xxx.xxx:994 Here's the debug logged to stderr: # stunnel 2008.02.08 19:34:54 LOG7[11904:2237644800]: Snagged 64 random bytes from /dev/arandom 2008.02.08 19:34:54 LOG7[11904:2237644800]: RAND_status claims sufficient entropy for the PRNG 2008.02.08 19:34:54 LOG7[11904:2237644800]: PRNG seeded successfully 2008.02.08 19:34:54 LOG7[11904:2237644800]: Certificate: /etc/ssl/private/stunnel.pem 2008.02.08 19:34:54 LOG7[11904:2237644800]: Certificate loaded 2008.02.08 19:34:54 LOG7[11904:2237644800]: Key file: /etc/ssl/private/rsa.key 2008.02.08 19:34:54 LOG7[11904:2237644800]: Private key loaded 2008.02.08 19:34:54 LOG7[11904:2237644800]: SSL context initialized for service irc 2008.02.08 19:34:54 LOG5[11904:2237644800]: stunnel 4.20 on i386-unknown-openbsd4.2 with OpenSSL 0.9.7j 04 May 2006 2008.02.08 19:34:54 LOG5[11904:2237644800]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP 2008.02.08 19:34:54 LOG6[11904:2237644800]: file ulimit = 128 (can be changed with 'ulimit -n') 2008.02.08 19:34:54 LOG6[11904:2237644800]: poll() used - no FD_SETSIZE limit for file descriptors 2008.02.08 19:34:54 LOG5[11904:2237644800]: 61 clients allowed 2008.02.08 19:34:54 LOG7[11904:2237644800]: FD 6 in non-blocking mode 2008.02.08 19:34:54 LOG7[11904:2237644800]: FD 7 in non-blocking mode 2008.02.08 19:34:54 LOG7[11904:2237644800]: FD 8 in non-blocking mode 2008.02.08 19:34:54 LOG7[11904:2237644800]: SO_REUSEADDR option set on accept socket 2008.02.08 19:34:54 LOG7[11904:2237644800]: irc bound to 127.0.0.1:994 2008.02.08 19:34:54 LOG7[11904:2237644800]: Created pid file /var/run/stunnel.pid 2008.02.08 19:35:15 LOG7[11904:2237644800]: irc accepted FD=9 from 127.0.0.1:8579 2008.02.08 19:35:15 LOG7[11904:2336256000]: irc started 2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 9 in non-blocking mode 2008.02.08 19:35:15 LOG7[11904:2336256000]: TCP_NODELAY option set on local socket 2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 10 in non-blocking mode 2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 11 in non-blocking mode 2008.02.08 19:35:15 LOG7[11904:2336256000]: Connection from 127.0.0.1:8579 permitted by libwrap 2008.02.08 19:35:15 LOG5[11904:2336256000]: irc accepted connection from 127.0.0.1:8579 2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 10 in non-blocking mode 2008.02.08 19:35:15 LOG7[11904:2336256000]: irc connecting 69.50.175.50:994 2008.02.08 19:35:15 LOG7[11904:2336256000]: connect_wait: waiting 10 seconds 2008.02.08 19:35:15 LOG7[11904:2237644800]: Cleaning up the signal pipe 2008.02.08 19:35:15 LOG6[11904:2237644800]: Child process 26562 finished with code 0 2008.02.08 19:35:15 LOG7[11904:2336256000]: connect_wait: connected 2008.02.08 19:35:15 LOG5[11904:2336256000]: irc connected remote server from 192.168.1.101:42954 2008.02.08 19:35:15 LOG7[11904:2336256000]: Remote FD=10 initialized 2008.02.08 19:35:15 LOG7[11904:2336256000]: TCP_NODELAY option set on remote socket 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): before/connect initialization 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 write client hello A 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 read server hello A 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 read server certificate A 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 read server done A 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 write client key exchange A 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 write change cipher spec A 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 write finished A 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 flush data 2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL state (connect): SSLv3 read finished A 2008.02.08 19:35:15 LOG7[11904:2336256000]: 1 items in the session cache 2008.02.08 19:35:15 LOG7[11904:2336256000]: 1 client connects (SSL_connect()) 2008.02.08 19:35:15 LOG7[11904:2336256000]: 1 client connects that finished 2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 client renegotiations requested 2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 server connects (SSL_accept()) 2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 server connects that finished 2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 server renegotiations requested 2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 session cache hits 2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 session cache misses 2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 session cache timeouts 2008.02.08 19:35:15 LOG6[11904:2336256000]: SSL connected: new session negotiated 2008.02.08 19:35:15 LOG6[11904:2336256000]: Negotiated ciphers: AES256-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1 2008.02.08 19:35:15 LOG3[11904:2336256000]: SSL_read: Connection reset by peer (54) 2008.02.08 19:35:15 