Hi I am running stunnel on my local pc win10.
Trying to stunnel to https://api.interactsms.com/HTTP_API/V1/sendmessage.aspx?user=User1&pass... Password1&api_id=9876&to=353879999999&text=HelloWorld&from=YourCompany
which gives me wrong user name and password which is fine.
if I Stunnel this
http://localhost:8083/HTTP_API/V1/sendmessage.aspx?user=User1&password=P...
I get
Misdirected Request
The client needs a new connection for this request as the requested host name does not match the Server Name Indication (SNI) in use for this connection.
Is this a problem with the site or my Stunnel config? when I installed Stunnel, I used localhost for the CN.
I have tried downloading the client, intermediate and CA cert with the below config... ;cert = D:\Program Files (x86)\stunnel\config\sms\interactsms-com.pem ;CAfile= D:\Program Files (x86)\stunnel\config\sms\godaddyca.pem
this is current config... [sms] client = yes accept = 8083 connect = api.interactsms.com:443 cert = D:\Program Files (x86)\stunnel\config\stunnel.pem
Hi,
this has nothing to do with any certificates. Don't know, what you are trying to do. It looks like, that you try to use stunnel in the reverse way, removing tls encryption from the connection, so that you can talk plain http. That works without any certificates, as the certificates are part of the server configuration and you get no error from stunnel about broken cert-paths or whatsoever. You are getting an error from the remote application, and that is, because you are opening a HTTP connection, which will do an GET Request with certain Headers. One of those headers is for sure: HOST:localhost:8083 Some other headers may tell, that the request was issued as http, depends on the browser used.
The remote application tells you, that you are talking to the wrong server!
.f
Sicher versendet mit Proton Mail.
d.arlo.421642@gmail.com d.arlo.421642@gmail.com schrieb am Mittwoch, 31. Juli 2024 um 10:33 nachm.:
Hi I am running stunnel on my local pc win10.
Trying to stunnel to https://api.interactsms.com/HTTP_API/V1/sendmessage.aspx?user=User1&pass... Password1&api_id=9876&to=353879999999&text=HelloWorld&from=YourCompany
which gives me wrong user name and password which is fine.
if I Stunnel this
http://localhost:8083/HTTP_API/V1/sendmessage.aspx?user=User1&password=P...
I get
Misdirected Request
The client needs a new connection for this request as the requested host name does not match the Server Name Indication (SNI) in use for this connection.
Is this a problem with the site or my Stunnel config? when I installed Stunnel, I used localhost for the CN.
I have tried downloading the client, intermediate and CA cert with the below config... ;cert = D:\Program Files (x86)\stunnel\config\sms\interactsms-com.pem ;CAfile= D:\Program Files (x86)\stunnel\config\sms\godaddyca.pem
this is current config... [sms] client = yes accept = 8083 connect = api.interactsms.com:443 cert = D:\Program Files (x86)\stunnel\config\stunnel.pem _______________________________________________ stunnel-users mailing list -- stunnel-users@stunnel.org To unsubscribe send an email to stunnel-users-leave@stunnel.org
Thank you. We have a software that can send to http only. I thought I could use stunnel to bridge this gap then lift it from http to https traffic. Can stunnel do this? We don't own the destination so can't get destination private key. Alternatively I think I need reverse proxy such as haproxy?
Hi, Yes. Stunnel can do this, but in this case I don't think it will solve your problem. The issue is in the destination server and as far as I know in this case it can be circumvented from the client. If I understand well, this is caused by the fact that the server has a wildcard certificate with multiple vhosts configured with mismatched SSL settings. Anyway, I understand all you need is to be able to send SMSs using the application the site web service. This can be easily achieved using curl from the command line or a small utility can be developed using libcurl. I have done this before and is my recommendation in this case. curl is included in windows. You can try this: curl -v "https://api.interactsms.com/HTTP_API/V1/sendmessage.aspx?user=User1&pass..."
You can read about the issue here: mod_http2 - Apache HTTP Server Version 2.4
| | | | mod_http2 - Apache HTTP Server Version 2.4
|
|
|
How to Solve Frustrating 421 Misdirected Request Errors Forever
| | | | | |
|
| | | | How to Solve Frustrating 421 Misdirected Request Errors Forever
In which we run into a mysterious "421 Misdirected Request" error and run down some possible solutions for you. |
|
|
Regards,Jose
On Wednesday, August 7, 2024 at 06:36:46 AM GMT-5, d.arlo.421642@gmail.com wrote:
Thank you. We have a software that can send to http only. I thought I could use stunnel to bridge this gap then lift it from http to https traffic. Can stunnel do this? We don't own the destination so can't get destination private key. Alternatively I think I need reverse proxy such as haproxy? _______________________________________________ stunnel-users mailing list -- stunnel-users@stunnel.org To unsubscribe send an email to stunnel-users-leave@stunnel.org
-
d.arlo.421642@gmail.com -
ftsanetamot -
Jose Alf.