Статус: Новичок
Группы: Участники
Зарегистрирован: 16.02.2023(UTC) Сообщений: 2  Откуда: Moscow
|
Stunnel не работает через прокси с ЭЦП УЦ БР, пробуем напрямую(без прокси), работает! Помогите настроить работу через прокси. Win10x64pro КриптоПро 4.0.99.63 stunnel.x64 Stunnel.conf: verify = 0 output = C:\Stunnel\stunnel_cli.log service = Stunnel socket = l:TCP_NODELAY=1 socket = r:TCP_NODELAY=1 debug = 7 [tls1-client-https-1] client = yes accept = 127.0.0.1:10001 connect = 212.40.208.62:443 cert = C:\Stunnel\cert.cer [tls1-client-https-2] client = yes accept = 127.0.0.1:10002 connect = 212.40.193.62:443 cert = C:\Stunnel\cert.cer
лог:
2023.02.17 16:17:30 LOG5[9704:5008]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket
2023.02.17 16:17:30 LOG7[9704:5008]: free Buffers
2023.02.17 16:17:30 LOG7[9704:5008]: delete c->hContext
2023.02.17 16:17:30 LOG7[9704:5008]: delete c->hClientCreds
2023.02.17 16:17:30 LOG5[9704:5008]: incomp_mess = 0, extra_data = 0
2023.02.17 16:17:30 LOG7[9704:5008]: tls1-client-https-1 finished (0 left)
2023.02.17 16:18:41 LOG5[9816:12380]: stunnel 4.18 on x86-pc-unknown
2023.02.17 16:18:41 LOG5[9816:12380]: Threading:WIN32 Sockets:SELECT,IPv6
2023.02.17 16:18:41 LOG5[9816:12380]: No limit detected for the number of clients
2023.02.17 16:18:41 LOG7[9816:12380]: FD 340 in non-blocking mode
2023.02.17 16:18:41 LOG7[9816:12380]: SO_REUSEADDR option set on accept socket
2023.02.17 16:18:41 LOG7[9816:12380]: tls1-client-https-1 bound to 127.0.0.1:10001
2023.02.17 16:18:41 LOG7[9816:12380]: FD 344 in non-blocking mode
2023.02.17 16:18:41 LOG7[9816:12380]: SO_REUSEADDR option set on accept socket
2023.02.17 16:18:41 LOG7[9816:12380]: tls1-client-https-2 bound to 127.0.0.1:10002
2023.02.17 16:40:10 LOG7[9816:12380]: tls1-client-https-2 accepted FD=328 from 127.0.0.1:50830
2023.02.17 16:40:10 LOG7[9816:12380]: Creating a new thread
2023.02.17 16:40:10 LOG7[9816:12380]: New thread created
2023.02.17 16:40:10 LOG7[9816:32]: client start
2023.02.17 16:40:10 LOG7[9816:32]: tls1-client-https-2 started
2023.02.17 16:40:10 LOG7[9816:32]: FD 328 in non-blocking mode
2023.02.17 16:40:10 LOG7[9816:32]: TCP_NODELAY option set on local socket
2023.02.17 16:40:10 LOG5[9816:32]: tls1-client-https-2 connected from 127.0.0.1:50830
2023.02.17 16:40:10 LOG7[9816:32]: FD 408 in non-blocking mode
2023.02.17 16:40:10 LOG7[9816:32]: tls1-client-https-2 connecting
2023.02.17 16:40:10 LOG7[9816:32]: connect_wait: waiting 10 seconds
2023.02.17 16:40:10 LOG7[9816:32]: connect_wait: connected
2023.02.17 16:40:10 LOG7[9816:32]: Remote FD=408 initialized
2023.02.17 16:40:10 LOG7[9816:32]: TCP_NODELAY option set on remote socket
2023.02.17 16:40:10 LOG7[9816:32]: start SSPI connect
2023.02.17 16:40:10 LOG5[9816:32]: try to read the client certificate
2023.02.17 16:40:10 LOG7[9816:32]: open file C:\Stunnel\cert.cer with certificate
2023.02.17 16:40:10 LOG5[9816:32]: CertFindCertificateInStore not find client certificate in store CURRENT_USER. Looking at LOCAL_MACHINE
2023.02.17 16:40:10 LOG3[9816:32]: Credentials complete
2023.02.17 16:40:10 LOG7[9816:32]: 97 bytes of handshake data sent
2023.02.17 16:40:10 LOG3[9816:32]: **** Error 10054 reading data from server
2023.02.17 16:40:10 LOG3[9816:32]: Error performing handshake
2023.02.17 16:40:10 LOG5[9816:32]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket
2023.02.17 16:40:10 LOG7[9816:32]: free Buffers
2023.02.17 16:40:10 LOG7[9816:32]: delete c->hContext
2023.02.17 16:40:10 LOG7[9816:32]: delete c->hClientCreds
2023.02.17 16:40:10 LOG5[9816:32]: incomp_mess = 0, extra_data = 0
2023.02.17 16:40:10 LOG7[9816:32]: tls1-client-https-2 finished (0 left)
2023.02.17 16:40:10 LOG7[9816:12380]: tls1-client-https-1 accepted FD=604 from 127.0.0.1:50832
2023.02.17 16:40:10 LOG7[9816:12380]: Creating a new thread
