Ah00898 Error During Ssl Handshake With Remote Server Returned By
Contents |
Start here for a quick overview of the site Help Center Detailed answers to any questions you might proxy error during ssl handshake with remote server returned by have Meta Discuss the workings and policies of this site About error during ssl handshake with remote server returned by apache Us Learn more about Stack Overflow the company Business Learn more about hiring developers or posting ads
Ah00898 Error Reading From Remote Server Returned By
with us Server Fault Questions Tags Users Badges Unanswered Ask Question _ Server Fault is a question and answer site for system and network administrators. Join them; it
Reason Error During Ssl Handshake With Remote Server
only takes a minute: Sign up Here's how it works: Anybody can ask a question Anybody can answer The best answers are voted up and rise to the top proxy:error AH00898: Error during SSL Handshake with remote server up vote 8 down vote favorite 4 I have a server that acts as a front-end for a error during ssl handshake with remote server proxy cPanel mailserver in a network. The apache proxy on the front-end server ran for 152 days without fault then suddenly I now get 500/502 errors when using it to access the webmail clients of the mailserver. The front-end server uses a signed SSL cert, the cPanel sever is using a self signed cert. Here is the error log output from the front-end server when it first started happening: [Tue Sep 10 18:22:52.959291 2013] [proxy:error] [pid 19531] (502)Unknown error 502: [client 173.xx.xx.xx:9558] AH01084: pass request body failed to 184.xx.xx.xx:2096 (184.xx.xx.xx), referer: https://domain.com:2096/cpsess12385596/3rdparty/roundcube/?_task=mail&_refresh=1&_mbox=INBOX
[Tue Sep 10 18:22:52.959469 2013] [proxy:error] [pid 19531] [client 173.xx.xx.xx:9558] AH00898: Error during SSL Handshake with remote server returned by /cpsess12385596/3rdparty/roundcube/, referer: https://domain.com:2096/cpsess12385596/3rdparty/roundcube/?_task=mail&_refresh=1&_mbox=INBOX The front-end server is an EC2 instance running Apache/2.4.6 (Amazon) My VirtualHost setup for the proxy on this server is as follows: < VirtualHost *:2096> ServerName domain.com
SSLEngine on SSLProxyEngine on SSLProxyVerify none SSLProxyCheckPeerCN off SSLCertificateFile /x/x/x/domain.com.crt SSLCertificateKeyFile /x/x/x/domain.com.key SSLCACertificateFile /x/x/x/domain.com.cabundle ProxyPass / https://184.xx.xx.xx:2096/ ProxyPassReverse / https://184.xx.xx.xx:2096/ ProxyPassReverseCookieDomain 184.xx.xx.xx:2096 domain.com ProxyPassReverseCookihere for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of this site About Us Learn more about Stack Overflow the company
Ssl Handshake With Remote Server Failed
Business Learn more about hiring developers or posting ads with us Stack Overflow Questions (502)unknown error 502: proxy: pass request body failed to Jobs Documentation Tags Users Badges Ask Question x Dismiss Join the Stack Overflow Community Stack Overflow is a community of 4.7 million programmers, sslproxyverify just like you, helping each other. Join them; it only takes a minute: Sign up Error during SSL Handshake with remote server up vote 39 down vote favorite 13 I have Apache2 (listening on 443) and http://serverfault.com/questions/538086/proxyerror-ah00898-error-during-ssl-handshake-with-remote-server a web app running on Tomcat7 (listening on 8443) on Ubuntu. I set apache2 as reverse proxy so that I access the web app through port 443 instead of 8443. Besides, I need to have SSL communication not only between browser and apache2 but also between apache2 and tomcat7, thus I set SSL on both apache2 and tomcat7. If I try to access the web app by directly contacting tomcat7, everything is fine. The http://stackoverflow.com/questions/18872482/error-during-ssl-handshake-with-remote-server