<div dir="ltr">It was typo sorry. The settings on the server are: <div><br></div><div><div>[test]</div><div>accept = 2406</div><div>connect = 2404</div></div><div><br></div><div>and on the client:</div><div><br></div><div><div>[jdbc]</div><div>client = yes</div><div>accept = <a href="http://127.0.0.1:2404">127.0.0.1:2404</a></div><div>connect = my_server_name:2406</div></div><div><br></div><div><br></div><div>I'm trying to start the service on the server and it's not working: </div><div><br></div><div><br></div><div><div>/etc/init.d/stunnel start</div><div>Starting stunnel (SSL tunnel) startproc:  exit status of parent of /usr/sbin/stunnel: 1</div><div>  please see /var/log/rc.stunnel.log for details                                                                                                             failed</div></div><div><br></div><div><br></div><div>Regards,</div><div><br></div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Apr 9, 2015 at 5:04 PM, Carter Browne <span dir="ltr"><<a href="mailto:cbcs@comcast.net" target="_blank">cbcs@comcast.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
  
    
  
  <div bgcolor="#FFFFFF" text="#000000">
    In your before setting, your client should have  been to connect to
    your test server:<span class=""><br>
    <br>
    [jdbc]<br>
    client = yes<br>
    accept = <a href="http://127.0.0.1:2404" target="_blank">127.0.0.1:2404</a><br></span>
    connect=my_server_name:2404<br>
    <br>
    In your after setting, the accept and connect ports cannot be the
    same port.<div><div class="h5"><br>
    <br>
    <br>
    <br>
    <div>On 4/9/2015 10:51 AM, daninho dj wrote:<br>
    </div>
    <blockquote type="cite">
      <div dir="ltr">Hi Jose,
        <div><br>
        </div>
        <div>Thanks for mail. The problem is that when I change the
          accept port on the server, stunnel doesn't start:</div>
        <div><br>
        </div>
        <div><b>Before:</b></div>
        <div><br>
        </div>
        <div><u>Server:</u></div>
        <div><br>
        </div>
        <div>
          <div>[test]</div>
          <div>accept = 2404</div>
          <div>connect = 2406</div>
        </div>
        <div><br>
        </div>
        <div><u>Client:</u></div>
        <div><br>
        </div>
        <div>
          <div>[jdbc]</div>
          <div>client = yes</div>
          <div>accept = <a href="http://127.0.0.1:2404" target="_blank">127.0.0.1:2404</a></div>
          <div>connect = <i>my_server_name</i>:2406</div>
        </div>
        <div><br>
        </div>
        <div><b>After:</b></div>
        <div><br>
        </div>
        <div>I edited the stunnel.conf on the server:</div>
        <div><br>
        </div>
        <div>
          <div>[test]</div>
          <div>accept = 2406</div>
          <div>connect = 2406</div>
        </div>
        <div><br>
        </div>
        <div>Then trying to start the service:</div>
        <div><br>
        </div>
        <div>
          <div><b>/etc/init.d/stunnel start</b></div>
          <div><b>Starting stunnel (SSL tunnel) startproc:  exit status
              of parent of /usr/sbin/stunnel: 1</b></div>
          <div><b>  please see /var/log/rc.stunnel.log for details      
                                                                       
