Stunnel configuration example using Telnet: Difference between revisions
Stunnel configuration example using Telnet (view source)
Revision as of 02:21, 16 November 2022
, 16 November 2022no edit summary
No edit summary |
No edit summary |
||
Line 5: | Line 5: | ||
* First you want to make sure that you have '''ADVANCED mode''' enabled. This will allow you to choose from a larger variety of settings. | * First you want to make sure that you have '''ADVANCED mode''' enabled. This will allow you to choose from a larger variety of settings. | ||
( add image) | ( add image) | ||
Stunnel is an open-source proxy service that adds TLS encryption to clients and Servers already existing on a VPN network. TLS encryption provided by Stunnel can be used as an additional layer of encryption for data sent by OpenVPN. This procedure increases the security of the established connection and provides higher chances of passing a Deep packet inspection (DPI) check. | Stunnel is an open-source proxy service that adds TLS encryption to clients and Servers already existing on a VPN network. TLS encryption provided by Stunnel can be used as an additional layer of encryption for data sent by OpenVPN. This procedure increases the security of the established connection and provides higher chances of passing a Deep packet inspection (DPI) check. | ||
Line 14: | Line 15: | ||
==Configuration Overview and Prerequisites== | ==Configuration Overview and Prerequisites== | ||
Before we begin, let’s overview the configuration that we are attempting to achieve and the prerequisites that will make it possible. | |||
Prerequisites: | |||
* One RUTxxx router of any type with public IP. | |||
* Atleast one end device to configure the router | |||
* Wireshark in your end device | |||
* Stunnel application installation in your laptop: https://www.stunnel.org/downloads.html | |||
(add image) | |||
As mentioned earlier, here, in this configuration since telnet does not provide security, we are going to develop a Stunnel in between the router and the client, and then connect them using telnet protocol, so that there is encryption provided to the data. For this we will use Wireshark to capture the packets and verify if the data has been encrypted or not. | |||
==Router Configuration== | ==Router Configuration== | ||
Firstly, enable local telnet access at port 23, Go to System → Administration → Access Control | |||
(add image) | |||
Then, navigate to Services → VPN → Stunnel, and configure the router, | |||
* Enable Stunnel global settings, | |||
(add image) | |||
==Stunnel Configuration== | ==Stunnel Configuration== | ||
==Testing Results== | ==Testing Results== |