{"id":339,"date":"2016-08-08T10:24:00","date_gmt":"2016-08-08T10:24:00","guid":{"rendered":""},"modified":"2019-07-03T13:17:30","modified_gmt":"2019-07-03T13:17:30","slug":"stunnel-a-proxy-to-ship-the-log-on-ssl","status":"publish","type":"post","link":"https:\/\/opstree.com\/blog\/2016\/08\/08\/stunnel-a-proxy-to-ship-the-log-on-ssl\/","title":{"rendered":"Stunnel a Proxy to ship the log on SSL"},"content":{"rendered":"
\n
\n

Introduction<\/b><\/h2>\n<\/div>\n

p { margin-bottom: 0.25cm; line-height: 120%; }a:link { }<\/p>\n

Few days ago I got a task to create the SSL connection with logstash redis plug-in with Azure Redis. As we are shipping the logs form the several data center to the Azure Redis. So logs must be shipped on SSL connection. There is no provision to create SSL connection through logstash redis plug-in thats why logstash redis plug-in is not able to make SSL<\/span> connection with Azure redis.<\/span>To resolve this problem we have to setup the stunnel as proxy front of the logstash redis plug-in. Stunnel can create SSL connection with Azure redis and Stunnel provide non-ssl connection for the logstash redis plug-in.<\/p>\n

<\/a><\/div>\n

p { margin-bottom: 0.25cm; line-height: 120%; }a:link { Azure redis provide two type of connections, SSL on 6380 port and non SSL on 6379 port<\/span> and also provide primary and secondary key(password).<\/span><\/p>\n<\/div>\n

Installation<\/b><\/h2>\n
<\/div>\n

Install Stunnel on the ubuntu.<\/p>\n

<\/div>\n
\n
$ sudo apt-get install stunnel  <\/code><\/pre>\n<\/div>\n
Configuration<\/b><\/h2>\n
Create a configuration for stunnel \/etc\/stunnel\/stunnel.conf and put the following lines into the configure file.<\/p>\n
\n
setuid = root
\nsetgid = root
\npid = \/var\/run\/stunnel-azureredis.pid
\ndebug = 7
\noutput = \/var\/log\/stunnel4\/azureredis.log
\noptions = NO_SSLv2
\noptions = NO_SSLv3
\n[azureredis]
\naccept=127.0.0.1:6379
\nconnect=:6380
\nclient=yes
\nTimeout idle = 30 <\/code><\/p>\n
p { margin-bottom: 0.25cm; line-height: 120%; }a:link { }<\/p>\n
Restart the stunnel4<\/div>\n
<\/div>\n
p { margin-bottom: 0.25cm; line-height: 120%; }a:link { }<\/div>\n
<\/div>\n
<\/div>\n
\n
$ service stunnel4 restart<\/code><\/pre>\n<\/div>\n
Install Redis-cli to test the connection try to ping the redis azure it should reply as PONG<\/p>\n
$ redis-cli -a
\n127.0.0.1:6379> ping
\nPONG
\n<\/code><\/p>\n
Now you can make SSL connection with azure redis on SSL.<\/p>\n","protected":false},"excerpt":{"rendered":"
Introduction p { margin-bottom: 0.25cm; line-height: 120%; }a:link { } Few days ago I got a task to create the SSL connection with logstash redis plug-in with Azure Redis. As we are shipping the logs form the several data center to the Azure Redis. So logs must be shipped on SSL connection. There is no … Continue reading “Stunnel a Proxy to ship the log on SSL”<\/span><\/a><\/p>\n","protected":false},"author":150552946,"featured_media":29900,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[1],"tags":[12657,58302,1359381],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/opstree.com\/blog\/wp-content\/uploads\/2025\/11\/DevSecOps-1.jpg","jetpack_likes_enabled":true,"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pfDBOm-5t","jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts\/339"}],"collection":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/users\/150552946"}],"replies":[{"embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/comments?post=339"}],"version-history":[{"count":6,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts\/339\/revisions"}],"predecessor-version":[{"id":683,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/posts\/339\/revisions\/683"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/media\/29900"}],"wp:attachment":[{"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/media?parent=339"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/categories?post=339"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/opstree.com\/blog\/wp-json\/wp\/v2\/tags?post=339"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}