服务器 Gind.cn
  1. 服务器 Gind.cn
  3. 带有SNI的Stunnel:部分*名称*:未findSNI部分名称
Intereting Posts
如何强制NGINX加载新的静态文件? 不知道如何处理2个不同子网上的2个网卡的路由 授予访问生产数据库的安全方式 部署MS ACCESS驱动程序以在ASP.NET中进行连接(共享主机) SCCM软件中心 – 设置“营业时间以外的自动安装” apt:如何使用包标签进行search? 根目录中有100%的inode,如何释放inode? 硬盘驱动器 阅读性能 在Fedora 14上安装Sun Java 需要在iptables上的build议 boot2docker,dockermount.vboxsf:automount安装失败,错误:没有这样的文件或目录 远程机器通过防火墙访问 删除HP Procurve 5406交换机上的默认VLAN 什么是postgresql中的“备份模式”? 开始工作阿帕奇phusion乘客

带有SNI的Stunnel:部分*名称*:未findSNI部分名称

我试图在同一个IP上使用两个域的stunnel

我的conf是这样的: 

;key = /etc/ssl/private/namecheap/server.key # See this link http://www.sysadminworld.com/2011/how-do-i-use-an-intermediate-certificate-with-stunnel/ # The intermediatev.pem is comodo-rsa-domain-validation-sha-2-w-root.ca-bundle # Restart /etc/init.d/stunnel4 restart cert = /etc/ssl/private/namecheap/stunnel.pem ;CApath = /etc/ssl/private/namecheap/www_soinfit_com.ca-bundle socket = l:TCP_NODELAY=1 socket = r:TCP_NODELAY=1 debug = 7 output = /var/log/stunnel4/stunnel.log ; Protocol version (all, SSLv2, SSLv3, TLSv1) sslVersion = all ; no, we don't want SSLv2 ;options = NO_SSLv2 ; Some security enhancements for UNIX systems - comment them out on Win32 chroot = /var/lib/stunnel4/ setuid = stunnel4 setgid = stunnel4 ; PID is created inside the chroot jail pid = /stunnel4.pid [paleo-dating] sni = https:www.paleo-dating.com cert = /etc/ssl/private/namecheap/stunnel-dating.pem accept = 5555 connect = localhost:5556 [shoptprod] accept = 6676 connect = localhost:6060 [shoptest] accept = 7676 connect = localhost:7070 [chatprod] accept = 8686 connect = localhost:8080 [chattest] accept = 9676 connect = localhost:9090 [groupchattest] accept = 5656 connect = localhost:5050 [groupchatprd] accept = 4646 connect = localhost:4040

当我运行/etc/init.d/stunnel4 restart

我得到这个错误: 

 Restarting SSL tunnels: Clients allowed=500 stunnel 4.53 on x86_64-pc-linux-gnu platform Compiled with OpenSSL 1.0.1e 11 Feb 2013 Running with OpenSSL 1.0.1t 3 May 2016 Update OpenSSL shared libraries or rebuild stunnel Threading:PTHREAD SSL:+ENGINE+OCSP Auth:LIBWRAP Sockets:POLL+IPv6 Reading configuration from file /etc/stunnel/stunnel.conf Compression not enabled Snagged 64 random bytes from /root/.rnd Wrote 1024 new random bytes to /root/.rnd PRNG seeded successfully Initializing service section [paleo-dating] Section paleo-dating: SNI section name not found str_stats: 39 block(s), 7369 data byte(s), 2262 control byte(s) [Failed: /etc/stunnel/stunnel.conf] You should check that you have specified the pid= in you configuration file