LOG5[11904:2336256000]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2008.02.08 19:35:15 LOG7[11904:2336256000]: irc finished (0 left) What is going on here with "SSL_read: Connection reset by peer (54)"? This process keeps repeating itself without the ircd's linking. - S ------=_NextPart_000_0016_01C86AE2.5B3A9C20 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable <html xmlns:v=3D"urn:schemas-microsoft-com:vml" = xmlns:o=3D"urn:schemas-microsoft-com:office:office" = xmlns:w=3D"urn:schemas-microsoft-com:office:word" = xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" = xmlns=3D"http://www.w3.org/TR/REC-html40"> <head> <meta http-equiv=3DContent-Type content=3D"text/html; = charset=3Dus-ascii"> <meta name=3DGenerator content=3D"Microsoft Word 12 (filtered medium)"> <style> <!-- /* Font Definitions */ @font-face {font-family:Wingdings; panose-1:5 0 0 0 0 0 0 0 0 0;} @font-face {font-family:Wingdings; panose-1:5 0 0 0 0 0 0 0 0 0;} @font-face {font-family:Calibri; panose-1:2 15 5 2 2 2 4 3 2 4;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {margin:0cm; margin-bottom:.0001pt; font-size:11.0pt; font-family:"Calibri","sans-serif";} a:link, span.MsoHyperlink {mso-style-priority:99; color:blue; text-decoration:underline;} a:visited, span.MsoHyperlinkFollowed {mso-style-priority:99; color:purple; text-decoration:underline;} p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph {mso-style-priority:34; margin-top:0cm; margin-right:0cm; margin-bottom:0cm; margin-left:36.0pt; margin-bottom:.0001pt; font-size:11.0pt; font-family:"Calibri","sans-serif";} span.EmailStyle17 {mso-style-type:personal-compose; font-family:"Calibri","sans-serif"; color:windowtext;} ..MsoChpDefault {mso-style-type:export-only;} @page Section1 {size:612.0pt 792.0pt; margin:72.0pt 72.0pt 72.0pt 72.0pt;} div.Section1 {page:Section1;} /* List Definitions */ @list l0 {mso-list-id:756247635; mso-list-type:hybrid; mso-list-template-ids:1359493502 -1169624564 67698691 67698693 67698689 = 67698691 67698693 67698689 67698691 67698693;} @list l0:level1 {mso-level-start-at:2008; mso-level-number-format:bullet; mso-level-text:-; mso-level-tab-stop:none; mso-level-number-position:left; text-indent:-18.0pt; font-family:"Calibri","sans-serif"; mso-fareast-font-family:Calibri; mso-bidi-font-family:"Times New Roman";} ol {margin-bottom:0cm;} ul {margin-bottom:0cm;} --> </style> <!--[if gte mso 9]><xml> <o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" /> </xml><![endif]--><!--[if gte mso 9]><xml> <o:shapelayout v:ext=3D"edit"> <o:idmap v:ext=3D"edit" data=3D"1" /> </o:shapelayout></xml><![endif]--> </head> <body lang=3DEN-US link=3Dblue vlink=3Dpurple> <div class=3DSection1> <p class=3DMsoNormal>Hi,<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>I’m running Hybrid-7.2 on two PCs, one of = which has a dynamic IP, as Hybrid wants a static IP and not hostname in its connect section, = we are trying to use stunnel to encrypt server<->server = communication.<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>Server 1 specs (To which I’m connecting) = running FreeBSD 6.3:<o:p></o:p></p> <p = class=3DMsoNormal>******************************** ***************<o:p></o= :p></p> <p class=3DMsoNormal>#stunnel -version<o:p></o:p></p> <p class=3DMsoNormal>stunnel 4.05 on amd64-unknown-freebsd5.3 = PTHREAD+LIBWRAP with OpenSSL 0.9.7e 25 Oct 2004<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>Global options<o:p></o:p></p> <p = class=3DMsoNormal>cert &nbs p; &nb= sp; =3D /usr/local/etc/stunnel/stunnel.pem<o:p></o:p></p> <p = class=3DMsoNormal>ciphers & nbsp; = =3D ALL:!ADH:+RC4:@STRENGTH<o:p></o:p></p> <p = class=3DMsoNormal>debug &nb sp; &n= bsp; =3D 5<o:p></o:p></p> <p = class=3DMsoNormal>key   ; &nbs= p; =3D /usr/local/etc/stunnel/stunnel.pem<o:p></o:p></p> <p = class=3DMsoNormal>pid   ; &nbs= p; =3D /var/tmp/stunnel.pid<o:p></o:p></p> <p class=3DMsoNormal>RNDbytes = =3D 64<o:p></o:p></p> <p = class=3DMsoNormal>RNDfile & nbsp; = =3D /dev/urandom<o:p></o:p></p> <p class=3DMsoNormal>RNDoverwrite =3D = yes<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>#gcc –v<o:p></o:p></p> <p class=3DMsoNormal>Using built-in specs.