stunnel SSL Configuration Issue

[Samad 2]

Hi, I've been trying to connect to AirVPN servers over SSL as an experiment to see if the speeds will be faster once my ISP can longer detect that I am using a VPN. However, I have reached a stumbling block with stunnel.

 

• I downloaded the configuration files using the Advanced tab, specifically for the Acrux server in this case and selected SSL.
• I renamed the Acrux ssl file to stunnel.conf and moved it into the stunnel folder, replacing the default confg file.
• I started up stunnel and checked to see that the correct conf file was loaded, it was
• I then went to command line as an administrator and typed in openvpn [Filename].ovpn
• At this point it kept trying to establish a connection and the connection was refused.

 

Stunnel Logs:

 

2014.02.12 22:06:51 LOG5[5404:5192]: Service [openvpn] accepted connection from 127.0.0.1:58724
2014.02.12 22:06:51 LOG6[5404:5192]: connect_blocking: connecting 37.48.81.43:443 [This is the Acrux Server]
2014.02.12 22:06:52 LOG3[5404:5192]: connect_blocking: connect 37.48.81.43:443: Connection refused (WSAECONNREFUSED) (10061)
2014.02.12 22:06:52 LOG5[5404:5192]: Connection reset: 0 byte(s) sent to SSL, 0 byte(s) sent to socket
2014.02.12 22:06:57 LOG5[5404:5824]: Service [openvpn] accepted connection from 127.0.0.1:58732
2014.02.12 22:06:57 LOG6[5404:5824]: connect_blocking: connecting 37.48.81.43:443 [This is the Acrux Server]
2014.02.12 22:06:58 LOG3[5404:5824]: connect_blocking: connect 37.48.81.43:443: Connection refused (WSAECONNREFUSED) (10061)
2014.02.12 22:06:58 LOG5[5404:5824]: Connection reset: 0 byte(s) sent to SSL, 0 byte(s) sent to socket

 

And so on and so forth. Attached is an image of the command line log.

 

Any help would be greatly appreciated!

[Samad 2]

UPDATE - It's Working - Sort of...

 

I figured out how to get stunnel to connect, namely I made a firewall rule that explicitly allowed incoming and outgoing traffic on port 443 (SSL). However, I was faced with an intriguing second issue -

 

I can only access google! It seems that I cannot resolve any other site, but I can use Google! This to me seems like more of a DNS issue than anything else, although perhaps wrapping the connection in SSL gets it refused from sites that can't handle it. The GOOD news is that I used google to check my external ip and it was in fact the Acrux server! So the connection works, I just can't load any site except for Google.

 

Thoughts anyone? Am I missing something obvious like opening up another port or some DNS configuration I didn't know you had to do for using SSL on windows?

 

Edit: Even if you don't have these issues but DO have SSL working on Windows 7 I'd appreciate it if you could explain exactly how you got it working!

[Samad 2]

UPDATE - Houston we have a problem...

 

Turns out that not being able to talk to any site other than google and AirVPN was not a stunnel related issue, when I'm connected to any AirVPN server and my firewall is up I no longer have the ability to talk to any websites besides google and AirVPN even if I'm not using stunnel but the default AirVPN client. During my stunnel connection it did create a lot of forwarding rules automatically, this may be the cause of the problem.

 

EDIT: Rolled back using my system restore from the day before I installed stunnel. If you're a Windows user and want to mess with these settings I strongly recommend you keep a system restore point from BEFORE you change anything. I'll keep hacking away at this, again any advice is appreciated!