New subject: stunnel behind http proxy server, only working for port 443

8 Oct 2013


      Hi All,
I try to connect to my stunnel server, however, only port 443 is working.
For other ports are not working.
Does it mean my company's proxy server is blocking SSL communication on
all ports except 443? ( I am a newbie, just assuming stunnel always working
with SSL even for 80 port, if I am wrong please point me out, thank you)
Is there any other way to bypass the proxy server without SSL
communication? Or internal proxy server can always detect tunnel actions if
there is non-SSL protocol ?
below is my configuration file for client side.
/etc/stunnel/stunnel.conf
------------------START--------------------------
[https1]
accept = 80
protocol = connect
protocolAuthentication = basic
protocolHost = myvpsserver-ip:80
protocolUsername = myname
protocolPassword = p@ssw0rd
connect = company-proxyserver:8080
[https2]
accept = 443
protocol = connect
protocolAuthentication = basic
protocolHost = myvpsserver-ip:443
protocolUsername = myname
protocolPassword = p@ssw0rd
connect = company-proxyserver:8080
----------------------------END---------------------------------------------
---------------------------Tunnel PORT 80 -----------------------------
2013.10.08 14:18:43 LOG7[10601:3078687600]: TCP_NODELAY option set on
remote socket
2013.10.08 14:18:43 LOG5[10601:3078687600]: Negotiations for connect
(client side) started
2013.10.08 14:18:43 LOG7[10601:3078687600]:  -> CONNECT
my-remote-server-ip:80 HTTP/1.1
2013.10.08 14:18:43 LOG7[10601:3078687600]:  -> Host: my-remote-server-ip:80
2013.10.08 14:18:43 LOG7[10601:3078687600]:  -> Proxy-Authorization: basic
c3VoZW5nOlBAc3N3MHJk
2013.10.08 14:18:43 LOG7[10601:3078687600]:  ->
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <- HTTP/1.1 403 Forbidden
2013.10.08 14:18:43 LOG3[10601:3078687600]: CONNECT request rejected
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <- Cache-Control: no-cache
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <- Pragma: no-cache
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <- Content-Type: text/html;
charset=utf-8
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <- Proxy-Connection: close
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <- Connection: close
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <- Content-Length: 725
2013.10.08 14:18:43 LOG7[10601:3078687600]:  <-
2013.10.08 14:18:43 LOG5[10601:3078687600]: Connection reset: 0 bytes sent
to SSL, 0 bytes sent to socket
---------------------------Tunnel PORT 443 -----------------------------
2013.10.08 14:42:00 LOG7[10601:3078687600]: TCP_NODELAY option set on
remote socket
2013.10.08 14:42:00 LOG5[10601:3078687600]: Negotiations for connect
(client side) started
2013.10.08 14:42:00 LOG7[10601:3078687600]:  -> CONNECT
my-remote-server-ip:443 HTTP/1.1
2013.10.08 14:42:00 LOG7[10601:3078687600]:  -> Host:
my-remote-server-ip:443
2013.10.08 14:42:00 LOG7[10601:3078687600]:  -> Proxy-Authorization: basic
c3VoZW5nOlBAc3N3MHJk
2013.10.08 14:42:00 LOG7[10601:3078687600]:  ->
2013.10.08 14:42:00 LOG7[10601:3078687600]:  <- HTTP/1.1 200 Connection
established
2013.10.08 14:42:00 LOG6[10601:3078687600]: CONNECT request accepted
2013.10.08 14:42:00 LOG7[10601:3078687600]:  <-
2013.10.08 14:42:00 LOG5[10601:3078687600]: Protocol negotiations succeeded
-- 
Thanks & Best Regards,
Su Heng