Edgewall Software

Changes between Version 16 and Version 17 of STunnelTracd


Ignore:
Timestamp:
May 30, 2012, 12:15:32 AM (10 years ago)
Author:
anonymous
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • STunnelTracd

    v16 v17  
    5656Note that the use of 'localhost' is crucial - it prevents people from the outside to bypass your SSL restriction by connecting to port 8992 directly.
    5757
     58== Using port 443 ==
     59If you are not running a webserver with https support on your server (i.e., you are not using port 443), you can make the trac URL a bit more user-friendly -- simply https://url/trac -- by specifying port 443 (the default https port) for the stunnel.  In /etc/stunnel/stunnel-tracd.conf set:
     60{{{
     61[tracd]
     62accept  = 443
     63connect = localhost:8992
     64}}}
     65On RHEL/CentOS with iptables, remember to unblock that port in /etc/sysconfig/iptables:
     66{{{
     67-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
     68}}}
     69(above tested on RHEL 5.6)
     70
     71