2023.02.17 16:40:10 LOG7[9816:12380]: New thread created
2023.02.17 16:40:10 LOG7[9816:2508]: client start
2023.02.17 16:40:10 LOG7[9816:2508]: tls1-client-https-1 started
2023.02.17 16:40:10 LOG7[9816:2508]: FD 604 in non-blocking mode
2023.02.17 16:40:10 LOG7[9816:2508]: TCP_NODELAY option set on local socket
2023.02.17 16:40:10 LOG5[9816:2508]: tls1-client-https-1 connected from 127.0.0.1:50832
2023.02.17 16:40:10 LOG7[9816:2508]: FD 1092 in non-blocking mode
2023.02.17 16:40:10 LOG7[9816:2508]: tls1-client-https-1 connecting
2023.02.17 16:40:10 LOG7[9816:2508]: connect_wait: waiting 10 seconds
2023.02.17 16:40:10 LOG7[9816:2508]: connect_wait: connected
2023.02.17 16:40:10 LOG7[9816:2508]: Remote FD=1092 initialized
2023.02.17 16:40:10 LOG7[9816:2508]: TCP_NODELAY option set on remote socket
2023.02.17 16:40:10 LOG7[9816:2508]: start SSPI connect
2023.02.17 16:40:10 LOG5[9816:2508]: try to read the client certificate
2023.02.17 16:40:10 LOG7[9816:2508]: open file C:\Stunnel\cert.cer with certificate
2023.02.17 16:40:10 LOG5[9816:2508]: CertFindCertificateInStore not find client certificate in store CURRENT_USER. Looking at LOCAL_MACHINE
2023.02.17 16:40:10 LOG3[9816:2508]: Credentials complete
2023.02.17 16:40:10 LOG7[9816:2508]: 97 bytes of handshake data sent
2023.02.17 16:40:10 LOG3[9816:2508]: **** Error 10054 reading data from server
2023.02.17 16:40:10 LOG3[9816:2508]: Error performing handshake
2023.02.17 16:40:10 LOG5[9816:2508]: Connection reset: 0 bytes sent to SSL, 0 bytes sent to socket
2023.02.17 16:40:10 LOG7[9816:2508]: free Buffers
2023.02.17 16:40:10 LOG7[9816:2508]: delete c->hContext
2023.02.17 16:40:10 LOG7[9816:2508]: delete c->hClientCreds
2023.02.17 16:40:10 LOG5[9816:2508]: incomp_mess = 0, extra_data = 0
2023.02.17 16:40:10 LOG7[9816:2508]: tls1-client-https-1 finished (0 left)
Отредактировано пользователем 20 февраля 2023 г. 12:55:58(UTC)
| Причина: Не указана
|
|
|
|
|
|
Статус: Сотрудник
Группы: Администраторы
Зарегистрирован: 12.12.2007(UTC) Сообщений: 6,391  Откуда: КРИПТО-ПРО Сказал «Спасибо»: 37 раз
Поблагодарили: 715 раз в 620 постах
|
|
|
|
|
|
|
|
Статус: Новичок
Группы: Участники
Зарегистрирован: 16.02.2023(UTC) Сообщений: 2 Откуда: Moscow
|
Автор: Максим Коллегин  Попробовал, тунель поднимается и закрывается, при попытке проставить штамп ошибка по таймауту https://www.cryptopro.ru.../cades_xlong_sample.html
2023.02.20 12:27:20 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:27:20 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:27:20 LOG7[main]: FD=1224 ifds=r-x ofds=r--
2023.02.20 12:27:20 LOG7[main]: FD=1256 ifds=r-x ofds=---
2023.02.20 12:27:20 LOG7[main]: Service [tls1-client-https-1] accepted (FD=1748) from 127.0.0.1:65392
2023.02.20 12:27:20 LOG7[main]: Creating a new thread
2023.02.20 12:27:20 LOG7[main]: New thread created
2023.02.20 12:27:20 LOG7[19]: Service [tls1-client-https-1] started
2023.02.20 12:27:20 LOG7[19]: Setting local socket options (FD=1748)
2023.02.20 12:27:20 LOG7[19]: Option TCP_NODELAY set on local socket
2023.02.20 12:27:20 LOG5[19]: Service [tls1-client-https-1] accepted connection from 127.0.0.1:65392
2023.02.20 12:27:20 LOG6[19]: s_connect: connecting 172.30.16.110:8080
2023.02.20 12:27:20 LOG7[19]: s_connect: s_poll_wait 172.30.16.110:8080: waiting 10 seconds
2023.02.20 12:27:20 LOG7[19]: FD=1660 ifds=rwx ofds=---
2023.02.20 12:27:20 LOG5[19]: s_connect: connected 172.30.16.110:8080
2023.02.20 12:27:20 LOG5[19]: Service [tls1-client-https-1] connected remote server from 10.3.2.32:65393
2023.02.20 12:27:20 LOG7[19]: Setting remote socket options (FD=1660)
2023.02.20 12:27:20 LOG7[19]: Option TCP_NODELAY set on remote socket
2023.02.20 12:27:20 LOG7[19]: Remote descriptor (FD=1660) initialized
2023.02.20 12:27:20 LOG7[19]: -> CONNECT 212.40.208.62:443 HTTP/1.1
