On Thursday 09 February 2006 21:13, Marten Lehmann wrote: > Is this possible with openssl? I don't know how to do it. The problem > is, that the work isn't done by simply tunneling the data to > server-a.com, because then the client would get a certificate-doesn't > -match-with-domain-error. server-b.com has to use the actual data (not > the whole traffic including the ssl-conversation) and establish a new > connection to server-a.com. > > If this cannot be done with openssl out of the box, how else could I do > this?
One way might be to use POUND. The Pound program is a reverse proxy, load balancer and HTTPS front-end for Web server(s). Pound was developed to enable distributing the load among several Web-servers and to allow for a convenient SSL wrapper for those Web servers that do not offer it natively. Pound is distributed under the GPL - no warranty, it's free to use, copy and give away. Read more about it at http://www.apsis.ch/pound HTH, David. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
