[stunnel-users] Help: sTunnel http to Apache https?

Discussion:

(too old to reply)

Hathor27

2016-01-02 23:16:42 UTC

Dear List Members,

I searched, tried and recovered for several days and found no solution that
works.

My topic is to establish an ssh remote session through a http-proxy (http
connect). In case of port restrictions I can only use pure https (443).

So I try to wrap my http-proxy request into http over ssl (https) and
receive it on an Apache https server.

I can establish a connection between sTunnel Client (Win7 Prof) and sTunnel
Server (Synology, Linux), both on 443 - that works fine.

But if I try to connect from sTunnel Client (443) to Apache Server https,
they seem to speek not the same protocol.

.are there any examples for that? - or are sTunnel and Apache two
different things of SSL?

I would be very glad to get some help here :)

Best Regards

Hathor27

Jhon BYaka

2016-01-03 19:44:10 UTC

Permalink

what "ssl-protocol" u set in server (ssl2, ssl2, tls) and in stunnel? What
"Synology" product u mean?

Post by Hathor27
Dear List Members,
I searched, tried and recovered for several days and found no solution
that worksâŠ
My topic is to establish an ssh remote session through a http-proxy (http
connect). In case of port restrictions I can only use pure https (443).
So I try to wrap my http-proxy request into http over ssl (https) and
receive it on an Apache https server.
I can establish a connection between sTunnel Client (Win7 Prof) and
sTunnel Server (Synology, Linux), both on 443 â that works fine.
But if I try to connect from sTunnel Client (443) to Apache Server https,
they seem to speek not the same protocolâŠ
âŠare there any examples for that? â or are sTunnel and Apache two
different things of SSL?
I would be very glad to get some help here :)
Best Regards
Hathor27
_______________________________________________
stunnel-users mailing list
https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users

Hathor27

2016-01-05 20:36:00 UTC

Permalink

Thank you for your fast response, Jhon.
My target https-server is a Synology DS211+ with Apache 2.2(Unix).
Its VirtualHost config looks like:

<VirtualHost *:443>
ServerName myhost.mydomain.com
ServerAlias internal.name.local
DocumentRoot /somepath/not/used/at/all/
SSLEngine On
SSLProtocol all -SSLv2 -SSLv3 # TLSv1 or higher
SSLProxyEngine On
ProxyRequests On
ProxyBadHeader Ignore
ProxyVia Full
AllowCONNECT myInternalPort
<Proxy *>
Order deny,allow
Deny from all
</Proxy>
<ProxyMatch (internal\.name\.local)>
Order allow,deny
Allow from all
</ProxyMatch>
LogLevel debug
ErrorLog /logpath/sshserver-proxy_error_log
CustomLog /logpath/sshserver-proxy_request_log combined </VirtualHost>

The sTunnel client config on Win7 is:

debug = 7
log = overwrite
output = C:\userpath\stunnel\stunnel.log
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1
client = yes

[http-2-ssl]
accept = 127.0.0.1:80
connect = proxy.gateway:gwPort
protocol = connect
protocolHost = myhost.mydomain.com:443
retry = yes
config = Protocol:ALL
config = Protocol:-SSLv3

Finally still remains my initial question: Can I wrap my http-proxy request into http over ssl (https) and receive it on an Apache https server? If 'yes', how?

Best regards
Hathor27

Btw: Hopefully better posted

Hathor27

2016-01-11 23:04:56 UTC

Permalink

Please everybody out there,

can anybody tell me, if I can wrap a http-proxy request into http over ssl (https, with sTunnel) and receive it by an Apache https server (without sTunnel server)?

Best regards
Hathor27