<o:p></o:p></p> <p class=3DMsoNormal>Configured with: FreeBSD/amd64 system = compiler<o:p></o:p></p> <p class=3DMsoNormal>Thread model: posix<o:p></o:p></p> <p class=3DMsoNormal>gcc version 3.4.6 [FreeBSD] 20060305<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>#uname <o:p></o:p></p> <p class=3DMsoNormal>FreeBSD 6.3-STABLE FreeBSD 6.3-STABLE #6: Tue Jan = 22 13:23:51 GMT 2008<o:p></o:p></p> <p class=3DMsoNormal>root@:/usr/obj/usr/src/sys/SVR1 = amd64<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>Server 2 specs (From which I’m connecting via = stunnel as a client) running OpenBSD 4.2:<o:p></o:p></p> <p = class=3DMsoNormal>******************************** ***********************= ***********<o:p></o:p></p> <p class=3DMsoNormal>#stunnel -version<o:p></o:p></p> <p class=3DMsoNormal>stunnel 4.20 on i386-unknown-openbsd4.2 with = OpenSSL 0.9.7j 04 May 2006<o:p></o:p></p> <p class=3DMsoNormal>Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 = Auth:LIBWRAP<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>Global options<o:p></o:p></p> <p = class=3DMsoNormal>debug &nb sp; &n= bsp; =3D 5<o:p></o:p></p> <p = class=3DMsoNormal>pid   ; &nbs= p; =3D /usr/local/var/run/stunnel/stunnel.pid<o:p></o:p></p> <p class=3DMsoNormal>RNDbytes = =3D 64<o:p></o:p></p> <p = class=3DMsoNormal>RNDfile & nbsp; = =3D /dev/arandom<o:p></o:p></p> <p class=3DMsoNormal>RNDoverwrite =3D = yes<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>Service-level options<o:p></o:p></p> <p = class=3DMsoNormal>cert &nbs p; &nb= sp; =3D /etc/stunnel/stunnel.pem<o:p></o:p></p> <p = class=3DMsoNormal>ciphers & nbsp; = =3D ALL:!ADH:+RC4:@STRENGTH<o:p></o:p></p> <p = class=3DMsoNormal>key   ; &nbs= p; =3D /etc/stunnel/stunnel.pem<o:p></o:p></p> <p = class=3DMsoNormal>session & nbsp; = =3D 300 seconds<o:p></o:p></p> <p class=3DMsoNormal>sslVersion &nbs p; =3D SSLv3 = for client, all for server<o:p></o:p></p> <p class=3DMsoNormal>TIMEOUTbusy &nb sp; =3D 300 = seconds<o:p></o:p></p> <p class=3DMsoNormal>TIMEOUTclose =3D 60 = seconds<o:p></o:p></p> <p class=3DMsoNormal>TIMEOUTconnect =3D 10 seconds<o:p></o:p></p> <p class=3DMsoNormal>TIMEOUTidle &nb sp; =3D 43200 = seconds<o:p></o:p></p> <p = class=3DMsoNormal>verify &n bsp; &= nbsp; =3D none<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal># gcc -v<o:p></o:p></p> <p class=3DMsoNormal>Reading specs from /usr/lib/gcc-lib/i386-unknown-openbsd4.2/3.3.5/specs<o:p></o:p></p> <p class=3DMsoNormal>Configured with:<o:p></o:p></p> <p class=3DMsoNormal>Thread model: single<o:p></o:p></p> <p class=3DMsoNormal>gcc version 3.3.5 (propolice)<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal># cat stunnel.conf:<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>cert =3D = /etc/ssl/private/stunnel.pem<o:p></o:p></p> <p class=3DMsoNormal>key =3D /etc/ssl/private/rsa.key<o:p></o:p></p> <p class=3DMsoNormal>setuid =3D _stunnel<o:p></o:p></p> <p class=3DMsoNormal>setgid =3D _stunnel<o:p></o:p></p> <p class=3DMsoNormal>pid =3D /var/run/stunnel.pid<o:p></o:p></p> <p class=3DMsoNormal>socket =3D l:TCP_NODELAY=3D1<o:p></o:p></p> <p class=3DMsoNormal>socket =3D r:TCP_NODELAY=3D1<o:p></o:p></p> <p class=3DMsoNormal>debug =3D 7<o:p></o:p></p> <p class=3DMsoNormal>foreground =3D yes<o:p></o:p></p> <p class=3DMsoNormal>[irc]<o:p></o:p></p> <p class=3DMsoNormal>client =3D yes<o:p></o:p></p> <p class=3DMsoNormal>accept =3D localhost:994<o:p></o:p></p> <p class=3DMsoNormal>connect =3D xxx.xxx.xxx.xxx:994<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>Here’s the debug logged to = stderr:<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal># stunnel<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: Snagged = 64 random bytes from /dev/arandom<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: = RAND_status claims sufficient entropy for the PRNG<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: PRNG = seeded successfully<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: = Certificate: /etc/ssl/private/stunnel.pem<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: = Certificate loaded<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: Key = file: /etc/ssl/private/rsa.key<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: Private = key loaded<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: SSL = context initialized for service irc<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG5[11904:2237644800]: stunnel = 4.20 on i386-unknown-openbsd4.2 with OpenSSL 0.9.7j 04 May 2006<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG5[11904:2237644800]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 = Auth:LIBWRAP<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG6[11904:2237644800]: file = ulimit =3D 128 (can be changed with 'ulimit -n')<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG6[11904:2237644800]: poll() = used - no FD_SETSIZE limit for file descriptors<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG5[11904:2237644800]: 61 = clients allowed<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: FD 6 in non-blocking mode<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: FD 7 in non-blocking mode<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: FD 8 in non-blocking mode<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: = SO_REUSEADDR option set on accept socket<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: irc = bound to 127.0.0.1:994<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:34:54 