Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
G
G
gegemon20122017-08-20 08:18:39
Stunnel
gegemon2012, 2017-08-20 08:18:39

How to set up an HTTP file server over SSL using Stunnel?

Hello!
I decided to set up an HTTP file server over SSL using Stunnel.
In the configuration file, I uncommented the lines
TLS front-end to a web server
[https]
accept = 443
connect = 80
cert =
stunnel.pem routers with DD-WRT firmware - everything works out. But it's worth trying to go to the external ip httpS://4.ХХХ.Х.ХХХ assigned by my provider, I get into the DD-WRT interface of my router. Can someone suggest what I'm doing wrong?
Software versions: server, stunnel and DD-WRT firmware are the latest.
There is one guess. Maybe you need to forward the stunnel port?
Damn, on stunnel, the port number changes every time it starts, but I couldn’t fix it - I didn’t find anything similar in the documentation for the stunnel settings ... I figured
out what the problem is. I configured according to the instructions https://forum.antichat.ru/threads/56265/ but uncommented "TLS front-end to a web server". Have n't commented yet:
;[pop3s]
;accept = 995
;connect = 110
;[imaps]
;accept = 993
;connect = 143
;[ssmtp]
;accept = 465
;connect = 25
I didn't understand this a bit: "It remains to configure STunnel as a service and start (commands in the explorer start menu "Install STunnel as service" and "Start STunnel service".
Now HTTP File Server is available via the HTTPS protocol, that is, https://your_ip_or_host:port
For greater security, you can disable HTTP altogether, and leave only HTTPS. This is done very simply. In HFS go to "Menu -> Limits -> Bans". Click Add row and in the IP address mask line write
\127.0.0.1 and check the Disconnect with no replay checkbox. Now it will be possible to connect to your server ONLY via HTTPS. But you can no longer be afraid of cracking passwords."
I could not find the stunnel service in windows services and having configured access only via https, for some reason I cannot log in via https, but I can log in via http...
Problem solved. Gave advice on the HTTP File Server forum. We do in the settings menu -> Accept connexion on -> 127.0.0.1 and if you have a local network where there is more than one PC, we try to access the server from another computer.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
A
Armageddon2013-10-29 15:30:38
GOST 89 and stunnel? 3Reply
S
shad32016-04-29 11:47:36
How to sign pem requests with certificate via stunnel? 0Reply
A
Alexander2020-10-12 00:01:59
Stunnel stopped working after role switch, error: wrong version number? 0Reply
D
Dmitry Ignashkin2019-09-20 23:35:00
Openssl + GOST + Stunnel+int223.zakupk.gov.ru. How to setup? 0Reply
J
juffinhalli2015-06-16 11:50:08
What's the difference between ssh, stunnel, ipsec and openvpn? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question