You can use this for peer to perform ppp connection once stunnel started up.
[ppp] client = yes connect = STUNNEL-SERVER-IP:723 exec = /usr/sbin/pppd execargs = defaultroute persist 10.0.1.2:10.0.1.1 lock local debug noauth name peer's-name pty = yes CAfile = /etc/stunnel/ca.crt cert = /etc/stunnel/client.crt key = /etc/stunnel/client.key verifyChain = yes checkHost = hostna.me ;checkIP = 1.2.3.4 ppp ends should be routed by firewall to perform traffic flow. On 4/17/2019 8:43 PM, Martin Got wrote: > How to use 'stunnel' in client mode to accept connections on pty from local > programs like 'ppp' instead of 'accept=IP:PORT'? > > 'pty = yes' seems work in server mode only, so when I removed > 'accept = 127.0.0.1:1723' from 'stunnel' client config I'm getting the error: > > [!] Service [ppp]: Each service must define two endpoints on stunnel-5.44 > > I need to call 'stunnel' client from 'pppd' and communicate with 'stunnel' > using pty if it was possible by using a command: > > pppd /dev/ptyp3 10.0.1.2: local debug noauth passive noccp novj novjccomp > nopcomp noaccomp name ppp-client connect 'stunnel > /etc/stunnel/stunnel-client.conf' > > Both 'pppd' and 'stunnel' started by executing the command above, but 'pppd' > can't communicate to 'stunnel' server using pty. > > Please advice. > > [ppp] > client = yes > accept = [127.0.0.1:1723 ](http://127.0.0.1:1723) > ^^^^^^^^^^^^^^^^^^^^^^^ > connect = STUNNEL-SERVER-IP:723 > CAfile = /etc/stunnel/ca.crt > cert = /etc/stunnel/client.crt > key = /etc/stunnel/client.key > verifyChain = yes > checkHost = hostna.me > ;checkIP = 1.2.3.4 >