iNetPrivacy Software
 Internet Privacy & Data Security Solutions  
  Home Products | Download | Purchase Support Contact Us
 AntiFirewall: How It Works FTP | Usenet News | IRC | ICQ Email (POP&IMAP) TCP Map

AntiFirewall™


AntiFirewall
Download Demo
Support
Purchase
Buy A4Proxy Now! Click Here

Stunnel + AntiFirewall: secure and anonymous access to news
(other tech support topics)

(Note that this is an advanced topic and we do not officially provide any technical support related to the configuration described below. However, if you have any comments, corrections or additions to this page or if you'd like to share with other users of AF your experience with similar configurations, please let us know and we'll post them here)

Q: I have recently purchased antifirewall and am trying to SSL secure my news connections (nttps) since at this point SSL functionality is not available in antifirewall. So the question is: Can stunnel be used with antifirewall? See http://www.stunnel.org .

I am able to connect to my secure newsfeed, henceforth called snews.com:563, using stunnel v 4.04 .

I am also able to connect to my non-secure news server news.com:119 using antifirewall through a proxy. What I'd like to do is both at the same time. That is use antifirewall to connect through a proxy to snews:563 and for the connection to be SSLified by stunnel. I assume the proxy would have to allow access to port 563.

Stunnel uses a conf file and mine follows.

#Stunnel client configuration file
client=yes
debug=7
output=stunnel.log

[SSLNews]
accept=119
connect=snews.com:563

I'd like to be able to incorporate the functionality of antifirewall with the security of SSL provided by stunnel. Can it be done?

A: We haven't tested AF with stunnel, but it will probably work. It seems that what you need to do is create an AntiFirewall connection to your secure newserver, snews.com:563, in the TCP Map mode of AntiFirewall (i.e., on the second page of the AF wizard, choose "TCP Map" as the type of the connection). You may have to try several proxies in AF until you find one which supports port 563.

Then edit your stunnel configuration file so that it will point to that AF connection.

Instead of

[SSLNews]
accept=119
connect=snews.com:563

you will have something like

[SSLNews]
accept=119
connect=127.0.0.1:[port provided by AF]

Your newsreader settings should be the same as the ones you use when reading newsgroups via stunnel alone.

* * *

Note: The user who had asked the initial question reported that the configuration above did work:

I did as you suggested and it worked great!! Using a sniffer program it is clear that Stunnel is encrypting the packets and antifirewall is masking the IP address. Excellent combination of privacy and security. I would think many users who are interested in privacy would also be interested in securing their packets (to ensure packet integrity) and this combination, antifirewall and stunnel, seems to allow it, at least for nntp. I assume it could also be used for the other uses for antifirewall except FTP perhaps. [That's right; it is quite likely that it will work for other AF services, but definitely not for FTP - iNetPrivacy].

For those who would like to try out the configuration above, here are some links to secure news servers:

 

Tech. Support Topics

Setting Up and Configuration of AntiFirewall


 © 1997-2007 iNetPrivacy Software Inc.
iNetPrivacy, iNetPrivacy Software, iNetPrivacy.com, Big Brother Has Gone Blind, A4Proxy, Anonymity 4 Proxy, AUTOWIPE, AntiFirewall, inetprivacy.com/antifirewall are either registered trademarks or trademarks of iNetPrivacy Software, Inc. in the USA and other countries.