[stunnel-users] Connection Refused locally, SSL Proxy.
Avner Peled
avnerus at gmail.com
Fri Feb 1 21:21:06 CET 2008
Hello!
I have a game client connecting to a server using TCP over SSL.
I'm trying to setup an SSL proxy using 2 stunnels on the same server like
so:
Client --> Stunnel-Server:20001 (decrypt)--> Stunnel-Client:901
(encrypt)---> Server:20001
Using latest stunnel-4.21-r1 on Gentoo kernel 2.6.22-gentoo-r9
I have a weird problem.
The first connection after starting both stunnels works fine.
Afterwards every time the client tries to connect, it gets refused once.
Then it tries again and gets connected.
Then the next time it will once again get refused once and then connect.
I have looked at the logs and it seems the Stunnel server (the first) gets
Connection Refused from localhost:901.
Then it tries again and gets connected.
The Stunnel client (the second) doesn't even mention the first failing local
connection in the log.
I have provided the config files of both stunnels and a log with debug = 7
(server ip's are censored)
I have also tried the following config tweaks with no luck
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1
TIMEOUTclose = 0
retry = yes
Any help would be appreciated.
Thanks!!
--
Avner Peled.
avnerus at gmail.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20080201/cfa2ca1a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: client.conf
Type: application/octet-stream
Size: 123 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20080201/cfa2ca1a/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: client.log
Type: application/octet-stream
Size: 8387 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20080201/cfa2ca1a/attachment-0001.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: server.conf
Type: application/octet-stream
Size: 123 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20080201/cfa2ca1a/attachment-0002.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: server.log
Type: application/octet-stream
Size: 12347 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20080201/cfa2ca1a/attachment-0003.obj>
More information about the stunnel-users
mailing list