<div><font color="#000000"><font>Ah, ok. I'm fairly sure we don't support that at present.</font></font></div><div><font color="#000000"><font><br></font></font></div><div><font color="#000000"><font>(To be honest, I'm not terribly familiar with this feature of FIX myself. I suspect this may be related to field 98 in the logon message.)<br>
</font></font></div><div><font color="#000000"><font><br></font></font></div><br><div class="gmail_quote">On Thu, Jun 14, 2012 at 9:41 AM, Oleg Vojvodić <span dir="ltr"><<a href="mailto:oleg@stinga.hr" target="_blank">oleg@stinga.hr</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="EN-US" link="blue" vlink="purple"><div><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Sorry, I was not clear.</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Yes I understand that stunnel runs at our location.</span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">What I am confused about is that they insist on FIX messages being encrypted. Not the connection itself. </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Well maybe I misunderstand them. I will have to contact our customer’s network administrator to clear things with Bloomberg.</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Thanks,</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Oleg</span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> <a href="mailto:quickfixn-bounces@lists.quickfixn.com" target="_blank">quickfixn-bounces@lists.quickfixn.com</a> [mailto:<a href="mailto:quickfixn-bounces@lists.quickfixn.com" target="_blank">quickfixn-bounces@lists.quickfixn.com</a>] <b>On Behalf Of </b>Grant Birchmeier<br>
<b>Sent:</b> Thursday, June 14, 2012 4:31 PM</span></p><div><div class="h5"><br><b>To:</b> Mailing list for QuickFIX/n<br><b>Subject:</b> Re: {{Quickfixn}} Encrypted messages</div></div><div><div class="h5"><p class="MsoNormal">
</p><div><p class="MsoNormal"><span>No, the tunnel would be completely on your end. Stunnel is your SSH go-between.</span></p></div><div><p class="MsoNormal"> </p></div><div><p class="MsoNormal"><span>QF/n app sends plaintext to stunnel, stunnel encrypts and sends to Bloomberg. Bloomberg sends crypto to your stunnel, and stunnel decrypts and sends to your QF/n app.</span></p>
</div><div><p class="MsoNormal"> </p></div><div><p class="MsoNormal">-Grant</p></div><div><p class="MsoNormal"> </p></div><div><p class="MsoNormal">On Thu, Jun 14, 2012 at 9:24 AM, Oleg Vojvodić <<a href="mailto:oleg@stinga.hr" target="_blank">oleg@stinga.hr</a>> wrote:</p>
<div><div><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Thanks Chris.</span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">My impression, after contacting them, was that Bloomberg does not use any tunneling. </span></p><p class="MsoNormal" style="margin-bottom:12.0pt">
<span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Are you saying that you know of an installation where they use it?</span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">If so, that will greatly simplify things for me.</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Oleg</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> </span></p><p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> <a href="mailto:quickfixn-bounces@lists.quickfixn.com" target="_blank">quickfixn-bounces@lists.quickfixn.com</a> [mailto:<a href="mailto:quickfixn-bounces@lists.quickfixn.com" target="_blank">quickfixn-bounces@lists.quickfixn.com</a>] <b>On Behalf Of </b>Chris Busbey<br>
<b>Sent:</b> Thursday, June 14, 2012 3:07 PM</span></p><div><div><p class="MsoNormal"><br><b>To:</b> Mailing list for QuickFIX/n<br><b>Subject:</b> Re: {{Quickfixn}} Encrypted messages</p></div></div><div><div><p class="MsoNormal">
</p><p class="MsoNormal">Hi Oleg<br><br>QuickFIX/n does not natively support SSL yet, so you will need to use a proxy in order to connect to them. stunnel is a common solution. You can configure stunnel to use Bloomberg's certificate. See <a href="http://stunnel.org" target="_blank">stunnel.org</a> for stunnel documentation. </p>
<div><p class="MsoNormal"> </p></div><div><p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#222222">Chris.</span></p></div><div><p class="MsoNormal" style="margin-bottom:12.0pt">
</p><div><p class="MsoNormal">On Thu, Jun 14, 2012 at 2:06 AM, Oleg Vojvodić <<a href="mailto:oleg@stinga.hr" target="_blank">oleg@stinga.hr</a>> wrote:</p><p class="MsoNormal">Well, I am not sure what exactly I need. I’m still learning. But I think we do not need a secure connection, just encrypted FIX messages.<br>
<br>We are a small company and one of our customers wants a FIX connection with Bloomberg. BTW, do you know if there are any QuickFixN implementations that work with Bloomberg.<br><br>Bloomberg support is not very helpful. The best what I could learn from them is this statement:<br>
