That was it! Thank you!
On Fri, Nov 2, 2018 at 2:05 PM Susan Hinrichs
wrote:
> Do you have a dest_ip=* default line in your ssl_multicert.config file?
>
> Your query doesn't have the SNI set, so you need a default. Use the
> -servername option for s_client if you want to set the SNI.
>
> On Fr
Do you have a dest_ip=* default line in your ssl_multicert.config file?
Your query doesn't have the SNI set, so you need a default. Use the
-servername option for s_client if you want to set the SNI.
On Fri, Nov 2, 2018 at 3:50 PM Dk Jack wrote:
> Hi Alan,
> Thanks for responding. I've pasted
Hi Alan,
Thanks for responding. I've pasted the output from openssl s_client. I
don't understand the error it's giving because I can see in the ATS loading
my certificate in the debug logs. I've prefixed the important lines in the
debug log with '=>'.
Dk.
-
I'd start with "openssl s_client" to get more debug information, followed
possibly by a packet capture to be sure the user agent is connecting with
TLS to a TLS enabled proxy port.
On Fri, Nov 2, 2018 at 1:41 PM Dk Jack wrote:
> Hi,
> I enabled SSL on my ATS and my ssl requests are failing with
Hi,
I enabled SSL on my ATS and my ssl requests are failing with handshake
error. From the logs I can tell that it loaded my cert/key correct. When I
started traffic server in debug mode (./traffic_server -T ssl), I am seeing
the following error
SSL routines:ssl3_get_client_hello:no shared cipher
