Stunnel/Server: Difference between revisions

From charlesreid1

No edit summary
Line 26: Line 26:
==Starting Stunnel==
==Starting Stunnel==


Starting stunnel is really simple.
Starting stunnel is really simple. Just run the stunnel command.
 
 
 


==Flags==
==Flags==

Revision as of 16:50, 28 March 2017

Stunnel Server

Stunnel running as a server will open two ports: one to listen for incoming traffic, and one to forward the (unencrypted) traffic onto.

Ports/Arrangement

Typically, stunnel is listening on port 443, open to external traffic, and is listening for SSL traffic.

Typically, stunnel is forwarding that traffic on to a local port, something like 8443. (Useful if you have a service only exposed to LOCAL traffic from localhost or 127.0.0.1 and not bound to an EXTERNAL ip address like 0.0.0.0).

Stunnel Config File

To set this up, we use the stunnel.conf configuration file. This is what a simple stunnel config looks like: 

output = /etc/stunnel/stunnel.log
cert=/etc/stunnel/stunnel.fullchain.pem
key=/etc/stunnel/stunnel.key.pem
pid=/var/run/stunnel4/stunnel.pid
client=yes
[http]
accept = 443
connect = 127.0.0.1:8443

Starting Stunnel

Starting stunnel is really simple. Just run the stunnel command.

Flags


SSH9999Success.png
stunnel
secure tunnel - create secure encrypted connections on any port to wrap any protocol


Stunnel  · Category:Stunnel


Using:

Client: Stunnel/Client

Server: Stunnel/Server

Stunnel Over Docker: Stunnel/Docker

Certificates: Stunnel/Certificates


Protocols:

Stunnel/Rsync  · Stunnel/SSH  · Stunnel/Scp  · Stunnel/HTTP  · Stunnel/OpenVPN


Other Links:

RaspberryPi/Headless  · RaspberryPi/Reverse SSH

Category:Stunnel  · Category:SSH  · Category:Networking


Flags  · Template:StunnelFlag  · e



Retrieved from "https://charlesreid1.com/w/index.php?title=Stunnel/Server&oldid=15650"