2023.02.20 12:27:20 LOG7[19]: -> Host: 212.40.208.62:443
2023.02.20 12:27:20 LOG7[19]: ->
2023.02.20 12:27:20 LOG7[19]: <- HTTP/1.0 200 Connection established
2023.02.20 12:27:20 LOG6[19]: CONNECT request accepted
2023.02.20 12:27:20 LOG7[19]: <-
2023.02.20 12:27:20 LOG6[19]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:27:20 LOG6[19]: Peer certificate not required
2023.02.20 12:27:20 LOG6[19]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:27:25 LOG6[18]: TLS closed (SSL_read)
2023.02.20 12:27:25 LOG7[18]: Sent socket write shutdown
2023.02.20 12:27:25 LOG6[18]: Read socket closed (readsocket)
2023.02.20 12:27:25 LOG7[18]: Sending close_notify alert
2023.02.20 12:27:25 LOG6[18]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:27:25 LOG5[18]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:27:25 LOG7[18]: Remote descriptor (FD=1696) closed
2023.02.20 12:27:25 LOG7[18]: Local descriptor (FD=1688) closed
2023.02.20 12:27:25 LOG7[18]: Service [tls1-client-https-2] finished (1 left)
2023.02.20 12:27:25 LOG6[19]: TLS closed (SSL_read)
2023.02.20 12:27:25 LOG7[19]: Sent socket write shutdown
2023.02.20 12:27:25 LOG6[19]: Read socket closed (readsocket)
2023.02.20 12:27:25 LOG7[19]: Sending close_notify alert
2023.02.20 12:27:25 LOG6[19]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:27:25 LOG5[19]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:27:25 LOG7[19]: Remote descriptor (FD=1660) closed
2023.02.20 12:27:25 LOG7[19]: Local descriptor (FD=1748) closed
2023.02.20 12:27:25 LOG7[19]: Service [tls1-client-https-1] finished (0 left)
2023.02.20 12:28:56 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:28:56 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:28:56 LOG7[main]: FD=1224 ifds=r-x ofds=---
2023.02.20 12:28:56 LOG7[main]: FD=1256 ifds=r-x ofds=r--
2023.02.20 12:28:56 LOG7[main]: Service [tls1-client-https-2] accepted (FD=1704) from 127.0.0.1:65447
2023.02.20 12:28:56 LOG7[main]: Creating a new thread
2023.02.20 12:28:56 LOG7[main]: New thread created
2023.02.20 12:28:56 LOG7[20]: Service [tls1-client-https-2] started
2023.02.20 12:28:56 LOG7[20]: Setting local socket options (FD=1704)
2023.02.20 12:28:56 LOG7[20]: Option TCP_NODELAY set on local socket
2023.02.20 12:28:56 LOG5[20]: Service [tls1-client-https-2] accepted connection from 127.0.0.1:65447
2023.02.20 12:28:56 LOG6[20]: s_connect: connecting 172.30.16.110:8080
2023.02.20 12:28:56 LOG7[20]: s_connect: s_poll_wait 172.30.16.110:8080: waiting 10 seconds
2023.02.20 12:28:56 LOG7[20]: FD=1668 ifds=rwx ofds=---
2023.02.20 12:28:56 LOG5[20]: s_connect: connected 172.30.16.110:8080
2023.02.20 12:28:56 LOG5[20]: Service [tls1-client-https-2] connected remote server from 10.3.2.32:65448
2023.02.20 12:28:56 LOG7[20]: Setting remote socket options (FD=1668)
2023.02.20 12:28:56 LOG7[20]: Option TCP_NODELAY set on remote socket
2023.02.20 12:28:56 LOG7[20]: Remote descriptor (FD=1668) initialized
2023.02.20 12:28:56 LOG7[20]: -> CONNECT 212.40.193.62:443 HTTP/1.1
2023.02.20 12:28:56 LOG7[20]: -> Host: 212.40.193.62:443
2023.02.20 12:28:56 LOG7[20]: ->
2023.02.20 12:28:57 LOG7[20]: <- HTTP/1.0 200 Connection established
2023.02.20 12:28:57 LOG6[20]: CONNECT request accepted
2023.02.20 12:28:57 LOG7[20]: <-
2023.02.20 12:28:57 LOG6[20]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:28:57 LOG6[20]: Peer certificate not required
2023.02.20 12:28:57 LOG6[20]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:28:57 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:28:57 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:28:57 LOG7[main]: FD=1224 ifds=r-x ofds=r--
2023.02.20 12:28:57 LOG7[main]: FD=1256 ifds=r-x ofds=---
2023.02.20 12:28:57 LOG7[main]: Service [tls1-client-https-1] accepted (FD=1768) from 127.0.0.1:65450
2023.02.20 12:28:57 LOG7[main]: Creating a new thread
