Page 1 of 1
Posted: Fri Jul 01, 2005 2:45 pm
by Syzop
(topic split from previously unrelated issue)
Shintorojin wrote:could you plz explain the process of setting up the precompiled windows version of unrealircd to accept ssl connections...
see the documentation on the listen block (a section in unreal32docs.html) :).
I'll leave the rest to someone else ;p.
Posted: Fri Jul 01, 2005 2:54 pm
by Shintorojin
lol thanks ;P I checked the listen block, but when i get someone to try and connect it just says connection refused or timed out... SO i'm at a loss with what to do. A friend told me he had to load a module on the nix version. So i was wondering if maybe i'm missing something...
Posted: Sat Jul 02, 2005 1:01 am
by Syzop
Could you paste your listen block you use for SSL? Also perhaps output from '/stats P' to doublecheck if it is indeed listening.
And 3rd, make sure you have no firewall/router issues.
Posted: Sat Jul 02, 2005 9:43 am
by Shintorojin
Listen Block:
listen *:6697 {
options {
ssl;
clientsonly;
};
};
Stats P:
-
-neo-tokyo.Galaxycorp.za.net- *** Listener on *:6697, clients 1. is PERM clientsonly SSL
-
-neo-tokyo.Galaxycorp.za.net- *** Listener on *:6667, clients 1. is PERM
-
I've opened up the ssl and normal port on my router. Everything is fine on the normal port. One thing i find strange is that i can't log in on the ssl port from my local lan either :\
Thanks for the help so far,
JM
Posted: Sat Jul 02, 2005 2:04 pm
by Syzop
Yup, looks good.
Are you actually connecting with an SSL enabled client, and did you specify in the client it is an ssl port?
Like... '/server -e 127.0.0.1 6697' in mIRC or '/server -SSL 127.0.0.1 6697' in irssi.
'Connection refused' means something (and not unreal) is wrong, it means nothing is listening on the port, but as you can see from the '/stats P' output it is... So that means either a client/user issue, firewall or router problem.
'Connection timed out' is also firewall/router issue.
Assuming you did everything local (127.0.0.1) or to the LAN IP (eg: 192.168.1.100) then connection timed out/connection refused must be some firewall in-between :P.
blabla :P
Posted: Sat Jul 02, 2005 4:36 pm
by Shintorojin
Hmmm, okay this :"/server -e 127.0.0.1 6697" works. But now, how do i set things up the people don't need to use the "-e" And yes it's all on local box...
THanks for all the help so far,
JM
Posted: Sat Jul 02, 2005 5:09 pm
by Stealth
You need to always use the -e, or +6697. The client can only connect to an SSL port if you tell it the port is SSL.
Posted: Sat Jul 02, 2005 8:26 pm
by Shintorojin
okay but then how is it with other servers such as shadowfire.org or lagnet.za.org you don't need either? and it is on the ssl port... But yeah, i'm just curious.
Thanks for all your help!
JM
Posted: Sat Jul 02, 2005 9:38 pm
by Stealth
If you don't tell the client you want SSL, it won't use SSL.
Posted: Wed Jul 27, 2005 9:03 am
by Rascal999
I have the same problem as Shintorojin but when I tried '/server -e 127.0.0.1 6697' it said * /server: ssl not available ??
Posted: Wed Jul 27, 2005 9:19 am
by Dukat
You have to install OpenSSL first...
http://www.mirc.co.uk/ssl.html
Posted: Wed Jul 27, 2005 9:36 am
by Rascal999
Thankyou that did sort out my problem. If anyone else wanted to connect to my server would they have to download OpenSSL as well?
Posted: Wed Jul 27, 2005 9:58 am
by Dukat
Unless you provide an additional, unencrypted port... Yes... (if they are using mIRC)