                                                          <font color="#ff0000">failed</font></b></div>
        </div>
        <div><br>
        </div>
        <div>/var/log/rc.stunnel.log is empty but in the log specified
          in the stunnel.conf I have the following:<br>
        </div>
        <div><br>
        </div>
        <div>
          <div>tail -10 /var/log/stunnel/stunnel.log</div>
          <div>2015.04.09 16:42:36 LOG5[22524:139805264570112]:
            Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP</div>
          <div>2015.04.09 16:42:36 LOG6[22524:139805264570112]: file
            ulimit = 262144 (can be changed with 'ulimit -n')</div>
          <div>2015.04.09 16:42:36 LOG6[22524:139805264570112]: poll()
            used - no FD_SETSIZE limit for file descriptors</div>
          <div>2015.04.09 16:42:36 LOG5[22524:139805264570112]: 128000
            clients allowed</div>
          <div>2015.04.09 16:42:36 LOG7[22524:139805264570112]: FD 10 in
            non-blocking mode</div>
          <div>2015.04.09 16:42:36 LOG7[22524:139805264570112]: FD 11 in
            non-blocking mode</div>
          <div>2015.04.09 16:42:36 LOG7[22524:139805264570112]: FD 12 in
            non-blocking mode</div>
          <div>2015.04.09 16:42:36 LOG7[22524:139805264570112]:
            SO_REUSEADDR option set on accept socket</div>
          <div>2015.04.09 16:42:36 LOG3[22524:139805264570112]: Error
            binding test to <a href="http://0.0.0.0:2406" target="_blank">0.0.0.0:2406</a></div>
          <div>2015.04.09 16:42:36 LOG3[22524:139805264570112]: bind:
            Address already in use (98)</div>
        </div>
        <div><br>
        </div>
        <div><br>
        </div>
        <div>Same thing happens when I try to change the ports on the
          client. Any idea how this problem can be solved? </div>
        <div><br>
        </div>
        <div>Thanks and regards,</div>
        <div>Daninho</div>
        <div><br>
        </div>
        <div><br>
        </div>
        <div><br>
        </div>
        <div><br>
        </div>
      </div>
      <div class="gmail_extra"><br>
        <div class="gmail_quote">On Thu, Apr 9, 2015 at 4:12 PM, <span dir="ltr"><<a href="mailto:josealf@rocketmail.com" target="_blank">josealf@rocketmail.com</a>></span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><br>
            The accept port on the server Config must be the same as the
            connect port on the client config.<br>
            The connect port on the server must be the port used by the
            application/service you try to secure, usually bound to the
            loopback interfase, as you probably don't want to allow
            unsecure connections.<br>
            On the client the accept port is the port your client
            application will connect to.<br>
            <br>
            Hope this helps to clarify a bit.<br>
            <br>
            Regards<br>
            <br>
            -----Original Message-----<br>
            From: daninho dj <<a href="mailto:daninho.dj@gmail.com" target="_blank">daninho.dj@gmail.com</a>><br>
            Sender: "stunnel-users" <<a href="mailto:stunnel-users-bounces@stunnel.org" target="_blank">stunnel-users-bounces@stunnel.org</a>><br>
            Date: Thu, 9 Apr 2015 14:28:25<br>
            To: <<a href="mailto:stunnel-users@stunnel.org" target="_blank">stunnel-users@stunnel.org</a>><br>
            Subject: [stunnel-users] Session is active but I cannot
            connect<br>
            <br>
            _______________________________________________<br>
            stunnel-users mailing list<br>
            <a href="mailto:stunnel-users@stunnel.org" target="_blank">stunnel-users@stunnel.org</a><br>
            <a href="https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users" target="_blank">https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users</a><br>
          </blockquote>
        </div>
        <br>
        <br clear="all">
        <div><br>
        </div>
        -- <br>
        <div><a href="http://daninhodj.com" target="_blank">daninho</a></div>
      </div>
      <br>
      <fieldset></fieldset>
      <br>
      <pre>_______________________________________________
stunnel-users mailing list
<a href="mailto:stunnel-users@stunnel.org" target="_blank">stunnel-users@stunnel.org</a>
<a href="https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users" target="_blank">https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users</a>
</pre>
    </blockquote>
    <br>
    </div></div><span class="HOEnZb"><font color="#888888"><pre cols="72">-- 
Carter Browne
<a href="mailto:cbrowne@cbcs-usa.com" target="_blank">cbrowne@cbcs-usa.com</a></pre>
  </font></span></div>

</blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature"><a href="http://daninhodj.com" target="_blank">daninho</a></div>
</div>