<br>"When you send a FIX logon message it should be encrypted using our certificate."<br><br>Fix specification has very little information about encryption and I could not find the field it mentions (SecureData) in QuickFix source.<br>
<br>So I guess, my question is, is it common (or possible) to use SSL to encrypt messages and send them over unencrypted connection. Or did I just completely misunderstand what Bloomberg support is telling me.<br><br>Thanks,<br>
Oleg<br><br>From: <a href="mailto:quickfixn-bounces@lists.quickfixn.com" target="_blank">quickfixn-bounces@lists.quickfixn.com</a> [mailto:<a href="mailto:quickfixn-bounces@lists.quickfixn.com" target="_blank">quickfixn-bounces@lists.quickfixn.com</a>] On Behalf Of Grant Birchmeier<br>
Sent: Wednesday, June 13, 2012 11:38 PM<br>To: Mailing list for QuickFIX/n<br>Subject: Re: {{Quickfixn}} Encrypted messages</p><div><div><p class="MsoNormal"><br>Do you mean SSH?<br><br><br>On Wed, Jun 13, 2012 at 11:06 AM, Oleg Vojvodić <<a href="mailto:oleg@stinga.hr" target="_blank">oleg@stinga.hr</a>> wrote:<br>
Hi,<br><br>This is my first FIX and QuickFIX project. I've created a server/acceptor<br>and client/initiator and everything seems to work.<br><br>Now, we received a request for message encryption. I've looked at the<br>
QuickFIX source and it looks like the encryption method is hardcoded to<br>NONE.<br><br>Does QuickFIX/N supports encrypted messages?<br><br><br>Thanks!<br><br><br>_______________________________________________<br>Quickfixn mailing list<br>
<a href="mailto:Quickfixn@lists.quickfixn.com" target="_blank">Quickfixn@lists.quickfixn.com</a><br><a href="http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com" target="_blank">http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com</a><br>
<br><br><br>--<br>Grant Birchmeier<br>Connamara Systems, LLC<br>Made-To-Measure Trading Solutions.<br>Exactly what you need. No more. No less.<br><a href="http://connamara.com" target="_blank">http://connamara.com</a><br>
<br><br><br>_______________________________________________<br>Quickfixn mailing list<br><a href="mailto:Quickfixn@lists.quickfixn.com" target="_blank">Quickfixn@lists.quickfixn.com</a><br><a href="http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com" target="_blank">http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com</a></p>
</div></div></div><p class="MsoNormal"><br><br clear="all"></p><div><p class="MsoNormal"> </p></div><p class="MsoNormal">-- <br>Chris Busbey<br>Connamara Systems, LLC</p></div></div></div></div></div><p class="MsoNormal" style="margin-bottom:12.0pt">
<br>_______________________________________________<br>Quickfixn mailing list<br><a href="mailto:Quickfixn@lists.quickfixn.com" target="_blank">Quickfixn@lists.quickfixn.com</a><br><a href="http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com" target="_blank">http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com</a></p>
</div><p class="MsoNormal"><br><br clear="all"><br>-- </p><div><p class="MsoNormal"><span style="background:white">Grant Birchmeier</span></p></div><div><p class="MsoNormal"><b><span style="color:#3333ff;background:#ffcc00">Connamara Systems, LLC</span></b></p>
</div><div><p class="MsoNormal"><b>Made-To-Measure Trading Solutions.</b></p></div><div><p class="MsoNormal">Exactly what you need. No more. No less.</p></div><div><p class="MsoNormal"><a href="http://connamara.com" target="_blank">http://connamara.com</a></p>
</div><p class="MsoNormal"> </p></div></div></div></div><br>_______________________________________________<br>
Quickfixn mailing list<br>
<a href="mailto:Quickfixn@lists.quickfixn.com">Quickfixn@lists.quickfixn.com</a><br>
<a href="http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com" target="_blank">http://lists.quickfixn.com/listinfo.cgi/quickfixn-quickfixn.com</a><br>
<br></blockquote></div><br><br clear="all"><br>-- <br><div><font><span style="background-color:#000000"><span style="background-color:#ffffff">Grant Birchmeier</span></span></font><font><font color="#3333ff"><br></font></font></div>
<div><font><b><font color="#3333ff"><span style="background-color:#ffcc33"><span style="background-color:#ffcc66"><span style="background-color:#ffcc99"><span style="background-color:#ffffff"><span style="background-color:#ffcc00">Connamara Systems, LLC</span></span></span></span></span></font></b></font><br>
</div><div><font><b>Made-To-Measure Trading Solutions.</b></font></div><div><font>Exactly what you need. No more. No less.</font><font><b><font color="#3333ff"><br></font></b></font></div><div><font><a href="http://connamara.com" target="_blank">http://connamara.com</a><br>
</font></div><br>