2023.02.20 12:28:57 LOG7[main]: New thread created
2023.02.20 12:28:57 LOG7[21]: Service [tls1-client-https-1] started
2023.02.20 12:28:57 LOG7[21]: Setting local socket options (FD=1768)
2023.02.20 12:28:57 LOG7[21]: Option TCP_NODELAY set on local socket
2023.02.20 12:28:57 LOG5[21]: Service [tls1-client-https-1] accepted connection from 127.0.0.1:65450
2023.02.20 12:28:57 LOG6[21]: s_connect: connecting 172.30.16.110:8080
2023.02.20 12:28:57 LOG7[21]: s_connect: s_poll_wait 172.30.16.110:8080: waiting 10 seconds
2023.02.20 12:28:57 LOG7[21]: FD=1792 ifds=rwx ofds=---
2023.02.20 12:28:57 LOG5[21]: s_connect: connected 172.30.16.110:8080
2023.02.20 12:28:57 LOG5[21]: Service [tls1-client-https-1] connected remote server from 10.3.2.32:65451
2023.02.20 12:28:57 LOG7[21]: Setting remote socket options (FD=1792)
2023.02.20 12:28:57 LOG7[21]: Option TCP_NODELAY set on remote socket
2023.02.20 12:28:57 LOG7[21]: Remote descriptor (FD=1792) initialized
2023.02.20 12:28:57 LOG7[21]: -> CONNECT 212.40.208.62:443 HTTP/1.1
2023.02.20 12:28:57 LOG7[21]: -> Host: 212.40.208.62:443
2023.02.20 12:28:57 LOG7[21]: ->
2023.02.20 12:28:57 LOG7[21]: <- HTTP/1.0 200 Connection established
2023.02.20 12:28:57 LOG6[21]: CONNECT request accepted
2023.02.20 12:28:57 LOG7[21]: <-
2023.02.20 12:28:57 LOG6[21]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:28:57 LOG6[21]: Peer certificate not required
2023.02.20 12:28:57 LOG6[21]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:29:02 LOG6[20]: TLS closed (SSL_read)
2023.02.20 12:29:02 LOG7[20]: Sent socket write shutdown
2023.02.20 12:29:02 LOG6[20]: Read socket closed (readsocket)
2023.02.20 12:29:02 LOG7[20]: Sending close_notify alert
2023.02.20 12:29:02 LOG6[20]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:29:02 LOG5[20]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:29:02 LOG7[20]: Remote descriptor (FD=1668) closed
2023.02.20 12:29:02 LOG7[20]: Local descriptor (FD=1704) closed
2023.02.20 12:29:02 LOG7[20]: Service [tls1-client-https-2] finished (1 left)
2023.02.20 12:29:02 LOG6[21]: TLS closed (SSL_read)
2023.02.20 12:29:02 LOG7[21]: Sent socket write shutdown
2023.02.20 12:29:02 LOG6[21]: Read socket closed (readsocket)
2023.02.20 12:29:02 LOG7[21]: Sending close_notify alert
2023.02.20 12:29:02 LOG6[21]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:29:02 LOG5[21]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:29:02 LOG7[21]: Remote descriptor (FD=1792) closed
2023.02.20 12:29:02 LOG7[21]: Local descriptor (FD=1768) closed
2023.02.20 12:29:02 LOG7[21]: Service [tls1-client-https-1] finished (0 left)
2023.02.20 12:30:00 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:30:00 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: FD=1224 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: FD=1256 ifds=r-x ofds=r--
2023.02.20 12:30:00 LOG7[main]: Service [tls1-client-https-2] accepted (FD=1800) from 127.0.0.1:63310
2023.02.20 12:30:00 LOG7[main]: Creating a new thread
2023.02.20 12:30:00 LOG7[main]: New thread created
2023.02.20 12:30:00 LOG7[22]: Service [tls1-client-https-2] started
2023.02.20 12:30:00 LOG7[22]: Setting local socket options (FD=1800)
2023.02.20 12:30:00 LOG7[22]: Option TCP_NODELAY set on local socket
2023.02.20 12:30:00 LOG5[22]: Service [tls1-client-https-2] accepted connection from 127.0.0.1:63310
2023.02.20 12:30:00 LOG6[22]: s_connect: connecting 172.30.16.110:8080
2023.02.20 12:30:00 LOG7[22]: s_connect: s_poll_wait 172.30.16.110:8080: waiting 10 seconds
2023.02.20 12:30:00 LOG7[22]: FD=1848 ifds=rwx ofds=---
2023.02.20 12:30:00 LOG5[22]: s_connect: connected 172.30.16.110:8080
2023.02.20 12:30:00 LOG5[22]: Service [tls1-client-https-2] connected remote server from 10.3.2.32:63311
2023.02.20 12:30:00 LOG7[22]: Setting remote socket options (FD=1848)
