How to use 'stunnel' in client mode to accept connections on pty from local programs like 'ppp' instead of 'accept=IP:PORT'?
'pty = yes' seems work in server mode only, so when I removed 'accept = 127.0.0.1:1723' from 'stunnel' client config I'm getting the error:
[!] Service [ppp]: Each service must define two endpoints on stunnel-5.44
I need to call 'stunnel' client from 'pppd' and communicate with 'stunnel' using pty if it was possible by using a command:
pppd /dev/ptyp3 10.0.1.2: local debug noauth passive noccp novj novjccomp nopcomp noaccomp name ppp-client connect 'stunnel /etc/stunnel/stunnel-client.conf'
Both 'pppd' and 'stunnel' started by executing the command above, but 'pppd' can't communicate to 'stunnel' server using pty.
Please advice.
[ppp] client = yes accept = [127.0.0.1:1723 ](http://127.0.0.1:1723) ^^^^^^^^^^^^^^^^^^^^^^^ connect = STUNNEL-SERVER-IP:723 CAfile = /etc/stunnel/ca.crt cert = /etc/stunnel/client.crt key = /etc/stunnel/client.key verifyChain = yes checkHost = hostna.me ;checkIP = 1.2.3.4
Hi Martin,
What you need is an exec+connect section:
[ppp] client = yes pty = yes retry = yes exec = /usr/sbin/pppd execargs = pppd <your parameters> connect = STUNNEL-SERVER-IP:723 CAfile = /etc/stunnel/ca.crt cert = /etc/stunnel/client.crt key = /etc/stunnel/client.key verifyChain = yes checkHost = hostna.me http://hostna.me
See the manual for documentation of the new options (pty, retry, exec, execargs).
Best regards, Mike
On 17.04.2019 18:43, Martin Got wrote:
How to use 'stunnel' in client mode to accept connections on pty from local programs like 'ppp' instead of 'accept=IP:PORT'?
'pty = yes' seems work in server mode only, so when I removed 'accept = 127.0.0.1:1723 http://127.0.0.1:1723' from 'stunnel' client config I'm getting the error:
[!] Service [ppp]: Each service must define two endpoints on stunnel-5.44
I need to call 'stunnel' client from 'pppd' and communicate with 'stunnel' using pty if it was possible by using a command:
pppd /dev/ptyp3 10.0.1.2: local debug noauth passive noccp novj novjccomp nopcomp noaccomp name ppp-client connect 'stunnel /etc/stunnel/stunnel-client.conf'
Both 'pppd' and 'stunnel' started by executing the command above, but 'pppd' can't communicate to 'stunnel' server using pty.
Please advice.
[ppp] client = yes accept = 127.0.0.1:1723 http://127.0.0.1:1723 ^^^^^^^^^^^^^^^^^^^^^^^ connect = STUNNEL-SERVER-IP:723 CAfile = /etc/stunnel/ca.crt cert = /etc/stunnel/client.crt key = /etc/stunnel/client.key verifyChain = yes checkHost = hostna.me http://hostna.me ;checkIP = 1.2.3.4
stunnel-users mailing list stunnel-users@stunnel.org https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users
-
Martin Got -
Michal Trojnara