Encrypting network communication with stunnel
Stunnel is a program that acts as a proxy that removes, wraps, and encrypts the network communication using SSL thought tunnelling. It is suitable mainly to be used by DBAs for remote database administration or for encrypting communication (log transport) with DataGuard. In this recipe we will encrypt a connection between nodeorcl5
and nodeorcl1
using stunnel.
Getting ready
All steps will be performed on nodeorcl1
and nodeorcl5
.
As a prerequisite download and install stunnel from http://www.stunnel.org/downloads.html both on nodeorcl1
and nodeorcl5
.
How to do it...
We will start to configure stunnel as a service. Download
stunnel_RC_script
from http://www.gaztronics.net/rc/stunnel.php and copy it to/etc/init.d
.Next, change the owner permissions for stunnel to
root
and define it as a service as follows:[root@nodeorcl1 stunnel]# chown root:root /etc/init.dstunnel [root@nodeorcl1 stunnel]# chkconfig --add stunnel
Because stunnel will forward from...