LOG7[11904:2237644800]: Created = pid file /var/run/stunnel.pid<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2237644800]: irc = accepted FD=3D9 from 127.0.0.1:8579<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: irc = started<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 9 in non-blocking mode<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: = TCP_NODELAY option set on local socket<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 10 = in non-blocking mode<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 11 = in non-blocking mode<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: = Connection from 127.0.0.1:8579 permitted by libwrap<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG5[11904:2336256000]: irc = accepted connection from 127.0.0.1:8579<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: FD 10 = in non-blocking mode<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: irc = connecting 69.50.175.50:994<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: = connect_wait: waiting 10 seconds<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2237644800]: = Cleaning up the signal pipe<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG6[11904:2237644800]: Child = process 26562 finished with code 0<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: = connect_wait: connected<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG5[11904:2336256000]: irc = connected remote server from 192.168.1.101:42954<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: Remote = FD=3D10 initialized<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: = TCP_NODELAY option set on remote socket<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): before/connect initialization<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 write client hello A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 read server hello A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 read server certificate A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 read server done A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 write client key exchange A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 write change cipher spec A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 write finished A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 flush data<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: SSL = state (connect): SSLv3 read finished A<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 1 items in the session = cache<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 1 client connects = (SSL_connect())<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 1 client connects that = finished<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 client renegotiations = requested<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 server connects = (SSL_accept())<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 server connects that = finished<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 server renegotiations = requested<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 session cache = hits<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: = 0 session cache misses<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: 0 session cache = timeouts<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG6[11904:2336256000]: SSL = connected: new session negotiated<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG6[11904:2336256000]: = Negotiated ciphers: AES256-SHA SSLv3 Kx=3DRSA Au=3DRSA Enc=3DAES(256) = Mac=3DSHA1<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG3[11904:2336256000]: = SSL_read: Connection reset by peer (54)<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG5[11904:2336256000]: = Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket<o:p></o:p></p> <p class=3DMsoNormal>2008.02.08 19:35:15 LOG7[11904:2336256000]: irc = finished (0 left)<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>What is going on here with “SSL_read: = Connection reset by peer (54)”?<o:p></o:p></p> <p class=3DMsoNormal>This process keeps repeating itself without the = ircd’s linking.<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoListParagraph style=3D'text-indent:-18.0pt;mso-list:l0 = level1 lfo1'><![if !supportLists]><span style=3D'mso-list:Ignore'>-<span style=3D'font:7.0pt "Times New = Roman"'> </span></span><![endif]>S<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> </div> </body> </html> ------=_NextPart_000_0016_01C86AE2.5B3A9C20-- --===============1184924346== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ stunnel-users mailing list stunnel-users@mirt.net http://stunnel.mirt.net/mailman/listinfo/stunnel-users --===============1184924346==-- 
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT +1. The time now is 01:40 PM.
