<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:st1="urn:schemas-microsoft-com:office:smarttags" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 11 (filtered medium)">
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="place" downloadurl="http://www.5iantlavalamp.com/"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="Street"/>
<o:SmartTagType namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="address"/>
<!--[if !mso]>
<style>
st1\:*{behavior:url(#default#ieooui) }
</style>
<![endif]-->
<style>
<!--
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:Arial;
color:windowtext;}
@page Section1
{size:595.3pt 841.9pt;
margin:72.0pt 90.0pt 72.0pt 90.0pt;}
div.Section1
{page:Section1;}
-->
</style>
</head>
<body lang=EN-GB link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I have a problem perhaps someone can help me with.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I have setup Stunnel and OpenSSL on a Windows 2003
server. It is configured to accept data on TCP port 2000, decrypt it,
then pass it on to TCP port 8014. I have placed the certificates provided
for this in a directory and I have told STunnel where these certificates
are. The problem I am having is I can see the connection from port 2000
coming in to the system, but STunnel then does nothing before finally dropping
the connection.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>The version of STunnel and OpenSSL are (stunnel 4.15 on
x86-pc-mingw32-gnu with OpenSSL 0.9.7i 14 Oct 2005)<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I have the same setup at a different site on a different
server and it works fine.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>In the debug.log the following is output:<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG7[684:352]: MATSU_GPRS started<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG7[684:352]: FD 196 in non-blocking
mode<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG5[684:352]: MATSU_GPRS connected from
212.183.136.192:57511<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:02 LOG7[684:352]: SSL state (accept):
before/accept initialization<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:22 LOG3[684:352]: SSL_accept: Peer suddenly
disconnected<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:22 LOG5[684:352]: Connection reset: 0 bytes
sent to SSL, 0 bytes sent to socket<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>2007.01.09 13:41:22 LOG7[684:352]: MATSU_GPRS finished (0
left)<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I would normally expect to see details of the SSL connection
and the certificates being checked after the line 2007.01.09 13:41:02
LOG7[684:352]: SSL state (accept): before/accept initialization, but as you can
see it does nothing before dropping the connection after 20 seconds.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Does anyone know why this installation of STunnel does not
seem to be attempting to use the certificates provided?<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>I would be very grateful for any advice.<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>P.S. Do I need to have a Certifcate Authority server setup
at the site in order for STunnel to work?<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p> </o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>Paul Morrison<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>IT Support Specialist<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>TS3 Services Ltd<o:p></o:p></span></font></p>
<p class=MsoNormal><st1:Street w:st="on"><st1:address w:st="on"><font size=1
face="Times New Roman"><span style='font-size:8.0pt'>Castle Court</span></font></st1:address></st1:Street><font
size=1><span style='font-size:8.0pt'>, Carnegie Campus<o:p></o:p></span></font></p>
<p class=MsoNormal><st1:place w:st="on"><font size=1 face="Times New Roman"><span
style='font-size:8.0pt'>Dunfermline</span></font></st1:place><font size=1><span
style='font-size:8.0pt'><o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>KY11 8PB<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'> <o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>TEL: 01383 629900<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>Mob: 07918078864<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=1 face="Times New Roman"><span style='font-size:
8.0pt'>EMAIL: <a href="BLOCKED::mailto:Paul.Morrison@ts3services.co.uk"
title="mailto:Paul.Morrison@ts3services.co.uk">Paul.Morrison@ts3services.co.uk</a></span></font><font
size=1><span style='font-size:8.0pt'><o:p></o:p></span></font></p>
<p class=MsoNormal><font size=3 face="Times New Roman"><span style='font-size:
12.0pt'><o:p> </o:p></span></font></p>
</div>
</body>
</html>