Here is the output from the stunnel log. What is interesting is that when I do a curl http://ape.xxxxxx.net it gives a positive response, so I am not sure why the application is has an issue.
2012.03.20 15:05:52 LOG7[6223:3076167360]: RAND_status claims sufficient entropy for the PRNG 2012.03.20 15:05:52 LOG7[6223:3076167360]: PRNG seeded successfully 2012.03.20 15:05:52 LOG7[6223:3076167360]: Certificate: /usr/local/etc/ stunnel/star_globalnetchat_net.pem 2012.03.20 15:05:52 LOG7[6223:3076167360]: Certificate loaded 2012.03.20 15:05:52 LOG7[6223:3076167360]: Key file: /usr/local/etc/ stunnel/star_globalnetchat_net.key 2012.03.20 15:05:52 LOG7[6223:3076167360]: Private key loaded 2012.03.20 15:05:52 LOG7[6223:3076167360]: SSL context initialized for service ape 2012.03.20 15:05:52 LOG5[6223:3076167360]: stunnel 4.29 on i686-pc- linux-gnu with OpenSSL 0.9.8g 19 Oct 2007 2012.03.20 15:05:52 LOG5[6223:3076167360]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 2012.03.20 15:05:52 LOG6[6223:3076167360]: file ulimit = 1024 (can be changed with 'ulimit -n') 2012.03.20 15:05:52 LOG6[6223:3076167360]: poll() used - no FD_SETSIZE limit for file descriptors 2012.03.20 15:05:52 LOG5[6223:3076167360]: 500 clients allowed 2012.03.20 15:05:52 LOG7[6223:3076167360]: FD 5 in non-blocking mode 2012.03.20 15:05:52 LOG7[6223:3076167360]: FD 6 in non-blocking mode 2012.03.20 15:05:52 LOG7[6223:3076167360]: FD 7 in non-blocking mode 2012.03.20 15:05:52 LOG7[6223:3076167360]: SO_REUSEADDR option set on accept socket 2012.03.20 15:05:52 LOG7[6223:3076167360]: ape bound to 0.0.0.0:443 2012.03.20 15:05:52 LOG7[6224:3076167360]: Created pid file /usr/local/ var/run/stunnel/stunnel.pid 2012.03.20 15:05:55 LOG7[6224:3076167360]: ape accepted FD=8 from 209.19.85.29:50638 2012.03.20 15:05:55 LOG7[6224:3076164464]: ape started 2012.03.20 15:05:55 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:05:55 LOG5[6224:3076164464]: ape accepted connection from 209.19.85.29:50638 2012.03.20 15:05:55 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:05:55 LOG3[6224:3076164464]: SSL_accept: 1407609C: error: 1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request 2012.03.20 15:05:55 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:05:55 LOG7[6224:3076164464]: ape finished (-1 left) 2012.03.20 15:06:32 LOG7[6224:3076167360]: ape accepted FD=8 from 209.19.85.29:2708 2012.03.20 15:06:32 LOG7[6224:3076164464]: ape started 2012.03.20 15:06:32 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:06:32 LOG5[6224:3076164464]: ape accepted connection from 209.19.85.29:2708 2012.03.20 15:06:32 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:06:32 LOG3[6224:3076164464]: SSL_accept: 1407609C: error: 1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request 2012.03.20 15:06:32 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:06:32 LOG7[6224:3076164464]: ape finished (0 left) 2012.03.20 15:07:08 LOG7[6224:3076167360]: ape accepted FD=8 from 65.135.155.255:53703 2012.03.20 15:07:08 LOG7[6224:3076164464]: ape started 2012.03.20 15:07:08 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:07:08 LOG5[6224:3076164464]: ape accepted connection from 65.135.155.255:53703 2012.03.20 15:07:08 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:07:08 LOG7[6224:3076164464]: SSL state (accept): SSLv3 read client hello A 2012.03.20 15:07:08 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server hello A 2012.03.20 15:07:08 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write certificate A 2012.03.20 15:07:08 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server done A 2012.03.20 15:07:08 LOG7[6224:3076164464]: SSL state (accept): SSLv3 flush data 2012.03.20 15:07:09 LOG3[6224:3076164464]: SSL_accept: Peer suddenly