2023.02.20 12:30:00 LOG7[22]: Option TCP_NODELAY set on remote socket
2023.02.20 12:30:00 LOG7[22]: Remote descriptor (FD=1848) initialized
2023.02.20 12:30:00 LOG7[22]: -> CONNECT 212.40.193.62:443 HTTP/1.1
2023.02.20 12:30:00 LOG7[22]: -> Host: 212.40.193.62:443
2023.02.20 12:30:00 LOG7[22]: ->
2023.02.20 12:30:00 LOG7[22]: <- HTTP/1.0 200 Connection established
2023.02.20 12:30:00 LOG6[22]: CONNECT request accepted
2023.02.20 12:30:00 LOG7[22]: <-
2023.02.20 12:30:00 LOG6[22]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:30:00 LOG6[22]: Peer certificate not required
2023.02.20 12:30:00 LOG6[22]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:30:00 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:30:00 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: FD=1224 ifds=r-x ofds=r--
2023.02.20 12:30:00 LOG7[main]: FD=1256 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: Service [tls1-client-https-1] accepted (FD=1796) from 127.0.0.1:63312
2023.02.20 12:30:00 LOG7[main]: Creating a new thread
2023.02.20 12:30:00 LOG7[main]: New thread created
2023.02.20 12:30:00 LOG7[23]: Service [tls1-client-https-1] started
2023.02.20 12:30:00 LOG7[23]: Setting local socket options (FD=1796)
2023.02.20 12:30:00 LOG7[23]: Option TCP_NODELAY set on local socket
2023.02.20 12:30:00 LOG5[23]: Service [tls1-client-https-1] accepted connection from 127.0.0.1:63312
2023.02.20 12:30:00 LOG6[23]: s_connect: connecting 172.30.16.110:8080
2023.02.20 12:30:00 LOG7[23]: s_connect: s_poll_wait 172.30.16.110:8080: waiting 10 seconds
2023.02.20 12:30:00 LOG7[23]: FD=1648 ifds=rwx ofds=---
2023.02.20 12:30:00 LOG5[23]: s_connect: connected 172.30.16.110:8080
2023.02.20 12:30:00 LOG5[23]: Service [tls1-client-https-1] connected remote server from 10.3.2.32:63313
2023.02.20 12:30:00 LOG7[23]: Setting remote socket options (FD=1648)
2023.02.20 12:30:00 LOG7[23]: Option TCP_NODELAY set on remote socket
2023.02.20 12:30:00 LOG7[23]: Remote descriptor (FD=1648) initialized
2023.02.20 12:30:00 LOG7[23]: -> CONNECT 212.40.208.62:443 HTTP/1.1
2023.02.20 12:30:00 LOG7[23]: -> Host: 212.40.208.62:443
2023.02.20 12:30:00 LOG7[23]: ->
2023.02.20 12:30:00 LOG7[23]: <- HTTP/1.0 200 Connection established
2023.02.20 12:30:00 LOG6[23]: CONNECT request accepted
2023.02.20 12:30:00 LOG7[23]: <-
2023.02.20 12:30:00 LOG6[23]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:30:00 LOG6[23]: Peer certificate not required
2023.02.20 12:30:00 LOG6[23]: msspi: TLSv1.2 connected (FF85)
Отредактировано пользователем 21 февраля 2023 г. 10:22:19(UTC)
| Причина: Не указана
|
|
|
|
|
|
Статус: Сотрудник
Группы: Администраторы
Зарегистрирован: 16.09.2010(UTC)
Сообщений: 1,496
Откуда: КРИПТО-ПРО
Сказал(а) «Спасибо»: 35 раз
Поблагодарили: 466 раз в 333 постах
|
Автор: KiselevSV7777 Автор: Максим Коллегин Попробовал, тунель поднимается и закрывается, при попытке проставить штамп ошибка по таймауту https://www.cryptopro.ru.../cades_xlong_sample.html
2023.02.20 12:27:20 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:27:20 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:27:20 LOG7[main]: FD=1224 ifds=r-x ofds=r--
2023.02.20 12:27:20 LOG7[main]: FD=1256 ifds=r-x ofds=---
2023.02.20 12:27:20 LOG7[main]: Service [tls1-client-https-1] accepted (FD=1748) from 127.0.0.1:65392
2023.02.20 12:27:20 LOG7[main]: Creating a new thread
2023.02.20 12:27:20 LOG7[main]: New thread created
2023.02.20 12:27:20 LOG7[19]: Service [tls1-client-https-1] started
2023.02.20 12:27:20 LOG7[19]: Setting local socket options (FD=1748)
2023.02.20 12:27:20 LOG7[19]: Option TCP_NODELAY set on local socket
2023.02.20 12:27:20 LOG5[19]: Service [tls1-client-https-1] accepted connection from 127.0.0.1:65392
2023.02.20 12:27:20 LOG6[19]: s_connect: connecting 172.30.12.121:8080
