@kmg wrote:
I've a haproxy setup with tcp mode ssl configuration [ to offload ssl sockets traffic]. But Socket is not connecting from client.
To debug the problem I run sniffer, it shows Alert Message as "Unknown CA (48)".
Firefox browser version - 49.0 [ Ubuntu 16.04 LTS]
HAProxy config entry:
frontend wapp1
bind 10.11.12.202:8080 ssl crt /tmp/crt.pem ca-file /tmp/ca.pem verify optional crt-ignore-err all
default_backend app1Certificates seems good. I checked it through openssl
[root@webserver3 ~]# openssl verify -CAfile ca.pem verbose crt.pem crt.pem: OK [root@webserver3 ~]#Error:
SSL handshake failurethe problem comes in production env. Kindly someone help me on this
Posts: 13
Participants: 2