disconnected 2012.03.20 15:07:09 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:07:09 LOG7[6224:3076164464]: ape finished (0 left) 2012.03.20 15:07:27 LOG7[6224:3076167360]: ape accepted FD=8 from 209.19.85.29:23345 2012.03.20 15:07:27 LOG7[6224:3076164464]: ape started 2012.03.20 15:07:27 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:07:27 LOG5[6224:3076164464]: ape accepted connection from 209.19.85.29:23345 2012.03.20 15:07:27 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:07:27 LOG3[6224:3076164464]: SSL_accept: 1407609C: error: 1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request 2012.03.20 15:07:27 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:07:27 LOG7[6224:3076164464]: ape finished (0 left) 2012.03.20 15:07:36 LOG7[6224:3076167360]: ape accepted FD=8 from 65.135.155.255:53727 2012.03.20 15:07:36 LOG7[6224:3076164464]: ape started 2012.03.20 15:07:36 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:07:36 LOG5[6224:3076164464]: ape accepted connection from 65.135.155.255:53727 2012.03.20 15:07:36 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:07:36 LOG7[6224:3076164464]: SSL state (accept): SSLv3 read client hello A 2012.03.20 15:07:36 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server hello A 2012.03.20 15:07:36 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write certificate A 2012.03.20 15:07:36 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server done A 2012.03.20 15:07:36 LOG7[6224:3076164464]: SSL state (accept): SSLv3 flush data 2012.03.20 15:07:36 LOG3[6224:3076164464]: SSL_accept: Peer suddenly disconnected 2012.03.20 15:07:36 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:07:36 LOG7[6224:3076164464]: ape finished (0 left) 2012.03.20 15:07:46 LOG7[6224:3076167360]: ape accepted FD=8 from 65.135.155.255:53731 2012.03.20 15:07:46 LOG7[6224:3076164464]: ape started 2012.03.20 15:07:46 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:07:46 LOG5[6224:3076164464]: ape accepted connection from 65.135.155.255:53731 2012.03.20 15:07:46 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:07:46 LOG7[6224:3076164464]: SSL state (accept): SSLv3 read client hello A 2012.03.20 15:07:46 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server hello A 2012.03.20 15:07:46 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write certificate A 2012.03.20 15:07:46 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server done A 2012.03.20 15:07:46 LOG7[6224:3076164464]: SSL state (accept): SSLv3 flush data 2012.03.20 15:07:46 LOG3[6224:3076164464]: SSL_accept: Peer suddenly disconnected 2012.03.20 15:07:46 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:07:46 LOG7[6224:3076164464]: ape finished (0 left) 2012.03.20 15:08:02 LOG7[6224:3076167360]: ape accepted FD=8 from 209.19.85.29:47539 2012.03.20 15:08:02 LOG7[6224:3076164464]: ape started 2012.03.20 15:08:02 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:08:02 LOG5[6224:3076164464]: ape accepted connection from 209.19.85.29:47539 2012.03.20 15:08:02 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:08:02 LOG3[6224:3076164464]: SSL_accept: 1407609C: error: 1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request 2012.03.20 15:08:02 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:08:02 LOG7[6224:3076164464]: ape finished (0 left) 2012.03.20 15:08:17 LOG7[6224:3076167360]: ape accepted FD=8 from 209.19.85.29:26277 2012.03.20 15:08:17 LOG7[6224:3076164464]: ape started 2012.03.20 15:08:17 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:08:17 LOG5[6224:3076164464]: ape accepted connection from 209.19.85.29:26277 2012.03.20 15:08:17 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:08:17 LOG3[6224:3076164464]: SSL_accept: 