[stunnel-users] Session is active but I cannot connect

Carter Browne cbcs at comcast.net
Thu Apr 9 18:01:44 CEST 2015


Did you do a netstat -np to see if there is another program listening on 
port 2406?

On 4/9/2015 11:30 AM, daninho dj wrote:
> It was typo sorry. The settings on the server are:
>
> [test]
> accept = 2406
> connect = 2404
>
> and on the client:
>
> [jdbc]
> client = yes
> accept = 127.0.0.1:2404 <http://127.0.0.1:2404>
> connect = my_server_name:2406
>
>
> I'm trying to start the service on the server and it's not working:
>
>
> /etc/init.d/stunnel start
> Starting stunnel (SSL tunnel) startproc:  exit status of parent of 
> /usr/sbin/stunnel: 1
>   please see /var/log/rc.stunnel.log for details                       
>                   failed
>
>
> Regards,
>
>
>
> On Thu, Apr 9, 2015 at 5:04 PM, Carter Browne <cbcs at comcast.net 
> <mailto:cbcs at comcast.net>> wrote:
>
>     In your before setting, your client should have  been to connect
>     to your test server:
>
>     [jdbc]
>     client = yes
>     accept = 127.0.0.1:2404 <http://127.0.0.1:2404>
>     connect=my_server_name:2404
>
>     In your after setting, the accept and connect ports cannot be the
>     same port.
>
>
>
>
>     On 4/9/2015 10:51 AM, daninho dj wrote:
>>     Hi Jose,
>>
>>     Thanks for mail. The problem is that when I change the accept
>>     port on the server, stunnel doesn't start:
>>
>>     *Before:*
>>
>>     _Server:_
>>
>>     [test]
>>     accept = 2404
>>     connect = 2406
>>
>>     _Client:_
>>
>>     [jdbc]
>>     client = yes
>>     accept = 127.0.0.1:2404 <http://127.0.0.1:2404>
>>     connect = /my_server_name/:2406
>>
>>     *After:*
>>
>>     I edited the stunnel.conf on the server:
>>
>>     [test]
>>     accept = 2406
>>     connect = 2406
>>
>>     Then trying to start the service:
>>
>>     */etc/init.d/stunnel start*
>>     *Starting stunnel (SSL tunnel) startproc:  exit status of parent
>>     of /usr/sbin/stunnel: 1*
>>     *  please see /var/log/rc.stunnel.log for details failed*
>>
>>     /var/log/rc.stunnel.log is empty but in the log specified in the
>>     stunnel.conf I have the following:
>>
>>     tail -10 /var/log/stunnel/stunnel.log
>>     2015.04.09 16:42:36 LOG5[22524:139805264570112]:
>>     Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP
>>     2015.04.09 16:42:36 LOG6[22524:139805264570112]: file ulimit =
>>     262144 (can be changed with 'ulimit -n')
>>     2015.04.09 16:42:36 LOG6[22524:139805264570112]: poll() used - no
>>     FD_SETSIZE limit for file descriptors
>>     2015.04.09 16:42:36 LOG5[22524:139805264570112]: 128000 clients
>>     allowed
>>     2015.04.09 16:42:36 LOG7[22524:139805264570112]: FD 10 in
>>     non-blocking mode
>>     2015.04.09 16:42:36 LOG7[22524:139805264570112]: FD 11 in
>>     non-blocking mode
>>     2015.04.09 16:42:36 LOG7[22524:139805264570112]: FD 12 in
>>     non-blocking mode
>>     2015.04.09 16:42:36 LOG7[22524:139805264570112]: SO_REUSEADDR
>>     option set on accept socket
>>     2015.04.09 16:42:36 LOG3[22524:139805264570112]: Error binding
>>     test to 0.0.0.0:2406 <http://0.0.0.0:2406>
>>     2015.04.09 16:42:36 LOG3[22524:139805264570112]: bind: Address
>>     already in use (98)
>>
>>
>>     Same thing happens when I try to change the ports on the client.
>>     Any idea how this problem can be solved?
>>
>>     Thanks and regards,
>>     Daninho
>>
>>
>>
>>
>>
>>     On Thu, Apr 9, 2015 at 4:12 PM, <josealf at rocketmail.com
>>     <mailto:josealf at rocketmail.com>> wrote:
>>
>>
>>         The accept port on the server Config must be the same as the
>>         connect port on the client config.
>>         The connect port on the server must be the port used by the
>>         application/service you try to secure, usually bound to the
>>         loopback interfase, as you probably don't want to allow
>>         unsecure connections.
>>         On the client the accept port is the port your client
>>         application will connect to.
>>
>>         Hope this helps to clarify a bit.
>>
>>         Regards
>>
>>         -----Original Message-----
>>         From: daninho dj <daninho.dj at gmail.com
>>         <mailto:daninho.dj at gmail.com>>
>>         Sender: "stunnel-users" <stunnel-users-bounces at stunnel.org
>>         <mailto:stunnel-users-bounces at stunnel.org>>
>>         Date: Thu, 9 Apr 2015 14:28:25
>>         To: <stunnel-users at stunnel.org
>>         <mailto:stunnel-users at stunnel.org>>
>>         Subject: [stunnel-users] Session is active but I cannot connect
>>
>>         _______________________________________________
>>         stunnel-users mailing list
>>         stunnel-users at stunnel.org <mailto:stunnel-users at stunnel.org>
>>         https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users
>>
>>
>>
>>
>>     -- 
>>     daninho <http://daninhodj.com>
>>
>>
>>     _______________________________________________
>>     stunnel-users mailing list
>>     stunnel-users at stunnel.org  <mailto:stunnel-users at stunnel.org>
>>     https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users
>
>     -- 
>     Carter Browne
>     cbrowne at cbcs-usa.com  <mailto:cbrowne at cbcs-usa.com>
>
>
>
>
> -- 
> daninho <http://daninhodj.com>

-- 
Carter Browne
cbrowne at cbcs-usa.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20150409/238ee095/attachment-0001.html>


More information about the stunnel-users mailing list