[stunnel-users] Error Running STunnel in Windows Service Mode

Wed Oct 20 22:23:58 CEST 2010

  Hi,
In service mode, one has to remove the password protection from cert file.
It is typical when ones want to automate ssl sessions.
I think it is pointed out in some docs, but I do not remember where...

Pierre

Le 20/10/2010 22:13, Pathak, Apurva (Apu) a écrit :
>
> I forgot to mention one thing:
>
> The private key, in the config file "*carrier.key*" needs a Pass 
> phrase that I need to enter manually when I do "Run stunnel" which 
> does not pop up when I try to run STunnnel in Windows Service mode. 
> May be that is the problems -- it's looking for the pass phrase and 
> not able to start? Can I specify the passphrase some where in the 
> config file?
>
> Help would be appreciated.
>
> Regards,
>
> Apurva
>
> ------------------------------------------------------------------------
>
> *From:* Pathak, Apurva (Apu)
> *Sent:* Wednesday, October 20, 2010 11:01 AM
> *To:* stunnel-users at mirt.net
> *Cc:* 'Pierre DELAAGE'; Pathak, Apurva (Apu)
> *Subject:* Error Running STunnel in Windows Service Mode
>
> Hi All,
>
> I am having some issues running STunnel in Windows Service Mode.
>
> * *
>
> *I am running on Windows Server 2003, Service Pack 1. *
>
> *stunnel 4.33*
>
>    1. I was able to successfully install it as a service, as follows:
>        Start > Programs > stunnel > Service Install
>    2. Stunnel Shows up as a Service in Windows Service
>    3. But when I try to start it either from the Windows Service area
>       or the: Start > Programs > stunnel > Service start  I get the
>       following error, in a dialog box with an OK button:
>
> *stunnel 4.33 on win32 (stunnel)*
>
> * *
>
> *StartService: error 1053: The service did not respond to the start or 
> control request in a timely fashion.*
>
>    4. I am able to actually Run stunnel, as: Start > Programs >
>       stunnel > *Run stunnel* and do my SMPP work successfully! But of
>       course, as soon as I log off the server, stunnel stops and my
>       SMPP session is not encrypted and my Bind ends. So I really need
>       the Windows Service mode to run urgently. I would really
>       appreciate some help on what is going wrong, so that I can get
>       run Stunnel in the Service mode
>
> The stunnel.conf file is as follows:
>
> ===================
>
> cert = carrier.cer
>
> key = carrier.key
>
> ; Some performance tunings
>
> socket = l:TCP_NODELAY=1
>
> socket = r:TCP_NODELAY=1
>
> ; Some debugging stuff useful for troubleshooting
>
> debug = 7
>
> output = stunnel.log
>
> ; Service-level configuration
>
> ; IS ADDING SMPP AS SIMPLE AS ADDING IT HERE???
>
> [ssmpp]
>
> accept = 127.0.0.1:3005
>
> connect = REMOTE_IP:9000
>
> ; Use it for client mode
>
> client = yes
>
> options = all
>
> ;often useful :
>
> sslVersion=all
>
> ;-----------
>
> ; vim:ft=dosini
>
> =================================
>
> Regards,
>
> Apurva
>
> ------------------------------------------------------------------------
>
> *From:* Pierre DELAAGE [mailto:delaage.pierre at free.fr]
> *Sent:* Saturday, September 11, 2010 3:25 PM
> *To:* Pathak, Apurva (Apu)
> *Cc:* stunnel-users at mirt.net
> *Subject:* Re: [stunnel-users] SMPP Protocol and STunnel
>
> Hello,
> Provided that you are using SMPP over TCP/IP (not over X25), yes you 
> could use stunnel.
> Next you have to know what port(s) are involved at the server side (ie 
> the "listening" socket(s)):
> apparently there are two flavors of smpp over tcp: one using two 
> network connections, the other using only one ("tranceiver session").
>
> Things will be more simple if you are using only one connection.
> If you are using two connections, and provided that ssl is required on 
> both, just duplicate [smpp] section below as [smpp1] and [smpp2],
> of course changing the "accept" and "connect" ports.
>
> Then you have to get a valid CLIENT certificate (crt file) and key file.
>
> Stunnel.conf can then look like this :
> ;------
> ; stunnel CLIENT conf
>
> [smpps]
> client = yes
>
> accept=127.0.0.1:CHOOSE A LOCAL LISTENING PORT ON THE CLIENT
> connect=SERVER_IP_ADDR:SERVER_LISTENING_PORT
>
> cert=\localLocation\userXXXcert.crt
> key =\localLocation\userXXXcert.key
>
> ;often useful :
> sslVersion=all
> ;-----------
>
> And of course you have to redirect your smpp client software to the 
> "pseudo smpp over ssl" local server(s) on localhost,
> (cf "local listening port" above).
>
> Hope this may help,
> Pierre Delaage
>
> Le 10/09/2010 19:51, Pathak, Apurva (Apu) a écrit :
>
> Hello,
>
> I would like to find out if I can use STunnel as follows:
>
> I have a stand alone C# executable program that uses a third party SDK 
> that implements SMPP protocol and sends SMS text messages with 
> wireless carriers. Recently, one of the wireless carriers wants us to 
> implement SSL Client Authentication and wants SMPP messages that are 
> exchanged with them to be encrypted after the client authentication is 
> done.
>
> I want to find out if I can use STunnel running so that STunnel can 
> encrypt and decrypt the messages exchanged between my program and the 
> carrier's SMS server.
>
> (1) Is this possible with STunnel?
>
> (2) What are the steps involved?
>
> I am on the Windows Server 2003 platform.
>
> I would really appreciate a reply.
>
> Thanks,
>
> Apu
>
>   
> _______________________________________________
> stunnel-users mailing list
> stunnel-users at mirt.net  <mailto:stunnel-users at mirt.net>
> http://stunnel.mirt.net/mailman/listinfo/stunnel-users
>    
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20101020/566ddd45/attachment.html>