Hi

Can you help in sorting it out below scenario

We have a URL whose TLS is 1.0 and now it is being upgraded to 1.2. Since the current application doesn’t support V1.0 I am planning to use stunnel in between to fix the gap. Can you help if my below config is correct or not. The communication between client and server is MASSL(mutual authentication SSL)

 

[Billpay46200]

client = yes

CApath = /apps/bss/CCBTrustStoreàtrust store where the remote webservice certificates are stored in cert format

accept = 46200àport configured from client machine to connect using http

connect =  xxx.in.xxx.com.au:46200àport where the incoming http request need to be changed from http to https

cert = /stunnel/bin/client.pemàidentity certificate used for client

key = /stunnel/bin/key.pemàcorresponding key for the above identity certificate.

While hitting using the URL http://localhost:46200 it is shown in stunnel log as below

2017.04.28 17:17:51 LOG5[2627:3]: Billpay46200 accepted connection from 127.0.0.1:58382

2017.04.28 17:17:51 LOG5[2627:3]: Billpay46200 connected remote server from 10.116.194.24:58383

2017.04.28 17:17:51 LOG3[2627:3]: SSL_connect: Peer suddenly disconnected

2017.04.28 17:17:51 LOG5[2627:3]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket