Re-6: [stunnel-users] Problem with mysql - stunnel-users

22 Jul 2005


      Nobody has an idea??
I don't know how to resolve my problem, and i don't know where i should serach in order to resolve it...
Could you help me please??
Is "-disable-libwrap" the problem? or should it work without libwrap?
Thanks a lot!
-------- Original Message --------
Subject: Re-5: [stunnel-users] Problem with mysql (21-juil.-2005 10:00)
From:    lmarcilly@aressi.fr
To:      lmarcilly@aressi.fr
...
Sorry, i doesn't look in the good stunnel.log, there is a SIGTERM because i 
stop the box!
So here is my stunnel.log :
2005.07.21 11:48:25 LOG5[230:1]: stunnel 4.11 on i686-pc-linux-gnu UCONTEXT+
POLL+IPv4 with OpenSSL 0.9.7g 11 Apr 2005
2005.07.21 11:48:26 LOG7[230:1]: RAND_status claims sufficient entropy for 
the PRNG
2005.07.21 11:48:26 LOG6[230:1]: PRNG seeded successfully
2005.07.21 11:48:26 LOG6[230:1]: file ulimit = 1024 (can be changed with '
ulimit -n')
2005.07.21 11:48:26 LOG6[230:1]: poll() used - no FD_SETSIZE limit for file 
descriptors
2005.07.21 11:48:26 LOG5[230:1]: 500 clients allowed
2005.07.21 11:48:26 LOG7[230:1]: FD 4 in non-blocking mode
2005.07.21 11:48:26 LOG7[230:1]: FD 5 in non-blocking mode
2005.07.21 11:48:26 LOG7[230:1]: FD 6 in non-blocking mode
2005.07.21 11:48:26 LOG7[230:1]: SO_REUSEADDR option set on accept socket
2005.07.21 11:48:26 LOG7[230:1]: mysql bound to 127.0.0.1:3306
2005.07.21 11:48:26 LOG7[231:1]: Created pid file /stunnel.pid
So it seems to run properly but telnet 192.168.1.121 3306 ot telnet 
localhost 3306 doesn't work, i get a time out!
I will give you more informations :
stunnel-4.11 on an lfs system (Kernel 2.4.30 with the bridge patch and the 
SSP patch)
gcc -v :
Reading specs from /home/lmarcilly/lfs_install/build/usr/bin/../lib/gcc-lib/
i686-pc-linux-gnu/3.3.3/specs
Configured with: ../gcc-3.3.3/configure --prefix=/usr --enable-shared --
enable-threads=posix --enable-__cxa_atexit --enable-clocale=gnu --enable-
languages=c,c++ --disable-nls
Thread model: posix
gcc version 3.3.3
When compiling :
./configure --prefix=/usr --disable-libwrap
make
make install
stunnel.conf :
chroot = /usr/var/stunnel/
pid = /stunnel.pid
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1
debug = 7
output = /var/log/stunnel.log
client = yes
[mysql]
accept  = localhost:3306
connect = 192.168.1.104:3307
I've also tried with accept = 3306 and accept = 127.0.0.1:3306 but with no 
success...
I'm sorry but i have no idea and i don't know how resolve my problem so 
please help me...
Thanks in advance!
lm.
-------- Original Message --------
Subject: Re-4: [stunnel-users] Problem with mysql (21-juil.-2005 9:26)
From:    lmarcilly@aressi.fr
To:      lmarcilly@aressi.fr
...
I try :
mysql -h 192.168.1.121 --protocol=TCP -u user --password=xxx
and i get this message :
Can't connect to MySQL server on '192.168.1.121'
I also try :
telnet 192.168.1.121 3306
and i get :
telnet : Unable to connect to remote host : Connection timed out
Here is my stunnel.log :
2005.07.21 11:13:07 LOG5[2462:1]: stunnel 4.11 on i686-pc-linux-gnu 
UCONTEXT+POLL+IPv4 with OpenSSL 0.9.7g 11 Apr 2005
2005.07.21 11:13:07 LOG7[2462:1]: Snagged 64 random bytes from /root/.rnd
2005.07.21 11:13:07 LOG7[2462:1]: Wrote 1024 new random bytes to /root/.rnd
2005.07.21 11:13:07 LOG7[2462:1]: RAND_status claims sufficient entropy for
the PRNG
2005.07.21 11:13:07 LOG6[2462:1]: PRNG seeded successfully
2005.07.21 11:13:07 LOG6[2462:1]: file ulimit = 1024 (can be changed with '
ulimit -n')
2005.07.21 11:13:07 LOG6[2462:1]: poll() used - no FD_SETSIZE limit for 
file descriptors
2005.07.21 11:13:07 LOG5[2462:1]: 500 clients allowed
2005.07.21 11:13:07 LOG7[2462:1]: FD 4 in non-blocking mode
2005.07.21 11:13:07 LOG7[2462:1]: FD 5 in non-blocking mode
2005.07.21 11:13:07 LOG7[2462:1]: FD 6 in non-blocking mode
2005.07.21 11:13:07 LOG7[2462:1]: SO_REUSEADDR option set on accept socket
2005.07.21 11:13:07 LOG7[2462:1]: mysql bound to 127.0.0.1:3306
2005.07.21 11:13:07 LOG7[2463:1]: Created pid file /stunnel.pid
2005.07.21 11:15:58 LOG5[2463:0]: Received signal 15; terminating
2005.07.21 11:15:58 LOG7[2463:0]: removing pid file /stunnel.pid
And i think the last 2 lines are not normal!!
But how can i see from where come the SIGTERM ?? There is always a stunnel 
process but it doesn't work properly...
Any idea?
-------- Original Message --------
Subject: Re: Re-2: [stunnel-users] Problem with mysql (21-juil.-2005 9:13)
From:    bri@stunnel.org
To:      lmarcilly@aressi.fr
...
...
How to do this? I try with :
mysql --port=3306 --protocol=TCP -u user --password=xxx
but it won't work...
When i try telnet localhost 3306, i can't establish connection but i can on
my windows box... I also try to analyse traffic with tcpdump and there is 
no packet when i try with stunnel...
I've found in the past that mysql when pointing to localhost has
used the socket in spite of the arguments you put on the command line.
Try pointing to the ethernet IP address instead of 127.0.0.1 and
see if it's happy then.  You never know...
-- 
Brian Hatch                  "I've decided I'm not keen on
   Systems and                preterm labour."
   Security Engineer         "I'll write that down in our
http://www.ifokr.org/bri/     birthing plan..."
                             --Bree and Bri, in L&D.
Every message PGP signed
To: bri@stunnel.org
Cc: Michal.Trojnara@mobi-com.net
    stunnel-users@mirt.net

stunnel-users mailing list
stunnel-users@mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users
To: lmarcilly@aressi.fr
    bri@stunnel.org
Cc: stunnel-users@mirt.net
To: lmarcilly@aressi.fr
    bri@stunnel.org
Cc: stunnel-users@mirt.net