<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <HTML ><HEAD ><TITLE >stunnel HOWTO</TITLE ><META NAME="GENERATOR" CONTENT="Modular DocBook HTML Stylesheet Version 1.79"><LINK REL="HOME" TITLE="FreeTDS User Guide" HREF="index.htm"><LINK REL="UP" TITLE="Advanced Configurations" HREF="configs.htm"><LINK REL="PREVIOUS" TITLE="TDS Connection Pooling" HREF="tdspool.htm"><LINK REL="NEXT" TITLE="Use FreeTDS " HREF="usefreetds.htm"><LINK REL="STYLESHEET" TYPE="text/css" HREF="userguide.css"></HEAD ><BODY CLASS="SECT1" BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#0000FF" VLINK="#840084" ALINK="#0000FF" ><DIV CLASS="NAVHEADER" ><TABLE SUMMARY="Header navigation table" WIDTH="100%" BORDER="0" CELLPADDING="0" CELLSPACING="0" ><TR ><TH COLSPAN="3" ALIGN="center" ><SPAN CLASS="PRODUCTNAME" >FreeTDS</SPAN > User Guide: A Guide to Installing, Configuring, and Running <SPAN CLASS="PRODUCTNAME" >FreeTDS</SPAN ></TH ></TR ><TR ><TD WIDTH="10%" ALIGN="left" VALIGN="bottom" ><A HREF="tdspool.htm" ACCESSKEY="P" >Prev</A ></TD ><TD WIDTH="80%" ALIGN="center" VALIGN="bottom" >Chapter 5. Advanced Configurations</TD ><TD WIDTH="10%" ALIGN="right" VALIGN="bottom" ><A HREF="usefreetds.htm" ACCESSKEY="N" >Next</A ></TD ></TR ></TABLE ><HR ALIGN="LEFT" WIDTH="100%"></DIV ><DIV CLASS="SECT1" ><H1 CLASS="SECT1" ><A NAME="STUNNEL" >stunnel HOWTO</A ></H1 ><P > Contributed by <A HREF="mailto:bradleyb@u.washington.edu" TARGET="_top" >Bradley Bell</A >. </P ><P >To set up FreeTDS over stunnel between a Linux webserver and a W2k SQL server: </P ><P ></P ><OL TYPE="1" ><LI ><P >Get unencrypted freetds working</P ></LI ><LI ><P >Install openssl and stunnel on the Linux box: <A HREF="http://www.stunnel.org/" TARGET="_top" >stunnel.org</A > </P ></LI ><LI ><P >Download the <A HREF="http://www.stunnel.org/download/binaries.html" TARGET="_top" >stunnel binary</A > and openssl dll's for Windows. </P ></LI ><LI ><P >Generate stunnel.pem (complete with Diffie-Hellman parameters) for placement on the W2k box. See <A HREF="http://www.stunnel.org/faq/certs.html" TARGET="_top" >instructions</A > in the stunnel FAQ. </P ></LI ><LI ><P >Start stunnel on the W2k box:</P ><PRE CLASS="SCREEN" > <SAMP CLASS="PROMPT" >$ </SAMP ><KBD CLASS="USERINPUT" >stunnel.exe -d 61666 -r localhost:1433</KBD > </PRE ><P >61666 is just an arbitrary port number. </P ></LI ><LI ><P >Start stunnel on the Linux box: </P ><PRE CLASS="SCREEN" > <SAMP CLASS="PROMPT" >$ </SAMP ><KBD CLASS="USERINPUT" >stunnel -c -d 1433 -r <TT CLASS="REPLACEABLE" ><I >win2kserver</I ></TT >:61666</KBD > </PRE ><P >where <TT CLASS="REPLACEABLE" ><I >win2kserver</I ></TT > is the hostname or IP address of the W2k box. </P ></LI ><LI ><P >Set up FreeTDS to use the tunnel. If this is your unencrypted entry in <TT CLASS="FILENAME" >freetds.conf</TT >: </P ><DIV CLASS="EXAMPLE" ><A NAME="E.G.UNENCRYPTED" ></A ><P ><B >Example 5-7. Unencrypted entry in <TT CLASS="FILENAME" >freetds.conf</TT ></B ></P ><PRE CLASS="PROGRAMLISTING" > [win2kserver] host = win2kserver port = 1433</PRE ></DIV ><P > the encrypted equivalent uses: </P ><DIV CLASS="EXAMPLE" ><A NAME="E.G.ENCRYPTED" ></A ><P ><B >Example 5-8. Encrypted entry in <TT CLASS="FILENAME" >freetds.conf</TT ></B ></P ><PRE CLASS="PROGRAMLISTING" > [win2kserver] host = localhost port = 1433</PRE ></DIV ></LI ></OL ></DIV ><DIV CLASS="NAVFOOTER" ><HR ALIGN="LEFT" WIDTH="100%"><TABLE SUMMARY="Footer navigation table" WIDTH="100%" BORDER="0" CELLPADDING="0" CELLSPACING="0" ><TR ><TD WIDTH="33%" ALIGN="left" VALIGN="top" ><A HREF="tdspool.htm" ACCESSKEY="P" >Prev</A ></TD ><TD WIDTH="34%" ALIGN="center" VALIGN="top" ><A HREF="index.htm" ACCESSKEY="H" >Home</A ></TD ><TD WIDTH="33%" ALIGN="right" VALIGN="top" ><A HREF="usefreetds.htm" ACCESSKEY="N" >Next</A ></TD ></TR ><TR ><TD WIDTH="33%" ALIGN="left" VALIGN="top" >TDS Connection Pooling</TD ><TD WIDTH="34%" ALIGN="center" VALIGN="top" ><A HREF="configs.htm" ACCESSKEY="U" >Up</A ></TD ><TD WIDTH="33%" ALIGN="right" VALIGN="top" >Use <SPAN CLASS="PRODUCTNAME" >FreeTDS</SPAN ></TD ></TR ></TABLE ></DIV ></BODY ></HTML >