Date: Thu, 08 Nov 2007 23:59:15 +0100 From: Pav Lucistnik <pav@FreeBSD.org> To: RW <fbsd06@mlists.homeunix.com> Cc: ports@FreeBSD.org Subject: Re: Stunnel not working Message-ID: <1194562755.1094.26.camel@ikaros.oook.cz> In-Reply-To: <20071108220658.7d657b47@gumby.homeunix.com.> References: <20071108220658.7d657b47@gumby.homeunix.com.>
next in thread | previous in thread | raw e-mail | index | archive | help
--=-zpWYQ1m4zxBpaKnmKMSo
Content-Type: text/plain; charset=ISO-8859-2
Content-Transfer-Encoding: quoted-printable
RW p=ED=B9e v =E8t 08. 11. 2007 v 22:06 +0000:
> Stunnel doesn't seem to be working correctly on my 6.2 desktop, I'm
> getting the following in /var/log/messages, and I have no stunnel
> process
>=20
>=20
> stunnel: LOG5[926:134660096]: stunnel 4.21 on i386-unknown-freebsd6.2 wit=
h OpenSSL 0.9.7e-p1 25 Oct 2004
> stunnel: LOG5[926:134660096]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,I=
Pv6 Auth:LIBWRAP
> stunnel: LOG5[926:134660096]: 5417 clients allowed
> stunnel: LOG3[926:134660096]: local socket: Protocol not supported (43)
> stunnel: warning: can't get client address: Bad file descriptor
>=20
>=20
> I'm wondering if it could be an IPv6 problem. The second line mentions
> IPv6, but I don't have it in my kernel, and I didn't select it in the
> options for stunnel:
>=20
>=20
> # cd /usr/ports/security/stunnel/ && make -V WITH_IPV6
>=20
> # make -V CONFIGURE_ARGS
> --localstatedir=3D/var/tmp --with-pem-dir=3D/usr/local/etc --enable-stat=
ic --disable-fips --with-threads=3Dpthread --prefix=3D/usr/local ${_LATE_CO=
NFIGURE_ARGS} --target=3Di386-portbld-freebsd6.2
>=20
>=20
> # cat /usr/local/etc/stunnel/stunnel.conf
>=20
> pid=3D/var/run/stunnel.pid
>=20
> client =3D yes
>=20
> [nntp]
> accept =3D localhost:119
> connect =3D secure.news.easynews.com:563
On my machines, I noticed 4.21 no longer understands domain names in
connect statement of configuration file.
Try replacing that secure.new.seasynews.com by it's IP.
--=20
Pav Lucistnik <pav@oook.cz>
<pav@FreeBSD.org>
And please, please, please add COMMENTS to your code. Reading
uncommented PERL is like chewing on chunks of broken glass, only without
the tasty blood sauce to go with it. -- John Rowan in
rec.games.roguelike.adom
--=-zpWYQ1m4zxBpaKnmKMSo
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: Toto je =?UTF-8?Q?digit=C3=A1ln=C4=9B?=
=?ISO-8859-1?Q?_podepsan=E1?= =?UTF-8?Q?_=C4=8D=C3=A1st?=
=?ISO-8859-1?Q?_zpr=E1vy?=
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (FreeBSD)
iD8DBQBHM5TDntdYP8FOsoIRAiB/AJ0eD44/3UK+skWePrdugGHGCmm5MgCfZjZq
M/Dnl9KzOgX6i/V9E/y1ZTQ=
=9/Jt
-----END PGP SIGNATURE-----
--=-zpWYQ1m4zxBpaKnmKMSo--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1194562755.1094.26.camel>