[stunnel-users] Stunnel 5.50 Transparent Both (Source+Destination)

• Next message (by thread): [stunnel-users] RES: Stunnel 5.50 Transparent Both (Source+Destination)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Sirs. I´m trying to make Stunnel work in both source and destination
transparent proxy and after looking every possibility I started to track the
packet that is locally generated (Stunnel client sending to stunnel server).

The packet goes out from process to raw table output chain. It deliveries to
connect tracking that pass the packet to mangle output but it disappears
before arriving in the nat table output chain.

Stunnel Packet destination 7.0.0.2:80(Original
destination)------raw/output-----connectTrack------mangle/output-------XXXX
disappear

With transparent destination off it works fine.

Stunnel Packet destination 9.0.0.2:443(Stunnel Server
IP)------raw/output-----connectTrack------mangle/output-------nat/output----
filter/output----interface

 

The problem is probably regarding the tproxy/ip_transparent that stunnel use
to control the connection and get the original src/dst to use.

I tried 3 different distribution of linux with the same behavior.

Does someone already use transparent=both  and give me a setup that worked
link linux distribution/version, stunnel version and so on?

Thanks,

Luis Monteiro

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20190131/ab03cb7f/attachment.html>

• Next message (by thread): [stunnel-users] RES: Stunnel 5.50 Transparent Both (Source+Destination)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]