11316 questions

13488 answers

21160 comments

31581 members

0 votes
145 views 2 comments
by

HI,

I'm trying to establish a OpenVPn connection via Stunnel like it described here:

https://wiki.teltonika-networks.com/view/OpenVPN_over_Stunnel_RUT240

A connection OpenVPN Client to Server without the Stunnel is working. But if I try to get Stunnel in place, no connection is made...

Within the clients System Log I see the following entries:

Mon Nov 15 20:16:07 2021 user.info Messaged[1084]: Start from new event "CONFIG" "STunnel configuration has been changed"
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: Terminated
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: stunnel 5.50 on mips-openwrt-linux-gnu platform
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: Compiled/running with OpenSSL 1.1.1k  25 Mar 2021
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: Threading:PTHREAD Sockets:POLL,IPv6 TLS:ENGINE,FIPS,OCSP,PSK,SNI
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: Reading configuration from file /tmp/etc/stunnel.conf
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: UTF-8 byte order mark not detected
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: FIPS mode disabled
Mon Nov 15 20:16:08 2021 daemon.warn stunnel: LOG4[ui]: Insecure file permissions on /lib/uci/upload/cbid.stunnel.gbach1.key
Mon Nov 15 20:16:08 2021 daemon.warn stunnel: LOG4[ui]: Service [gbach1] needs authentication to prevent MITM attacks
Mon Nov 15 20:16:08 2021 daemon.notice stunnel: LOG5[ui]: Configuration successful

I used the certificate and key files generated and used for the OpenVPN settings. But this seems not work - also - for the Stunnel setting...!?

What is the trick here?

Thanks


Ralf

PS: I use two RUT240 with latest FW 1.14.4

by
Has anyone a stunnel connection between RUT-devices up and running?

Is the stunnel setup (described here: https://wiki.teltonika-networks.com/view/OpenVPN_over_Stunnel_RUT240) correct or does it miss a point?

Thanks

Ralf
by
Hello,

It would be great if you could replicate the issue you are currently having, then access router's WebUI, go to SYSTEM > ADMINISTRATION > TROUBLESHOOT section, download troubleshoot file from there and send it to us.

Just, make sure that troubleshoot file is generated when the issue is present and before a reboot (So it can be seen in the logs).   

Regards.

1 Answer

0 votes
by

  ago by Hello,


It would be great if you could replicate the issue you are currently having, then access router's WebUI, go to SYSTEM > ADMINISTRATION > TROUBLESHOOT section, download troubleshoot file from there and send it to us.

Just, make sure that troubleshoot file is generated when the issue is present and before a reboot (So it can be seen in the logs).   

Regards.