problem is that when I try to access the tomcat's web app through apache2 (reverse proxy), on the browser appears the error: Proxy Error The proxy server could not handle the request GET /web_app. Reason: Error during SSL Handshake with remote server apache tomcat ssl reverse-proxy share|improve this question edited Sep 18 '13 at 13:19 Qben 1,76821120 asked Sep 18 '13 at 12:37 user2791481 196134 Apache does not truest the certificate you have installed on the tomcat. Is it a self-signed cert? Or is it made by an in-house CA? –MK. Sep 18 '13 at 12:55 1 It is self signed with this command: openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt –user2791481 Sep 18 '13 at 12:58 1 serverfault.com/questions/356678/… I think this is what you want: SSLProxyVerify none SSLProxyCheckPeerCN off –MK. Sep 18 '13 at 13:03 6 Better to set SSLProxyCACertificateFile to your private CA certicate, instead of just turning off verification. –nathan.f77 Jan 9 '14 at 0:22 add a comment| 1 Answer 1 active oldest votes up vote 83 down vote The comment by MK pointed me in the right direction. In the case of Apache 2.4 and up, there are different defaults and a new directive. I am running Apache 2.4.6, and I had to add the following directi
contribution towards the costs, the time and effort that's going in this site and building. Thank You! Steffen Apache Lounge is not sponsored by anyone.Your donations will help to keep https://www.apachelounge.com/viewtopic.php?t=5320 this site alive and well, and continuing the building of the binaries. Apache 2.4.4 Reverse Proxy and SSL issue Apache Forum Index -> Apache Building & Member Downloads View previous topic :: View next topic Author Message raviJoined: 01 May 2013Posts: 7Location: india Posted: Tue 07 May '13 12:03 Post subject: Apache 2.4.4 Reverse Proxy and SSL issue Hi all, Apache is built with remote server openssl OpenSSL/1.0.1e and i configured it with reverse proxy and ssl. when i requested https://localhost/ it gives response "it works!" and when i requested https://localhost/app1/ it gives folling message in browser Proxy Error The proxy server could not handle the request GET /app1/. Reason: Error during SSL Handshake with remote server when i open apache error lo file i found following logs: [Tue May 07 15:11:34.982849 2013] ssl handshake with [ssl:warn] [pid 5272:tid 1988] AH02268: Proxy client certificate callback: (www.example.com:443) downstream server wanted client certificate but none are configured [Tue May 07 15:11:34.992851 2013] [proxy_http:error] [pid 5272:tid 1988] (502)Unknown error: [client ::1:8839] AH01084: pass request body failed to 172.16.17.218:443 (172.16.17.218) [Tue May 07 15:11:34.992851 2013] [proxy:error] [pid 5272:tid 1988] [client ::1:8839] AH00898: Error during SSL Handshake with remote server returned by /app1/ [Tue May 07 15:11:34.992851 2013] [proxy_http:error] [pid 5272:tid 1988] [client ::1:8839] AH01097: pass request body failed to 172.16.17.218:443 (172.16.17.218) from ::1 () [Tue May 07 15:11:35.010855 2013] [mpm_winnt:notice] [pid 6544:tid 732] AH00428: Parent: child process 5272 exited with status 3221225477 -- Restarting. [Tue May 07 15:11:36.161085 2013] [ssl:warn] [pid 6544:tid 732] AH01906: RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Tue May 07 15:11:36.161585 2013] [ssl:warn] [pid 6544:tid 732] AH01909: RSA certificate configured for www.example.com:443 does NOT include an ID which matches the server name [Tue May 07 15:11:36.999252 2013] [mpm_winnt:notice] [pid 6544:tid 732] AH00455: Apache/2.4.4 (Win32) OpenSSL/1.0.1e configured -- resuming normal operations [Tue May 07 15:11:36.999252 2013] [mpm_winnt:notice] [pid 6544:tid 732] AH00456: Server built: May 3 2013 12:49:47 [Tue May 07 15:11:36.999252 2013] [core:notice] [pid 6544:tid 732] AH00094: Command line: 'C:\\Apache24\\bin\\httpd.exe -d C:/Apache24