SSL - problem with localhost

pstruh22 · Post by **pstruh22** » Wed Feb 23, 2005 7:55 pm

Hi,
i have a little problem
I am connecting via SSL to IRCD, its working perfect.
but when i joined the channel my local host IP address is IP of IRCD server.
I like to view real IP from client who is connect to server, Its possible?

I use this command:

./stunnel -c -d irc.server.com:6668 -r irc.server.com:6697

This is output:

nick is [email protected] * pstruh
nick is connecting from *@irc.server.com IP.IP.IP.IP
nick on @#mtf
nick using irc.server
nick is a Secure Connection
nick has been idle 10secs, signed on Wed Feb 23 20:47:12
nick End of /WHOIS list.

I cant see real IP of nick, only IP irc.server.com.

I want to see,

nick is [email protected] * pstruh
nick is connecting from *@real.IP.of.client IP.IP.IP.IP

but I dont know how can I fix it.

Thanks.

Stealth · Post by **Stealth** » Wed Feb 23, 2005 8:51 pm

I am not sure about how stunnel works or how you are using it, but I do know that it is obsolete.

If you are trying to make it so people can connect to your IRCd using SSL, compile Unreal with SSL support and make a listen block with SSL.

If you are trying to use stunnel with your client on your local machine, look for an upgrade to your client. Most clients support SSL.

pstruh22 · Post by **pstruh22** » Thu Feb 24, 2005 8:29 am

Stunnel is working.
I have other problem. All clients on irc have same IP address, they have IP address like IRCserver and I dont kwow their real IP.

Stealth · Post by **Stealth** » Thu Feb 24, 2005 8:50 am

So it appears you have it set up like this...

Clients connect to Stunnel
Stunnel forwards the connection to the server
Stunnel's IP is used as the clients IP

It seems as your Stunnel is acting as a proxy. Like I said, compile Unreal with SSL support, and listen on a SSL port for client connections. Anything with Stunnel cannot be supported, because it isnt Unreal!

pstruh22 · Post by **pstruh22** » Mon Feb 28, 2005 9:01 pm

I have Unreal3.2.2b with SSL support, openssl-0.9.7e, stunnel-4.07 and OS is Linux Red Hat 7.1, 2.4.2-2 kernel

Stealth · Post by **Stealth** » Mon Feb 28, 2005 10:24 pm

So then why are you using Stunnel?!

Just open a port with the IRCd that is SSL, like this:

Code: Select all

listen *:6697 { options { ssl; }; };

pstruh22 · Post by **pstruh22** » Tue Mar 01, 2005 11:08 pm

Stealth wrote:So then why are you using Stunnel?!

Just open a port with the IRCd that is SSL, like this:
Code: Select all
listen *:6697 { options { ssl; }; };

My listen box is same like this. If I try to connect on port 6697 then type my this error Software caused connection abort.

Dukat · Post by **Dukat** » Wed Mar 02, 2005 10:02 am

Do you have an IRC client with SSL support? (What client are you using?)

pstruh22 · Post by **pstruh22** » Wed Mar 02, 2005 6:08 pm

Dukat wrote:Do you have an IRC client with SSL support? (What client are you using?)

I am using Mirc 6.16

Dukat · Post by **Dukat** » Wed Mar 02, 2005 7:50 pm

You have to install OpenSSL and connect to port +6697, not 6697 (yes, with the plus sign)

http://www.mirc.co.uk/ssl.html

pstruh22 · Post by **pstruh22** » Wed Mar 02, 2005 10:15 pm

Dukat wrote:You have to install OpenSSL and connect to port +6697, not 6697 (yes, with the plus sign)

http://www.mirc.co.uk/ssl.html

Yes, OK, its working perfect. thanks