<div dir="ltr"><div dir="ltr"><div>Hi,</div><div>What Putty does most probably is not just a ssh connection, but a redirection like LocalForward, too.</div><div><br></div><div>Here, you only try to connect from the client to the server on port 22, which is the one used by ssh server, and not the port of the database.</div><div><br></div><div>You may try to connect directly to the db port if it's supported. Otherwise, you may setup two stunnel services, one client and one server.</div><div><br></div><div>Regards,</div><div>Flo<br></div></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Tue, Feb 26, 2019 at 9:14 AM Eetu Pikkarainen <<a href="mailto:eetu.pikkarainen@oulu.fi">eetu.pikkarainen@oulu.fi</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hi,<br>
I am a totally newbie with this. We have intranet system in Windows Server (32bit) which reads a database (Oracle) situated in Unix machine via a tunnel made by Putty.exe. That works well except that the connection gets lost every now and then and it must be manually logged in every time. So I decided to try stunnel which we used earlier to read email from email server. <br>
However I cannot set the connection successfully. This is what I have tried now (among many other alternatives):<br>
<br>
[Kanto2]<br>
client = yes<br>
accept = <a href="http://127.0.0.1:1501" rel="noreferrer" target="_blank">127.0.0.1:1501</a><br>
connect = <a href="http://kanto2.oulu.fi:22" rel="noreferrer" target="_blank">kanto2.oulu.fi:22</a><br>
protocolUsername = <username><br>
protocolPassword = <password><br>
<br>
stunnel reads the configuration OK except this notification:<br>
<br>
[:] Service [Kanto2] needs authentication to prevent MITM attacks<br>
<br>
but when the database is tried to read happens this:<br>
<br>
2019.02.18 13:32:30 LOG5[1]: Service [Kanto2] accepted connection from <a href="http://127.0.0.1:64699" rel="noreferrer" target="_blank">127.0.0.1:64699</a><br>
2019.02.18 13:32:30 LOG5[1]: s_connect: connected <a href="http://130.231.240.100:22" rel="noreferrer" target="_blank">130.231.240.100:22</a><br>
2019.02.18 13:32:30 LOG5[1]: Service [Kanto2] connected remote server from <a href="http://130.231.241.250:64700" rel="noreferrer" target="_blank">130.231.241.250:64700</a><br>
2019.02.18 13:32:30 LOG3[1]: SSL_connect: 140770FC: error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol<br>
2019.02.18 13:32:30 LOG5[1]: Connection reset: 0 byte(s) sent to TLS, 0 byte(s) sent to socket<br>
<br>
I have tried different protocol alternatives with no help.<br>
What could be the problem? Is this kind of use even possible?<br>
<br>
<br>
<br>
<br>
thanks<br>
<br>
Eetu Pikkarainen<br>
PhD (Ed.), (Title of) Adjunct Prof., University Lecturer (in Education) Faculty of Education, University of Oulu, Finland Research Group: <a href="https://wiki.oulu.fi/display/theored" rel="noreferrer" target="_blank">https://wiki.oulu.fi/display/theored</a><br>
<br>
Latest publications:<br>
<br>
Semiotic Theory of Learning: New Perspectives in the Philosophy of Education.<br>
By Andrew Stables, Winfried Nöth, Alin Olteanu, Sébastien Pesce and Eetu Pikkarainen<br>
<a href="https://www.taylorfrancis.com/books/e/9781351725170" rel="noreferrer" target="_blank">https://www.taylorfrancis.com/books/e/9781351725170</a><br>
<br>
Schools in Transition: Linking Past, Present, and Future in Educational Practice.<br>
Edited by Pauli Siljander, Kimmo Kontio and Eetu Pikkarainen<br>
<a href="https://www.sensepublishers.com/catalogs/bookseries/other-books/schools-in-transition/" rel="noreferrer" target="_blank">https://www.sensepublishers.com/catalogs/bookseries/other-books/schools-in-transition/</a> <br>
<br>
_______________________________________________<br>
stunnel-users mailing list<br>
<a href="mailto:stunnel-users@stunnel.org" target="_blank">stunnel-users@stunnel.org</a><br>
<a href="https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users" rel="noreferrer" target="_blank">https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users</a><br>
</blockquote></div>