Yes you can have multiple clients connecting to a server service (AFAIK).  You'd just need to ensure that the server knows about all the cert for the clients to connect with.  

I think that means you need to specify all the public keys in a combined file or specify the CA folder.

I set mine up as separate services so I have fragment config files for each connecting client.  I felt it was more organised that way and I want to be able to remove a single client if I need to.

You suggested in your OP that the DB and web services are on the same box.  This doesn't seem to be something that I'd bother implementing stunnel for, given it's purpose is to encrypt traffic, your only encrypting on the same box with unencrypted traffic just going through stunnel on the same machine?  

Noted on this. So, it means there has to be one "server" and can have multiple clients (server) that will connect to it? Am I correct?

what we want to achieve is a one server one client communication.

example. we have an oracle db server and 4 web services. who would we setup stunnel on this?

_______________________________________________

stunnel-users mailing list -- stunnel-users@stunnel.org

To unsubscribe send an email to stunnel-users-leave@stunnel.org