Apache Reverse Proxy Error During Ssl Handshake With Remote Server
Contents |
Start here for a quick ssl handshake with remote server failed overview of the site Help Center Detailed answers to
(502)unknown Error 502: Proxy: Pass Request Body Failed To
any questions you might have Meta Discuss the workings and policies of this
Ah00898: Error During Ssl Handshake With Remote Server Returned By
site About Us Learn more about Stack Overflow the company Business Learn more about hiring developers or posting ads with us
Sslproxyverify
Server Fault Questions Tags Users Badges Unanswered Ask Question _ Server Fault is a question and answer site for system and network administrators. Join them; it only takes a minute: Sign up Here's how it works: Anybody can ask a question Anybody can answer sslproxycheckpeername The best answers are voted up and rise to the top Need help trouble shooting Https webserver error - SSL Handshake failed up vote 8 down vote favorite 4 I followed this guide: http://hints.macworld.com/article.php?story=20041129143420344 Here is my virtual host definition
Last Prev Next This bug is not in your last search results. Bug55148 - Error during sslproxycheckpeercn SSL Handshake with remote server Summary: Error during SSL Handshake with ah01097: pass request body failed to remote server Status: NEEDINFO Product: Apache httpd-2 Classification: Unclassified Component: mod_proxy Version: 2.2.24 Hardware: PC Linux Importance: ah00898: error reading from remote server returned by P2 normal (vote) TargetMilestone: --- Assigned To: Apache HTTPD Bugs Mailing List URL: Keywords: Depends on: Blocks: Show dependency tree Reported: 2013-06-26 20:20 UTC by Allen Zhao http://serverfault.com/questions/356678/need-help-trouble-shooting-https-webserver-error-ssl-handshake-failed Modified: 2013-09-05 05:37 UTC (History) CC List: 0 users Attachments Add an attachment (proposed patch, testcase, etc.) Note You need to log in before you can comment on or make changes to this bug. Description Allen Zhao 2013-06-26 20:20:10 UTC We upgrade our apache from 2.2.17 to 2.2.24. We use the same setting. However, we keep getting 502 https://bz.apache.org/bugzilla/show_bug.cgi?id=55148 bad gateway issue. I tried following settings as well, but no luck. SSLProxyCACertificateFile /work/users/infra/proxy/proxyCA.crt SSLProxyMachineCertificateFile /work/users/infra/proxy/lp97643.pem SSLProxyVerify none SSLProxyCheckPeerCN off SSLProxyCheckPeerExpire off I have verified by proxyCA with curl, it works fine. I struggled with this issue for couple of weeks. I doubt this might be new bug. Thanks a lot, The error log: [Wed Jun 26 19:08:35 2013] [error] (502)Unknown error 502: proxy: pass request body failed to 142.63.42.254:443 [Wed Jun 26 19:08:35 2013] [error] [client 192.168.156.135] proxy: Error during SSL Handshake with remote server returned by /Offline/, referer: https://abc.xyz.com/Offline/ [Wed Jun 26 19:08:35 2013] [error] proxy: pass request body failed to 142.63.42.254:443 from 192.168.156.135 () The config: NameVirtualHost *:50211
Favorite Rating: "Server Error!" - "Error during SSL handshake with remote server"This document (7017010) is provided subject to https://www.netiq.com/support/kb/doc.php?id=7017010 the disclaimer at the end of this document. Environment NetIQ Access Manager 4.1Access Manager 4.0.1 upgraded to Access Manager 4.1.1Cloud Manager 2.3 upgraded to Cloud Manager 2.4 Situation Access Manager setup with Access Gateway accelerating the Cloud Manager servers. Everything has been working fine for a year, when it was decided remote server to upgrade both the Access Manager and Cloud Manager servers. As soon as this happens, users get the following error accessing the service:Server Error!Error message: The proxy could not handle the request GET /.Reason: Error during SSL handshake with remote serverAll other back end servers (HTTP and HTTPS) worked fine.Enabling debug logging ssl handshake with on the Apache proxy showed the following details:Nov 19 16:09:13 mysso httpd[8744]: [debug] ssl_engine_kernel.c(1911): OpenSSL: Loop: SSLv3 read server hello ANov 19 16:09:13 mysso httpd[8744]: [debug] ssl_engine_kernel.c(1333): Certificate Verification: depth: 2, subject: /O=Entrust.net/OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Certification Authority (2048), issuer: /O=Entrust.net/OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Certification Authority (2048)Nov 19 16:09:13 mysso httpd[8744]: [debug] ssl_engine_kernel.c(1333): Certificate Verification: depth: 1, subject: /C=US/O=Entrust, Inc./OU=www.entrust.net/rpa is incorporated by reference/OU=(c) 2009 Entrust, Inc./CN=Entrust Certification Authority - L1C, issuer: /O=Entrust.net/OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Certification Authority (2048)Nov 19 16:09:13 mysso httpd[8744]: [debug] ssl_engine_kernel.c(1333): Certificate Verification: depth: 0, subject: /C=IE/L=Dublin/O=Novell Inc/CN=*.novell.com, issuer: /C=US/O=Entrust, Inc./OU=www.entrust.net/rpa is incorporated by reference/OU=(c) 2009 Entrust, Inc./CN=Entrust Certification Authority - L1CNov 19 16:09:13 mysso httpd[8744]: [debug] ssl_engine_kernel.c(1911): OpenSSL: Loop: SSLv3 read server certificate ANov 19 16:09:13 mysso httpd[8744]: [debug] ssl_engine_kernel.c(1940): OpenSSL: Exit: error in SSLv3 read server key exchange BNov 19 1