Can you send a pcap of your packets? I would be surprised if OVS would allow the packets to go out without SSL.
--Justin On Nov 13, 2013, at 11:47 PM, abhishek jain <ashujain9...@gmail.com> wrote: > Hi Justin, > > Thanks for the concern. > > I'm following the below link for my configuration and have succeded in doing > it without any issues... > > http://ryu.readthedocs.org/en/latest/tls.html > > However when I capture packets on wireshark,there are neither ssl packets nor > encrypted data between OVS and Ryu controller. > Please help regarding ssl connection between OVS and Ryu controller. > > > Thanks > > > > On Wed, Nov 13, 2013 at 11:02 PM, Justin Pettit <jpet...@nicira.com> wrote: > The configuration (from what you've provided) looks fine. What do you mean > that packets from the controller are showing up as TCP? All the OpenFlow > connections (supported by OVS) run over TCP. The ones configured with "ssl" > just means that the packets will be encrypted, but they still are running on > TCP port 6633. > > --Justin > > > On Nov 13, 2013, at 3:30 AM, abhishek jain <ashujain9...@gmail.com> wrote: > > > Hi all, > > > > > > I have configured the private keys and certificates and have established > > ssl connection using ryu controller with OVS and the switch is showing > > connected true. > > However I'm not able to capture packets on wireshark with ssl field. > > The packets from controller are still showing tcp field on wireshark > > > > ovs-vsctl show > > 76d19433-7892-4c6a-af4d-b4e2936f4485 > > Bridge "br0" > > Controller "ssl:192.168.6.165:6633" > > is_connected: true > > Port "br0" > > Interface "br0" > > type: internal > > ovs_version: "1.4.0+build0" > > > > Whether the above ssl connection is valid? > > > > > > Please help regarding this. > > > > > > > > Thanks > > Abhishek Jain > > _______________________________________________ > > discuss mailing list > > discuss@openvswitch.org > > http://openvswitch.org/mailman/listinfo/discuss > > _______________________________________________ discuss mailing list discuss@openvswitch.org http://openvswitch.org/mailman/listinfo/discuss
