[squid-users] Error negotiating SSL connection on FD 12: Success

Ashish Behl ashish_behl at yahoo.com
Wed May 6 10:31:50 UTC 2015


I an encountering the same issue.

Using squid 3.5.4 inside docker container, I have set up proxy in my browser
to point to the squid proxy port.
I have also seperated the HTTP and HTTPS ports in squid as well as in
browser.
Full details of the error are on stackoverflow:
http://stackoverflow.com/questions/30057104/squid-ssl-bump-3-5-4-error-error-negotiating-ssl-connection-on-fd-10-success

Please let me know what is wrong here.


Nathan Hoad wrote
> You're experiencing http://bugs.squid-cache.org/show_bug.cgi?id=4236 -
> give the patch on there a try and see if it helps. It should tell you
> what's really failing.
> 
> You'll start getting messages like this:
> 
> Error negotiating SSL connection on FD 439:
> error:00000005:lib(0):func(0):DH lib (5/-1/0)
> 
> Which, in my experience, indicates a client is attempting to put
> non-SSL traffic through that https_port, e.g. HTTP.
> 
> Nathan.
> 
> On 5 May 2015 at 05:13, snakeeyes <

> ahmed.zaeem@

> > wrote:
>> Hi
>>
>> I created privste & public keys for squid , but it still give me error
>> for
>> negotiating
>>
>>
>> https_port 443 accel key=/root/CA/myCA/private/squid.local.key
>> cert=/root/CA/myCA/certs/squid.local.crt
>> cache.log
>>
>>
>>
>> 2015/05/04 11:59:19 kid1| Error negotiating SSL connection on FD 12:
>> Success
>> (0)
>>
>> 2015/05/04 11:59:21 kid1| Error negotiating SSL connection on FD 12:
>> Success
>> (0)
>>
>>
>>
>> Any help ?
>>
>>
>> _______________________________________________
>> squid-users mailing list
>> 

> squid-users at .squid-cache

>> http://lists.squid-cache.org/listinfo/squid-users
>>
> _______________________________________________
> squid-users mailing list

> squid-users at .squid-cache

> http://lists.squid-cache.org/listinfo/squid-users





--
View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/Error-negotiating-SSL-connection-on-FD-12-Success-tp4671090p4671139.html
Sent from the Squid - Users mailing list archive at Nabble.com.


More information about the squid-users mailing list