Stunnel github
![stunnel github stunnel github](https://scottiestech.info/wp-content/uploads/2020/06/stunnel_bad_magic_ssl.jpg)
Trust path is correctly configured on each side, so both squid trust certificates from client, and client trust squid's certificate on each level - Root CA and intermediate CA.Ĭonfiguration of stunnel: sslVersion=TLSv1.2Ĭert = /etc/letsencrypt/live/test.internal/fullchain.pem I am setting up architecture of stunnel installed on client which leads to squid proxy with x509 Certificate authentication.Ĭlient setup stunnel with his certificate which connects to squid, then set up HTTP_PROXY to aim for stunnel endpoint at localhost.
![stunnel github stunnel github](https://bfyyg.memsko.pl/templates/57f9e8d318a8c822f6d28974872853fd/img/c24dfe32dd12ac11d1c296758e910964.png)
Using raw connection e.g openssl s_client -key -cert -connect using direct communication to squid works properly.wget ) per 5 minutes (or stunnel restart) work rest got connection reset by peer
![stunnel github stunnel github](https://foel.codzienneorigami.pl/templates/f16dc396e088c7c707eabe9d7479e7a2/img/866f0615c3e5d010bafc35caf60c4804.jpg)
wget configured to use localhost as proxy ( stunnel).Squid and stunnel configured and started.Configuration with stunnel on client which connect to squid proxy with x509 certificate authentication work only for one request per 5minutes.