502 Proxy Error Ssl
Contents |
here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of this site About Us Learn more about Stack Overflow the company Business Learn 502 proxy error apache more about hiring developers or posting ads with us Stack Overflow Questions Jobs Documentation Tags
502 Proxy Error Dns Lookup Failure
Users Badges Ask Question x Dismiss Join the Stack Overflow Community Stack Overflow is a community of 4.7 million programmers, just like 502 proxy error apache error reading from remote server you, helping each other. Join them; it only takes a minute: Sign up Error during SSL Handshake with remote server up vote 39 down vote favorite 13 I have Apache2 (listening on 443) and a web app running 502 proxy error reason error reading from remote server on Tomcat7 (listening on 8443) on Ubuntu. I set apache2 as reverse proxy so that I access the web app through port 443 instead of 8443. Besides, I need to have SSL communication not only between browser and apache2 but also between apache2 and tomcat7, thus I set SSL on both apache2 and tomcat7. If I try to access the web app by directly contacting tomcat7, everything is fine. The problem is that when I try
502 Proxy Error Openshift
to access the tomcat's web app through apache2 (reverse proxy), on the browser appears the error: Proxy Error The proxy server could not handle the request GET /web_app. Reason: Error during SSL Handshake with remote server apache tomcat ssl reverse-proxy share|improve this question edited Sep 18 '13 at 13:19 Qben 1,76821120 asked Sep 18 '13 at 12:37 user2791481 196134 Apache does not truest the certificate you have installed on the tomcat. Is it a self-signed cert? Or is it made by an in-house CA? –MK. Sep 18 '13 at 12:55 1 It is self signed with this command: openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt –user2791481 Sep 18 '13 at 12:58 1 serverfault.com/questions/356678/… I think this is what you want: SSLProxyVerify none SSLProxyCheckPeerCN off –MK. Sep 18 '13 at 13:03 6 Better to set SSLProxyCACertificateFile to your private CA certicate, instead of just turning off verification. –nathan.f77 Jan 9 '14 at 0:22 add a comment| 1 Answer 1 active oldest votes up vote 83 down vote The comment by MK pointed me in the right direction. In the case of Apache 2.4 and up, there are different defaults and a new directive. I am running Apache 2.4.6, and I had to add the following directives to get it working: SSLProxyEngine on SSLProxyVerify none SSLProxyCheckPeerCN off SSLProxyChe
Start here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of 502 proxy error chrome this site About Us Learn more about Stack Overflow the company Business Learn 502 proxy error web service more about hiring developers or posting ads with us Server Fault Questions Tags Users Badges Unanswered Ask Question _ Server
502 Proxy Error Apache Reverse Proxy
Fault is a question and answer site for system and network administrators. Join them; it only takes a minute: Sign up Here's how it works: Anybody can ask a question Anybody can http://stackoverflow.com/questions/18872482/error-during-ssl-handshake-with-remote-server answer The best answers are voted up and rise to the top Need help trouble shooting Https webserver error - SSL Handshake failed up vote 8 down vote favorite 4 I followed this guide: http://hints.macworld.com/article.php?story=20041129143420344 Here is my virtual host definition
Favorite Rating: Usere getting HTTP 502 error accessing secure Web server via Access Gateway with https://www.novell.com/support/kb/doc.php?id=7015539 TLS 1.2 enabledThis document (7015539) is provided subject to the disclaimer at the end of this document. Environment NetIQ Access Manager 4.0NetIQ Access Manager Access Gateway Service https://support.microsoft.com/en-us/kb/2423401 running on RHEL 6.5TLS 1.2 OpenSSL enabled on Access Gateway as per https://www.netiq.com/documentation/netiqaccessmanager4/enable_tls_nam40/data/enable_tls_nam40.html Reverse Proxy -> Web Servers -> Web Server Trusted Root: Do not verify enabled 502 proxy Situation Access Manager 4.0 setup and working well. To improve security, all SSL/TLS transactions were set to use TLS 1.2. Both the NAM Identity Server and Access Gateway Server components were updated as per the above doc to enable TLS 1.2 (installed the additional apache package using the install_AG_Openssl101.sh script). After making the changes, all 502 proxy error proxy services except one worked.Users accessing the problem secure Web server woul dget 502 errors, and the error_log file on the AG would report the following: [error] (502)Unknown error 502: proxy: pass request body failed to 10.175.121.57:443 (10.175.121.57) AMEVENTID#8: proxy: Error during SSL Handshake with remote server returned by Tests were done adding a few SSL advanced options, but to no avail. These options included: - SSLProxyCheckPeerCN off - SSLProxyProtocol +SSLv2 +SSLv3 +TLSv1 +TLSv1.1 - SSLProxyVerify none LAN traces show that the AG would close the TCP connection after the Server Hello Done is returned from the secure web server. Resolution Modified the Advanced Options for this proxy service to include the following:SSLProxyCipherSuite ALL:!EDH:!DHE:!ECDHE:!ECDH:!ADH:RC4+RSA:!EDH:+HIGH:+MEDIUM:+LOW:!SSLv2:!3DES:!DES:+EXP Cause The cipher sent back from the Web server is something Apache failed to handle correctly, hence the TCP FIN to close the connection with the Web server.By using the SSLProxyCipherSuite advanced option above, the list of supported ciphers the AG could negotiate was reduced. The Web serv
One games Xbox 360 games PC games Windows games Windows phone games Entertainment All Entertainment Movies & TV Music Business & Education Business Students & educators Developers Sale Sale Find a store Gift cards Products Software & services Windows Office Free downloads & security Internet Explorer Microsoft Edge Skype OneNote OneDrive Microsoft Health MSN Bing Microsoft Groove Microsoft Movies & TV Devices & Xbox All Microsoft devices Microsoft Surface All Windows PCs & tablets PC accessories Xbox & games Microsoft Band Microsoft Lumia All Windows phones Microsoft HoloLens For business Cloud Platform Microsoft Azure Microsoft Dynamics Windows for business Office for business Skype for business Surface for business Enterprise solutions Small business solutions Find a solutions provider Volume Licensing For developers & IT pros Develop Windows apps Microsoft Azure MSDN TechNet Visual Studio For students & educators Office for students OneNote in classroom Shop PCs & tablets perfect for students Microsoft in Education Support Sign in Cart Cart Javascript is disabled Please enable javascript and refresh the page Cookies are disabled Please enable cookies and refresh the page CV: {{ getCv() }} English (United States) Terms of use Privacy & cookies Trademarks © 2016 Microsoft