I'm sorry, if my previous mail explained the problem differently.
Stunnel does load balancing when multiple connect statements are specified in a section as in the below mail.
The scenario is something like http://mirt.net/pipermail/stunnel-users/2006-May/001139.html and explained below
N servers each running a service of the same service-program (e.g: ip1:2345, ip2:2345, ... ipN:2345) A management server running on a different server (ipM:6789) is required to connect to all or a subset of the above servers through stunnel based on the user request.
I couldn't find this feature supported by stunnel in the man page.
I would appreciate if you provide any information on this.
Thanks, Narendra.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Narendra Prasad Madanapalli wrote:
connect = ip1:5678,ip2:5678,ip3:5678,...ipn:5678
Anyone can please let me know the steps to configure the stunnel if the support is already in place or provide your thoughts on the new support?
Use multiple "connect" options within a single section: connect = ip1:5678 connect = ip2:5678 connect = ip3:5678 ... connect = ipn:5678
Reading The Fine Manual would answer your question. It's not that hard to read the manual for "connect" before proposing any extensions for this option.
Thanks, Narendra.
Narendra Prasad Madanapalli wrote:
N servers each running a service of the same service-program (e.g: ip1:2345, ip2:2345, ... ipN:2345) A management server running on a different server (ipM:6789) is required to connect to all or a subset of the above servers through stunnel based on the user request.
Don't shoot the messenger, but I have some bad news for you. A TCP connection (and subsequently an SSL/TLS connection) has exactly two endpoints. You cannot have a connection between a client and "all or a subset" of servers.
It looks like you need someone to design a protocol for your specific needs. Such a strange protocol is extremely unlikely to get implemented in the official stunnel.
Fortunately stunnel is a free software, so you are free to add whatever features you need, or hire someone to do it for you.
Mike
-
Michal Trojnara -
Narendra Prasad Madanapalli