I am running the latest stunnel for Windows on 64-bit Win7 as an application, not as a service. I simply unzipped everything to one folder, configured the "stunnel.conf" file; and when I need to run the program, I can open a command prompt in its folder and type "stunnel stunnel.conf". It then reads my stunnel.conf file and works its magic. This works fine for capturing the data from those programs which I can configure to use localhost and a specific port because I can configure stunnel.conf with accept = ip.address:port
Now I have a program that I want to use to download some text files from the internet using http or https. However, this program cannot be manually configured to make a connection with a certain IP and port. Instead, I have to give it an alias-like name, which it then maps to one of several different domain names, makes a DNS query for the IP and transmits to that address the instructions for downloading some text files.
So, is it possible to have stunnel "capture" any and all http transports (port 80) or https transports (port 443) from a specific program, regardless of which IP that connection was destined for, so that I can then direct this data traffic from stunnel to socat or from stunnel to an http proxy which I can manually direct to a specific connection? Is this a kind of thing for which stunnel can be used? If so, where can I find the instructions for setting it up? Thanks.
Hi:
I may be wrong, but, what you are trying to do is...:
http downloader --> provide domain name (ssl) -> connect to stunnel -> download files
You can't provide an IP to the http downloader but you can provide an alias (aka domain name).
Then, when you need to download files through ssl (https), just provide a name configured in hosts file that resolves to local IP or the IP managed by stunnel in that machine (localhost, for example) to the http downloader.
Then, just edit the conf file to change the connect parameters (domain name to connect to) for the service you pretend to use inside stunnel and reload the conf file.
This results in:
http downloader --> name in hosts file pointing to IP used by stunnel --> connect to stunnel transparently --> stunnel brings ssl tunnel (sorry the obvious) to http downloader to download files.
Shouldn't be problems to provide full url to the http downloader.
Easier way? I don't kow. Maybe others can help. I don't know if there is a way to automate the change and reload of the conf file.
Regards.
"Javier" meresponde2001-stn@yahoo.es wrote in message news:20120719183130.717e9c7fbb53a9135793e674@yahoo.es...
Hi:
I may be wrong, but, what you are trying to do is...:
http downloader --> provide domain name (ssl) -> connect to stunnel -> download files
You can't provide an IP to the http downloader but you can provide an alias (aka domain name).
Then, when you need to download files through ssl (https), just provide a name configured in hosts file that resolves to local IP or the IP managed by stunnel in that machine (localhost, for example) to the http downloader.
Then, just edit the conf file to change the connect parameters (domain name to connect to) for the service you pretend to use inside stunnel and reload the conf file.
This results in:
http downloader --> name in hosts file pointing to IP used by stunnel --> connect to stunnel transparently --> stunnel brings ssl tunnel (sorry the obvious) to http downloader to download files.
Shouldn't be problems to provide full url to the http downloader.
Easier way? I don't kow. Maybe others can help. I don't know if there is a way to automate the change and reload of the conf file.
Hi, Javier. I did appreciate getting your reply. Yes, you were spot on with what I was trying to do. Your ingenious solution worked nicely as well. Thank you much.
-
Javier -
John