ok sure i will re install the whole thing again? and yes i am on ubuntu 10.04 LTS
--- On Tue, 2/8/11, Brett Delle Grazie <brett.dellegra...@gmail.com> wrote: From: Brett Delle Grazie <brett.dellegra...@gmail.com> Subject: Re: HAProxy Stunnel SSL Setup question To: "Amol" <mandm_z...@yahoo.com> Cc: haproxy@formilux.org Date: Tuesday, February 8, 2011, 11:02 AM Hi Amol, On 8 February 2011 15:21, Amol <mandm_z...@yahoo.com> wrote: Hi I tried the 4.35 patch mentioned in the email and i still get Hunk errors $ sudo patch -p1 < ../stunnel-4.35-xforwarded-for.diff patching file doc/stunnel.fr.8 Reversed (or previously applied) patch detected! Assume -R? [n] y Okay, you need to start with a cleanly expanded source file. It's telling you you've already applied some patches which is why its failing. Start from scratch, remove the old directory with the sources in it, expand the source archive again and reapply the patch. Then go from there. What OS are you running? patching file doc/stunnel.8 Reversed (or previously applied) patch detected! Assume -R? [n] y patching file src/client.c Reversed (or previously applied) patch detected! Assume -R? [n] y Hunk #2 FAILED at 372. Hunk #3 FAILED at 412. Hunk #4 FAILED at 421. Hunk #5 succeeded at 529 (offset -24 lines). Hunk #6 FAILED at 589. Hunk #7 FAILED at 599. 5 out of 7 hunks FAILED -- saving rejects to file src/client.c.rej patching file src/common.h Reversed (or previously applied) patch detected! Assume -R? [n] y Hunk #1 succeeded at 52 (offset -1 lines). patching file src/options.c Reversed (or previously applied) patch detected! Assume -R? [n] y patching file src/prototypes.h Reversed (or previously applied) patch detected! Assume -R? [n] y Hunk #2 succeeded at 351 with fuzz 1 (offset 5 lines). --- On Mon, 2/7/11, Brett Delle Grazie <brett.dellegra...@gmail.com> wrote: From: Brett Delle Grazie <brett.dellegra...@gmail.com> Subject: Re: HAProxy Stunnel SSL Setup question To: "Amol" <mandm_z...@yahoo.com> Cc: haproxy@formilux.org Date: Monday, February 7, 2011, 1:11 PM Hi, On 7 February 2011 17:54, Amol <mandm_z...@yahoo.com> wrote: > > Hi all, i had a question on setting up haproxy in SSL, since my current site is https(where i had used openssl to generate csr and crt keys), so i wanted to load balance with the same. > > My web servers are apache and they are behind the haproxy server, so once i > install stunnel on HAproxy server, i have a few question in the installation > process > > I have installed stunnel-4.35.tar.gz, but the patch for xforward was > tunnel-4.32-xforwarded-for.diff is that ok? of is the patch available for > 4.35 ? The last stunnel patch I saw on this mailing list was for stunnel 4.34 available from this thread: http://www.mail-archive.com/haproxy@formilux.org/msg04024.html > this is the patch ouput > $patch -p1 < ../stunnel-4.32-xforwarded-for.diff > patching file doc/stunnel.8 > Hunk #1 FAILED at 504. <snip> The patch failed, you need to use the patch described above - quite possibly with stunnel 4.34 not 4.35 (it might work but if any hunks show up as 'FAILED' go back to 4.34). > > during the make install of stunnel it asked me the details for the .pem file? > why is that needed if i use certs from third party vendors? > can i used a certificate generated from third party vendors like godaddy to > set stunnel? > or do i have to use self-signed certificate? The make install process probably generates a self signed certificate initially. There might be a parameter to skip this. Regardless you can definitely swap it for another certificate from a 3rd party vendor. It should be in ASCII PEM format though. > > These are some of the doubts for now, it will a great help if you can help me > understand this or send some helpful links? > > Thanks > -- Best Regards, Brett Delle Grazie -- Best Regards, Brett Delle Grazie