2023.02.20 12:27:20 LOG7[19]: s_connect: s_poll_wait 172.30.12.121:8080: waiting 10 seconds
2023.02.20 12:27:20 LOG7[19]: FD=1660 ifds=rwx ofds=---
2023.02.20 12:27:20 LOG5[19]: s_connect: connected 172.30.12.121:8080
2023.02.20 12:27:20 LOG5[19]: Service [tls1-client-https-1] connected remote server from 10.3.2.86:65393
2023.02.20 12:27:20 LOG7[19]: Setting remote socket options (FD=1660)
2023.02.20 12:27:20 LOG7[19]: Option TCP_NODELAY set on remote socket
2023.02.20 12:27:20 LOG7[19]: Remote descriptor (FD=1660) initialized
2023.02.20 12:27:20 LOG7[19]: -> CONNECT 212.40.208.62:443 HTTP/1.1
2023.02.20 12:27:20 LOG7[19]: -> Host: 212.40.208.62:443
2023.02.20 12:27:20 LOG7[19]: ->
2023.02.20 12:27:20 LOG7[19]: <- HTTP/1.0 200 Connection established
2023.02.20 12:27:20 LOG6[19]: CONNECT request accepted
2023.02.20 12:27:20 LOG7[19]: <-
2023.02.20 12:27:20 LOG6[19]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:27:20 LOG6[19]: Peer certificate not required
2023.02.20 12:27:20 LOG6[19]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:27:25 LOG6[18]: TLS closed (SSL_read)
2023.02.20 12:27:25 LOG7[18]: Sent socket write shutdown
2023.02.20 12:27:25 LOG6[18]: Read socket closed (readsocket)
2023.02.20 12:27:25 LOG7[18]: Sending close_notify alert
2023.02.20 12:27:25 LOG6[18]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:27:25 LOG5[18]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:27:25 LOG7[18]: Remote descriptor (FD=1696) closed
2023.02.20 12:27:25 LOG7[18]: Local descriptor (FD=1688) closed
2023.02.20 12:27:25 LOG7[18]: Service [tls1-client-https-2] finished (1 left)
2023.02.20 12:27:25 LOG6[19]: TLS closed (SSL_read)
2023.02.20 12:27:25 LOG7[19]: Sent socket write shutdown
2023.02.20 12:27:25 LOG6[19]: Read socket closed (readsocket)
2023.02.20 12:27:25 LOG7[19]: Sending close_notify alert
2023.02.20 12:27:25 LOG6[19]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:27:25 LOG5[19]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:27:25 LOG7[19]: Remote descriptor (FD=1660) closed
2023.02.20 12:27:25 LOG7[19]: Local descriptor (FD=1748) closed
2023.02.20 12:27:25 LOG7[19]: Service [tls1-client-https-1] finished (0 left)
2023.02.20 12:28:56 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:28:56 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:28:56 LOG7[main]: FD=1224 ifds=r-x ofds=---
2023.02.20 12:28:56 LOG7[main]: FD=1256 ifds=r-x ofds=r--
2023.02.20 12:28:56 LOG7[main]: Service [tls1-client-https-2] accepted (FD=1704) from 127.0.0.1:65447
2023.02.20 12:28:56 LOG7[main]: Creating a new thread
2023.02.20 12:28:56 LOG7[main]: New thread created
2023.02.20 12:28:56 LOG7[20]: Service [tls1-client-https-2] started
2023.02.20 12:28:56 LOG7[20]: Setting local socket options (FD=1704)
2023.02.20 12:28:56 LOG7[20]: Option TCP_NODELAY set on local socket
2023.02.20 12:28:56 LOG5[20]: Service [tls1-client-https-2] accepted connection from 127.0.0.1:65447
2023.02.20 12:28:56 LOG6[20]: s_connect: connecting 172.30.12.121:8080
2023.02.20 12:28:56 LOG7[20]: s_connect: s_poll_wait 172.30.12.121:8080: waiting 10 seconds
2023.02.20 12:28:56 LOG7[20]: FD=1668 ifds=rwx ofds=---
2023.02.20 12:28:56 LOG5[20]: s_connect: connected 172.30.12.121:8080
2023.02.20 12:28:56 LOG5[20]: Service [tls1-client-https-2] connected remote server from 10.3.2.86:65448
2023.02.20 12:28:56 LOG7[20]: Setting remote socket options (FD=1668)
2023.02.20 12:28:56 LOG7[20]: Option TCP_NODELAY set on remote socket
2023.02.20 12:28:56 LOG7[20]: Remote descriptor (FD=1668) initialized
2023.02.20 12:28:56 LOG7[20]: -> CONNECT 212.40.193.62:443 HTTP/1.1
2023.02.20 12:28:56 LOG7[20]: -> Host: 212.40.193.62:443
2023.02.20 12:28:56 LOG7[20]: ->
2023.02.20 12:28:57 LOG7[20]: <- HTTP/1.0 200 Connection established
2023.02.20 12:28:57 LOG6[20]: CONNECT request accepted
2023.02.20 12:28:57 LOG7[20]: <-
