rejetto forum

Does the Flash player require a separate port when using SSL?

Guest · 19 · 10467

0 Members and 1 Guest are viewing this topic.

noabody

  • Guest
I just upgraded from Terayon 1.2 to 1.3 and noticed that while I can stream MP3's on my local network by hitting the machine ip:port, I can't seem to get it to work through SSLtunnel.  I've always had trouble with streaming across SSL and the older Terayon was the only solution I ever found that sort of worked.  I have two hardware NATS and one firewall so if there is another port involved please let me know so I can do the proper forwarding.

HFS and Terayon are the most awesome tools I have ever used.  You guys rock.


Offline Foggy

  • Tireless poster
  • ****
    • Posts: 806
    • View Profile
as I'm aware of it, it should be the same port that hfs is running on so it can fetch the mp3.


noabody

  • Guest
Strange.  I was looking at the log files in both STunnel and HFS.  I'm using HFS 2.3 beta 169, Terayon 1.3.0.8 with RAWR player 0.0.9, and stunnel 4.21 on Windows XP serving inbound port 449 (https) to 8080 which is what HFS is using.  I see a GET command when I bring up the flash player in Firefox using http://localhost:8080.  I do not see a GET command when I do the same from https://localhost.selfip.net .  I do see a get command when I simply try to download the MP3 from https://localhost.selfip.net .

The HFS log entries look identical for the LAN RAWR GET command as compared to the https dowload GET command.  For some reason the RAWR GET is not translated as such when traveling through Stunnel. 

Here's my stunnel.conf

; Sample stunnel configuration file by Michal Trojnara 2002-2006
; Some options used here may not be adequate for your particular configuration

; Certificate/key is needed in server mode and optional in client mode
; The default certificate is provided only for testing and should not
; be used in a production environment
cert = stunnel.pem
;key = stunnel.pem

; Some performance tunings
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1

; Workaround for Eudora bug
;options = DONT_INSERT_EMPTY_FRAGMENTS

; Authentication stuff
;verify = 2
; Don't forget to c_rehash CApath
;CApath = certs
; It's often easier to use CAfile
;CAfile = certs.pem
; Don't forget to c_rehash CRLpath
;CRLpath = crls
; Alternatively you can use CRLfile
;CRLfile = crls.pem

; Some debugging stuff useful for troubleshooting
;debug = 7
;output = stunnel.log

; Use it for client mode
;client = yes

; Service-level configuration

;[pop3s]
;accept  = 995
;connect = 110

;[imaps]
;accept  = 993
;connect = 143

;[ssmtp]
;accept  = 465
;connect = 25

[https]
accept  = 443
connect = 8080
TIMEOUTclose = 0

; vim:ft=dosini


Offline Foggy

  • Tireless poster
  • ****
    • Posts: 806
    • View Profile

Offline SilentPliz

  • Operator
  • Tireless poster
  • *****
    • Posts: 1298
  • ....... chut ! shh!
    • View Profile
It's the same for me, RAWR player 0.0.9 does not work with SSL locally (that is not terrible, I am not spied in my home) :)
Instead, it works very well in external SSL connection. That's what I asked him.

PS: I do not use Terayon.

http://Http://silentpliz.serveftp.com    (redirect / SSL)
User: Anonymous
Pass: Anonymous
« Last Edit: January 08, 2008, 05:03:53 AM by SilentPliz »


Offline Foggy

  • Tireless poster
  • ****
    • Posts: 806
    • View Profile

Offline SilentPliz

  • Operator
  • Tireless poster
  • *****
    • Posts: 1298
  • ....... chut ! shh!
    • View Profile
In front of each piece of music, there is no preview, but just a player-box.

______________________________________________________________

I forgot to say that Internet Explorer displays the player, but it does not work.
I did not find the correct syntax html for him.
Firefox and Opera are OK.
Sorry.  :-\
_______________________________________________________________

Little off topic message:
To thank the anonymous upload very nice.

Thank you very much.
« Last Edit: January 08, 2008, 07:24:45 AM by SilentPliz »


Offline TSG

  • Moderator
  • Tireless poster
  • *****
    • Posts: 1935
    • View Profile
    • RAWR-Designs
Flash handles the mp3 linkage, I just give it a URL to follow. I don't know much about SSL, i've never used it.


Offline Foggy

  • Tireless poster
  • ****
    • Posts: 806
    • View Profile
does the player specify which protocol to use, ie is http:// in the code somewhere?


Offline TSG

  • Moderator
  • Tireless poster
  • *****
    • Posts: 1935
    • View Profile
    • RAWR-Designs
No it just has... i'll grab the mp3 importing bit.

myMedia = new Sound();
myMedia.loadSound(file, true);
myMedia.setVolume(volume); etc...

Where file is the file linkage. So the problem isn't with the player but with adobe flash player i think.


Offline Foggy

  • Tireless poster
  • ****
    • Posts: 806
    • View Profile
im fairly certain that flash player supports ssl, by memory that problem with I had with the flash tree and IE could be avoided by using an ssl connection.


Offline Giant Eagle

  • Moderator
  • Tireless poster
  • *****
    • Posts: 535
  • >=3 RAWR!
    • View Profile
    • RAWR-Designs.com
as far as i can remember, the script feeds a complete http:// url.. So this might be the cause.

go to the /template/java folder and replace every "http" into "https" inside the rawr-previewbox.js file



Offline Unknown8063

  • Occasional poster
  • *
    • Posts: 96
    • View Profile
would'nt you be able to use a relative link?

I have been doing exactly this for the past few versions of ToG, editing their absolute URLs to relative.  However their RAWR template (and maybe current ToG and Terayon, dunno) pulls this information from HFS.  There is an option in HFS to change HTTP to HTTPS.


Offline TSG

  • Moderator
  • Tireless poster
  • *****
    • Posts: 1935
    • View Profile
    • RAWR-Designs
OH maybe Terayon uses a hard coded http:// that could explain it. We don't do that anymore, I redid the scripts in rawr-template. So when the option https:// is on in versions that don't have hard coded http://, it should work fine :), test the new template with this and find out the results. http://www.rejetto.com/forum/index.php?topic=5456.msg1031828#msg1031828

Sorry didnt notice ur post Unkown8063, but you are on the right track.


« Last Edit: April 06, 2008, 02:01:50 PM by Giant Eagle »