HI all,

 

There is a problem we have currently connecting tibco client to SFDC sever via TLS v1.2 and that’s solved by using stunnel in client mode. And the communication from SFDC client to tibco server applications w.r.t TLS V1.2 I am unable to solve using stunnel. Below is the configuration in stunnel in server end to divert the traffic from 8008 to 8009, can you help here with the logs is the stunnel configuration is correct or there any missed/need to alter.

 

[SFDC reverse proxy test]

debug=7

;client = yes

accept = 8008àport used by sfdc client to connect to TIBCO server

connect = localhost:8009 àTibco server that’s running

cert = stunnel.pem

2016.11.23 08:31:56 LOG7[118]: Service [SFDC reverse proxy test] started

2016.11.23 08:31:56 LOG7[118]: Option TCP_NODELAY set on local socket

2016.11.23 08:31:56 LOG5[118]: Service [SFDC reverse proxy test] accepted connection from 101.167.198.14:54477

2016.11.23 08:31:56 LOG6[118]: Peer certificate not required

2016.11.23 08:31:56 LOG7[118]: SSL state (accept): before/accept initialization

2016.11.23 08:31:56 LOG3[118]: SSL_accept: Peer suddenly disconnected

2016.11.23 08:31:56 LOG5[118]: Connection reset: 0 byte(s) sent to SSL, 0 byte(s) sent to socket

2016.11.23 08:31:56 LOG7[118]: Local descriptor (FD=696) closed

2016.11.23 08:31:56 LOG7[118]: Service [SFDC reverse proxy test] finished (0 left)

 

PFB the openssl snap shot looks odd

C:\Program Files (x86)\stunnel\bin>openssl s_client -connect localhost:8008 -prexit -showcerts

WARNING: can't open config file: /devel/win32/openssl/openssl.cnf

CONNECTED(0000016C)

 

Thanks and Regards,

Jothish

TIBCO TSD

Ph. : +91 44 39263958

Mobile : +91 9884040171

Support : +91 9962007110

OC : jothish.chokkalingam

Group mail:- Telstra.psm.tsd.tibco@accenture.com