Ajiq, On 12/2/19 09:52, Ajjq . wrote: > I need to enable a /tunnel_out/ for UTL_HTTP from http:// to https:// > > I installed stunnel 5.34 win32 in a windows 2008 server. > > I am including my stunnel.conf y log file (debug=7) > > As you can see in the log file, I get this error: > > 2019.12.01 14:08:12 LOG3[7]: SSL_accept: 1407609C: error:1407609C:SSL > routines:SSL23_GET_CLIENT_HELLO:http request
So you are trying something like this? C:> TELNET LOCALHOST 80 (expect to be connected to sub.dominio.com:443) Right? > Could you help me please? > > > *MY stunnel.conf---* > debug = 7 > output = stunnel.log > > [https] > accept = 127.0.0.1:80 > connect = sub.dominio.com:443 > cert = stunnel.pem > TIMEOUTclose = 0 I don't see any "client" line in your file, so I'm assuming it is set to the default which is "server mode". In "server mode", stunnel listens for incoming TLS connections and connects to an unencrypted channel. I think you want the opposite. > 2019.12.01 14:01:37 LOG7[1]: Service [https] started > 2019.12.01 14:01:37 LOG5[1]: Service [https] accepted connection from > 127.0.0.1:56582 > 2019.12.01 14:01:37 LOG7[1]: SSL state (accept): before/accept > initialization > 2019.12.01 14:01:37 LOG3[0]: SSL_accept: 1407609C: error:1407609C:SSL > routines:SSL23_GET_CLIENT_HELLO:http request Yes, it looks like it's listening for a TLS connection and not a plain-text one. Try setting this in your config file: client=yes Hope that helps, -chris
signature.asc
Description: OpenPGP digital signature
_______________________________________________ stunnel-users mailing list [email protected] https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users