2023.02.20 12:28:57 LOG6[20]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:28:57 LOG6[20]: Peer certificate not required
2023.02.20 12:28:57 LOG6[20]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:28:57 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:28:57 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:28:57 LOG7[main]: FD=1224 ifds=r-x ofds=r--
2023.02.20 12:28:57 LOG7[main]: FD=1256 ifds=r-x ofds=---
2023.02.20 12:28:57 LOG7[main]: Service [tls1-client-https-1] accepted (FD=1768) from 127.0.0.1:65450
2023.02.20 12:28:57 LOG7[main]: Creating a new thread
2023.02.20 12:28:57 LOG7[main]: New thread created
2023.02.20 12:28:57 LOG7[21]: Service [tls1-client-https-1] started
2023.02.20 12:28:57 LOG7[21]: Setting local socket options (FD=1768)
2023.02.20 12:28:57 LOG7[21]: Option TCP_NODELAY set on local socket
2023.02.20 12:28:57 LOG5[21]: Service [tls1-client-https-1] accepted connection from 127.0.0.1:65450
2023.02.20 12:28:57 LOG6[21]: s_connect: connecting 172.30.12.121:8080
2023.02.20 12:28:57 LOG7[21]: s_connect: s_poll_wait 172.30.12.121:8080: waiting 10 seconds
2023.02.20 12:28:57 LOG7[21]: FD=1792 ifds=rwx ofds=---
2023.02.20 12:28:57 LOG5[21]: s_connect: connected 172.30.12.121:8080
2023.02.20 12:28:57 LOG5[21]: Service [tls1-client-https-1] connected remote server from 10.3.2.86:65451
2023.02.20 12:28:57 LOG7[21]: Setting remote socket options (FD=1792)
2023.02.20 12:28:57 LOG7[21]: Option TCP_NODELAY set on remote socket
2023.02.20 12:28:57 LOG7[21]: Remote descriptor (FD=1792) initialized
2023.02.20 12:28:57 LOG7[21]: -> CONNECT 212.40.208.62:443 HTTP/1.1
2023.02.20 12:28:57 LOG7[21]: -> Host: 212.40.208.62:443
2023.02.20 12:28:57 LOG7[21]: ->
2023.02.20 12:28:57 LOG7[21]: <- HTTP/1.0 200 Connection established
2023.02.20 12:28:57 LOG6[21]: CONNECT request accepted
2023.02.20 12:28:57 LOG7[21]: <-
2023.02.20 12:28:57 LOG6[21]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:28:57 LOG6[21]: Peer certificate not required
2023.02.20 12:28:57 LOG6[21]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:29:02 LOG6[20]: TLS closed (SSL_read)
2023.02.20 12:29:02 LOG7[20]: Sent socket write shutdown
2023.02.20 12:29:02 LOG6[20]: Read socket closed (readsocket)
2023.02.20 12:29:02 LOG7[20]: Sending close_notify alert
2023.02.20 12:29:02 LOG6[20]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:29:02 LOG5[20]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:29:02 LOG7[20]: Remote descriptor (FD=1668) closed
2023.02.20 12:29:02 LOG7[20]: Local descriptor (FD=1704) closed
2023.02.20 12:29:02 LOG7[20]: Service [tls1-client-https-2] finished (1 left)
2023.02.20 12:29:02 LOG6[21]: TLS closed (SSL_read)
2023.02.20 12:29:02 LOG7[21]: Sent socket write shutdown
2023.02.20 12:29:02 LOG6[21]: Read socket closed (readsocket)
2023.02.20 12:29:02 LOG7[21]: Sending close_notify alert
2023.02.20 12:29:02 LOG6[21]: SSL_shutdown successfully sent close_notify alert
2023.02.20 12:29:02 LOG5[21]: Connection closed: 277 byte(s) sent to TLS, 209 byte(s) sent to socket
2023.02.20 12:29:02 LOG7[21]: Remote descriptor (FD=1792) closed
2023.02.20 12:29:02 LOG7[21]: Local descriptor (FD=1768) closed
2023.02.20 12:29:02 LOG7[21]: Service [tls1-client-https-1] finished (0 left)
2023.02.20 12:30:00 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:30:00 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: FD=1224 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: FD=1256 ifds=r-x ofds=r--
2023.02.20 12:30:00 LOG7[main]: Service [tls1-client-https-2] accepted (FD=1800) from 127.0.0.1:63310
2023.02.20 12:30:00 LOG7[main]: Creating a new thread
2023.02.20 12:30:00 LOG7[main]: New thread created
2023.02.20 12:30:00 LOG7[22]: Service [tls1-client-https-2] started
2023.02.20 12:30:00 LOG7[22]: Setting local socket options (FD=1800)
