Hi all, i had a question on setting up haproxy in SSL, since my current site is
https(where i had used openssl to generate csr and crt keys), so i wanted to
load balance with the same.
My web servers are apache and they are behind the haproxy server, so once i
install stunnel on HAproxy server, i have a few question in the installation
process
I have installed stunnel-4.35.tar.gz, but the patch for xforward was
tunnel-4.32-xforwarded-for.diff is that ok? of is the patch available for 4.35
?this is the patch ouput
$patch -p1 < ../stunnel-4.32-xforwarded-for.diff
patching file doc/stunnel.8
Hunk #1 FAILED at 504.
1 out of 1 hunk FAILED -- saving rejects to file doc/stunnel.8.rej
patching file doc/stunnel.fr.8
Hunk #1 succeeded at 397 with fuzz 2 (offset -63 lines).
patching file src/client.c
Hunk #1 succeeded at 84 (offset -4 lines).
Hunk #2 FAILED at 384.
Hunk #3 FAILED at 418.
Hunk #4 FAILED at 523.
Hunk #5 succeeded at 535 with fuzz 2 (offset -50 lines).
Hunk #6 FAILED at 605.
4 out of 6 hunks FAILED -- saving rejects to file src/client.c.rej
patching file src/common.h
Hunk #1 succeeded at 52 (offset -1 lines).
patching file src/options.c
Hunk #1 succeeded at 818 with fuzz 2 (offset 26 lines).
patching file src/prototypes.h
Hunk #1 succeeded at 171 with fuzz 1 (offset 3 lines).
Hunk #2 succeeded at 352 with fuzz 1 (offset 5 lines)
during the make install of stunnel it asked me the details for the .pem file?
why is that needed if i use certs from third party vendors?
can i used a certificate generated from third party vendors like godaddy to set
stunnel?
or do i have to use self-signed certificate?
These are some of the doubts for now, it will a great help if you can help me
understand this or send some helpful links?
Thanks
