Hi Shamun,

As per my knowledge, U should mention the service https instead of SSL ,as you want to add the support for HTTPS. Just make the following change in your stunnel.conf file.

pid = /stunnel.pid

cert=/etc/stunnel/abyhu.crt CAfile=/etc/stunnel/ abyhu.ca key=/etc/stunnel/abyhu.key

sslVersion = all ;socket = l:TCP_NODELAY=1 ;socket = r:TCP_NODELAY=1 client=no

debug = 7 output = /var/log/stunnel.log

[https] accept=443 connect=80 TIMEOUTclose = 0

Thanks, Krinali Shah

----- Original Message ----- From: "Shamun Toha Md" shamun@companysocia.com To: stunnel-users@stunnel.org Sent: Thursday, February 6, 2014 12:52:18 PM Subject: [stunnel-users] Stunnel - how to make Google App Engine HTTP into HTTPS ?

I have Google App Engine running in HTTP (port tcp 80), which is a daemon based service it execute back-end some python instances. Now all that works over HTTP , TCP 80, and Google App Engine itself do not have any kind of HTTPS setup, it has to be organized externally.

Therefore, the biggest problem is now that how can i use stunnel to resolve this problem please?

I have already tried following setup and it does not work at all.

1) if the user visit https://www.mysite.com then he hit stunnel accept=443 after that he is connected with connect=80 but user browser change into http:// instead of remaining in https:// . Which make the whole thing not working

$ uname -a Linux server2 2.6.32-358.23.2.el6.x86_64 #1 SMP Wed Oct 16 18:37:12 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux $ cat /etc/stunnel/stunnel.conf

pid = /stunnel.pid

cert=/etc/stunnel/abyhu.crt CAfile=/etc/stunnel/ abyhu.ca key=/etc/stunnel/abyhu.key

sslVersion = all ;socket = l:TCP_NODELAY=1 ;socket = r:TCP_NODELAY=1 client=no

debug = 7 output = /var/log/stunnel.log

[SSL] accept=443 connect=80 TIMEOUTclose = 0

My goal is: when user visit https://www.mysite.com it remain as https not become http:// then it is not solving the problem cause Google app engine do not have HTTPS

Thank you.

Best regards

--------------------------------------------------------------------------------------------- Notice: This message has been scanned by Trend Micro Mail Security scanner and is believed to be clean --------------------------------------------------------------------------------------------- _______________________________________________ stunnel-users mailing list stunnel-users@stunnel.org https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users

************************************************************************************************************************************************************* eInfochips Business Disclaimer : This e-mail message and all attachments transmitted with it are intended solely for the use of the addressee and may contain legally privileged and confidential information. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any dissemination, distribution, copying, or other use of this message or its attachments is strictly prohibited. If you have received this message in error, please notify the sender immediately by replying to this message and please delete it from your computer. Any views expressed in this message are those of the individual sender unless otherwise stated. Company has taken enough precautions to prevent the spread of viruses. However the company accepts no liability for any damage caused by any virus transmitted by this email. *************************************************************************************************************************************************************

--------------------------------------------------------------------------------------------- Notice: This message has been scanned by Trend Micro Mail Security scanner and is believed to be clean ---------------------------------------------------------------------------------------------

On Thu, Feb 06, 2014 at 08:22:18AM +0100, Shamun Toha Md wrote:

I have Google App Engine running in HTTP (port tcp 80), which is a daemon based service it execute back-end some python instances. Now all that works over HTTP , TCP 80, and Google App Engine itself do not have any kind of HTTPS setup, it has to be organized externally.

Therefore, the biggest problem is now that how can i use stunnel to resolve this problem please? I have already tried following setup and it does not work at all.

1. if the user visit https://www.mysite.com then he hit stunnel accept=443

after that he is connected with connect=80 but user browser change into http:// instead of remaining in https:// . Which make the whole thing not working

Is it possible that the site itself has some kind of redirections or links that actually specify http://servername/path? If so, stunnel cannot do anything about it - stunnel does not (and *should* not!) even try to modify the actual data stream that flows through it after the initial connection is established.

G'luck, Peter