2023.02.20 12:30:00 LOG7[22]: Option TCP_NODELAY set on local socket
2023.02.20 12:30:00 LOG5[22]: Service [tls1-client-https-2] accepted connection from 127.0.0.1:63310
2023.02.20 12:30:00 LOG6[22]: s_connect: connecting 172.30.12.121:8080
2023.02.20 12:30:00 LOG7[22]: s_connect: s_poll_wait 172.30.12.121:8080: waiting 10 seconds
2023.02.20 12:30:00 LOG7[22]: FD=1848 ifds=rwx ofds=---
2023.02.20 12:30:00 LOG5[22]: s_connect: connected 172.30.12.121:8080
2023.02.20 12:30:00 LOG5[22]: Service [tls1-client-https-2] connected remote server from 10.3.2.86:63311
2023.02.20 12:30:00 LOG7[22]: Setting remote socket options (FD=1848)
2023.02.20 12:30:00 LOG7[22]: Option TCP_NODELAY set on remote socket
2023.02.20 12:30:00 LOG7[22]: Remote descriptor (FD=1848) initialized
2023.02.20 12:30:00 LOG7[22]: -> CONNECT 212.40.193.62:443 HTTP/1.1
2023.02.20 12:30:00 LOG7[22]: -> Host: 212.40.193.62:443
2023.02.20 12:30:00 LOG7[22]: ->
2023.02.20 12:30:00 LOG7[22]: <- HTTP/1.0 200 Connection established
2023.02.20 12:30:00 LOG6[22]: CONNECT request accepted
2023.02.20 12:30:00 LOG7[22]: <-
2023.02.20 12:30:00 LOG6[22]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:30:00 LOG6[22]: Peer certificate not required
2023.02.20 12:30:00 LOG6[22]: msspi: TLSv1.2 connected (FF85)
2023.02.20 12:30:00 LOG7[main]: Found 1 ready file descriptor(s)
2023.02.20 12:30:00 LOG7[main]: FD=860 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: FD=1224 ifds=r-x ofds=r--
2023.02.20 12:30:00 LOG7[main]: FD=1256 ifds=r-x ofds=---
2023.02.20 12:30:00 LOG7[main]: Service [tls1-client-https-1] accepted (FD=1796) from 127.0.0.1:63312
2023.02.20 12:30:00 LOG7[main]: Creating a new thread
2023.02.20 12:30:00 LOG7[main]: New thread created
2023.02.20 12:30:00 LOG7[23]: Service [tls1-client-https-1] started
2023.02.20 12:30:00 LOG7[23]: Setting local socket options (FD=1796)
2023.02.20 12:30:00 LOG7[23]: Option TCP_NODELAY set on local socket
2023.02.20 12:30:00 LOG5[23]: Service [tls1-client-https-1] accepted connection from 127.0.0.1:63312
2023.02.20 12:30:00 LOG6[23]: s_connect: connecting 172.30.12.121:8080
2023.02.20 12:30:00 LOG7[23]: s_connect: s_poll_wait 172.30.12.121:8080: waiting 10 seconds
2023.02.20 12:30:00 LOG7[23]: FD=1648 ifds=rwx ofds=---
2023.02.20 12:30:00 LOG5[23]: s_connect: connected 172.30.12.121:8080
2023.02.20 12:30:00 LOG5[23]: Service [tls1-client-https-1] connected remote server from 10.3.2.86:63313
2023.02.20 12:30:00 LOG7[23]: Setting remote socket options (FD=1648)
2023.02.20 12:30:00 LOG7[23]: Option TCP_NODELAY set on remote socket
2023.02.20 12:30:00 LOG7[23]: Remote descriptor (FD=1648) initialized
2023.02.20 12:30:00 LOG7[23]: -> CONNECT 212.40.208.62:443 HTTP/1.1
2023.02.20 12:30:00 LOG7[23]: -> Host: 212.40.208.62:443
2023.02.20 12:30:00 LOG7[23]: ->
2023.02.20 12:30:00 LOG7[23]: <- HTTP/1.0 200 Connection established
2023.02.20 12:30:00 LOG6[23]: CONNECT request accepted
2023.02.20 12:30:00 LOG7[23]: <-
2023.02.20 12:30:00 LOG6[23]: msspi: try open cert = "C:\Stunnel\cert.cer" as file
2023.02.20 12:30:00 LOG6[23]: Peer certificate not required
2023.02.20 12:30:00 LOG6[23]: msspi: TLSv1.2 connected (FF85)
Ошибок не видно, сервер вас отключает через 5 секунд после подключения, возможно необходимо уточнить host/hostname/sni в конфигурации, чтобы сервер вас направил в правильное место своей конфигурации, сейчас у вас ip:port. |
|
|
|
|
|
|
Быстрый переход
Вы не можете создавать новые темы в этом форуме.
Вы не можете отвечать в этом форуме.
Вы не можете удалять Ваши сообщения в этом форуме.
Вы не можете редактировать Ваши сообщения в этом форуме.
Вы не можете создавать опросы в этом форуме.
Вы не можете голосовать в этом форуме.
Important Information:
The Форум КриптоПро uses cookies. By continuing to browse this site, you are agreeing to our use of cookies.
More Details
Close
