Rupert,
Are you describing a picture that looks like this?
@startuml
cloud lan1 {
object client1
object client2
}
cloud lan2 {
object locator1
object locator2
object server1
object server2
}
object sTunnel
client1 --> sTunnel #blue
sTunnel --> locator1 #blue
client1 --> sTunnel #darkblue
sTunnel --> server1 #darkblue
client1 --> sTunnel #lightblue
sTunnel --> server2 #lightblue
@enduml
[cid:CE0138D5-BC1A-4354-9F4F-B9FAD741B879@bvt.pivotal.io]
On Jul 16, 2020, at 4:51 AM, Rupert St John Webster
<rupert.stjohnwebs...@impress-solutions.com<mailto:rupert.stjohnwebs...@impress-solutions.com>>
wrote:
Hello,
Has anyone had any luck with implementing sTunnel for Geode Server SSL get and
put to encrypt traffic to client subscribers outside their immediate LAN?
Per this
question<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fstackoverflow.com%2Fquestions%2F62921394%2Fusing-stunnel-for-apache-geode-net-client-ssl-connection-to-server&data=02%7C01%7Cjabarrett%40vmware.com%7C22cc708841bd4e5e2c7e08d8297e9e02%7Cb39138ca3cee4b4aa4d6cd83d9dd62f0%7C0%7C1%7C637304971090449034&sdata=lMAT11nFC7vxzl%2BXghovZjMo%2BweslToxQFgAoC42RTo%3D&reserved=0>
an stunnel works to secure locator connectivity via port 10334 but not the
server traffic back to remote subscribers via port 40404 out to a dynamic pool
of ports at the client side.
Thanks, kind regards,
Rupert St John Webster
Engineering
<image001.jpg>
<image002.png><https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.facebook.com%2FImpressSolutions&data=02%7C01%7Cjabarrett%40vmware.com%7C22cc708841bd4e5e2c7e08d8297e9e02%7Cb39138ca3cee4b4aa4d6cd83d9dd62f0%7C0%7C1%7C637304971090459029&sdata=5LwpY%2B4I7maeM3WmnszsfJxlR8if8uDKHMUgvUMlMQo%3D&reserved=0>
<image003.png><https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.twitter.com%2FImpressUK&data=02%7C01%7Cjabarrett%40vmware.com%7C22cc708841bd4e5e2c7e08d8297e9e02%7Cb39138ca3cee4b4aa4d6cd83d9dd62f0%7C0%7C1%7C637304971090459029&sdata=ypKmZH1bHJ81Z6Ypcwn8zrU16ubOO2xsJ2MCW%2FcAtts%3D&reserved=0>
<image004.png><https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fimpress-solutions&data=02%7C01%7Cjabarrett%40vmware.com%7C22cc708841bd4e5e2c7e08d8297e9e02%7Cb39138ca3cee4b4aa4d6cd83d9dd62f0%7C0%7C1%7C637304971090469026&sdata=9gOwrPRjpJt0pcByt6VoKFpQi1tnXUq7wQ69I4xXJ5Q%3D&reserved=0>
Tel: 01708 759 760
Fax: 01708 759 761
Email: rup...@impress-solutions.com<mailto:rup...@impress-solutions.com>
Website:
www.impress-solutions.co.uk<https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.impress-solutions.co.uk%2F&data=02%7C01%7Cjabarrett%40vmware.com%7C22cc708841bd4e5e2c7e08d8297e9e02%7Cb39138ca3cee4b4aa4d6cd83d9dd62f0%7C0%7C1%7C637304971090479027&sdata=suIzAVk7oomdZCbCq7LVs4KiaFAFNChR5uHwUWbCpWA%3D&reserved=0>
Head Office address: 3 Holgate Court, 4-10 Western Road, Romford, Essex, RM1 3JS
City address: City Point, 1 Ropemaker Street, 17th Floor, Moorgate, London,
EC2Y 9HT
<image005.png>
ISO 9001 Certified by BSI Group. Certificate Number: FS 653755
Please Note:
This message is for the named person's use only. It may contain confidential,
proprietary or legally privileged information. No confidentiality or privilege
is waived or lost by any miss-transmission. If you receive this message in
error, please immediately delete it and all copies of it from your system,
destroy any hard copies of it and notify the sender. You must not, directly or
indirectly, use, disclose, distribute, print, or copy any part of this message
if you are not the intended recipient. Impress Solutions Ltd and any of its
subsidiaries each reserve the right to monitor all e-mail communications
through its networks.
Any views expressed in this message are those of the individual sender, except
where the message states otherwise and the sender is authorised to state them
to be the views of any such entity.
