[squid-users] SQUID_ERR_SSL_HANDSHAKE
Roman Gelfand
rgelfand2 at gmail.com
Thu Dec 18 04:32:14 UTC 2014
*The squid version is 3.4.5. The server certificate is sslv3 generated by
openssl. Not quite sure as to what the problem is.*
*Failed to establish a secure connection to 192.168.3.108*
The system returned:
(71) Protocol error (TLS code: SQUID_ERR_SSL_HANDSHAKE)
Handshake with SSL server failed: error:140770FC:SSL
routines:SSL23_GET_SERVER_HELLO:unknown protocol
This proxy and the remote host failed to negotiate a mutually acceptable
security settings for handling your request. It is possible that the remote
host does not support secure connections, or the proxy is not satisfied
with the host security credentials.
The ssl configuration is...
https_port 443 cert=/etc/ssl/certs/webfarm.crt
key=/etc/ssl/private/webfarm.key accel vport
options=NO_SSLv2:NO_TLSv1:CIPHER_SERVER_PREFERENCE
cipher=RC4:!MD5:!aNULL:!EDH
cache_peer 192.168.3.108 parent 80 0 no-query originserver login=PASS
front-end-https=on name=cmm2Server
acl cmm2 dstdomain [my domain]
cache_peer_access cmm2Server allow cmm2
never_direct allow cmm2
http_access allow cmm2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20141217/d3a13fb9/attachment.html>
More information about the squid-users
mailing list