1407609C: error: 1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request 2012.03.20 15:08:17 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:08:17 LOG7[6224:3076164464]: ape finished (0 left) 2012.03.20 15:08:22 LOG7[6224:3076167360]: ape accepted FD=8 from 65.135.155.255:53746 2012.03.20 15:08:22 LOG7[6224:3076164464]: ape started 2012.03.20 15:08:22 LOG7[6224:3076164464]: FD 8 in non-blocking mode 2012.03.20 15:08:22 LOG5[6224:3076164464]: ape accepted connection from 65.135.155.255:53746 2012.03.20 15:08:22 LOG7[6224:3076164464]: SSL state (accept): before/ accept initialization 2012.03.20 15:08:22 LOG7[6224:3076164464]: SSL state (accept): SSLv3 read client hello A 2012.03.20 15:08:22 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server hello A 2012.03.20 15:08:22 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write certificate A 2012.03.20 15:08:22 LOG7[6224:3076164464]: SSL state (accept): SSLv3 write server done A 2012.03.20 15:08:22 LOG7[6224:3076164464]: SSL state (accept): SSLv3 flush data 2012.03.20 15:08:22 LOG3[6224:3076164464]: SSL_accept: Peer suddenly disconnected 2012.03.20 15:08:22 LOG5[6224:3076164464]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket 2012.03.20 15:08:22 LOG7[6224:3076164464]: ape finished (0 left) On Mar 19, 2:23 pm, John Chavarria <[email protected]> wrote: > If you run stunnel yourconf.conf with at the same time a tail -f on the > /var/log/stunnel4/stunnel.log file, what kind of output do you have? > > -- > John Chavarria - CEO / Designer > Weelya - improve the Web > > +33 (0) 6.43.56.00.83 > > Twitter : @jchavarria / @weelya > > http://www.weelya.com/http://www.ape-project.org/ > > > > > > > > On Mon, Mar 19, 2012 at 7:17 PM, Chris Brown <[email protected]> wrote: > > Has anyone gotten APE to work over https using stunnel? > > > stunnel 4.29 > > APE_JSF 1.1.1 > > APE Server 1.1.1 > > > APE Configs > > uid { > > # "aped" switch to this user/group if it run as root > > user = daemon > > group = daemon > > } > > > Server { > > port = 5280 > > daemon = yes > > ip_listen = 0.0.0.0 > > domain = ape.xxxxxxxxxxx.net > > rlimit_nofile = 10000 > > pid_file = /var/run/aped.pid > > } > > > Log { > > debug = 1 > > use_syslog = 0 > > syslog_facility = local2 > > logfile = ./ape.log > > } > > > JSONP { > > eval_func = Ape.transport.read > > allowed = 1 > > } > > > Config { > > #relative to ape.conf > > modules = ../modules/lib/ > > modules_conf = ../modules/conf/ > > } > > > stunnel config > > cert = /usr/local/etc/stunnel/star_xxxxxxxxx_net.pem > > key = /usr/local/etc/stunnel/star_xxxxxxxxx_net.key > > ;sslVersion = SSLv3 > > sslVersion = all > > > ;foreground = yes > > > debug = 7 > > output = /var/log/stunnel4/stunnel.log > > > [ape] > > accept = 443 > > connect = 5280 > > > When I use curl tohttps://ape.xxxxxxx.netI get the expected result > > so it looks like the connect between stunnel and ape is working, but > > when I use teh APE_JSF/Tools/Check page it never connects? Anyone > > have any ideas? > > > -- > > You received this message because you are subscribed to the Google > > Groups "APE Project" group. > > To post to this group, send email to [email protected] > > To unsubscribe from this group, send email to > > [email protected] > > For more options, visit this group at > >http://groups.google.com/group/ape-project?hl=en > > --- > > APE Project (Ajax Push Engine) > > Official website :http://www.ape-project.org/ > > Git Hub :http://github.com/APE-Project/ -- You received this message because you are subscribed to the Google Groups "APE Project" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/ape-project?hl=en --- APE Project (Ajax Push Engine) Official website : http://www.ape-project.org/ Git Hub : http://github.com/APE-Project/
