[stunnel-users] Multiple Domains for https

Kevin Decherf kevin at kdecherf.com
Fri Feb 10 22:17:52 CET 2012


On Fri, Feb 10, 2012 at 10:09 PM, Thomas Manson
<dev.mansonthomas at gmail.com>wrote:

> Hi,
>
>   I want to setup the following architecture :
>
> stunnel ---> haproxy --> 2 webserver.
>
> I run severa virtual host on the 2 webservers, and a subset of them needs
> https.
>
> I can allocate several IP address for the host that run stunnel.
>
> How do I configure a single stunnel process to have a certificate per IP
> for the port https?
>
> I tryed to add several section like the following :
>
> [mansonthomas.com]
> cert          = /etc/stunnel/sites/mansonthomas.com/mansonthomas.com.crt
> accept        = 88.190.17.222:443
> connect       = 127.0.0.1:82
>
> xforwardedfor = yes
> TIMEOUTclose  = 0
>
>
> So the question is : Is it possible ?
> do you have a sample configuration file to share for this use case?
>

Hi,

I don't know if 'accept' supports IP but you can use several ports on the
same IP and redirect these ports with iptables to the dedicated IP

----
Kevin Decherf - M: +33 681194547 - T: @Kdecherf
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20120210/9260d8b4/attachment.html>


More information about the stunnel-users mailing list