Sidebar

2022 Zabbix中国峰会
2022 Zabbix中国峰会

1 连接类型或权限问题

服务器配置为与agent程序连接,但agent仅接受未加密的连接

在服务器或proxy日志(带有mbed TLSPolarSSL)1.3.11)

Get value from agent failed: ssl_handshake(): SSL - The connection indicated an EOF

在服务器或proxy日志中(使用GnuTLS 3.3.16)

Get value from agent failed: zbx_tls_connect(): gnutls_handshake() failed: \
           -110 The TLS connection was non-properly terminated.

在服务器或proxy日志中(使用OpenSSL 1.0.2c)

Get value from agent failed: TCP connection successful, cannot establish TLS to [[127.0.0.1]:10050]: \
           Connection closed by peer. Check allowed connection types and access rights

一方连接证书,但另一方只接受PSK,反之亦然

在任意日志中(使用mbed TLSPolarSSL)):

failed to accept an incoming connection: from 127.0.0.1: ssl_handshake():\
           SSL - The server has no ciphersuites in common with the client

在任意日志中(使用GnuTLS):

failed to accept an incoming connection: from 127.0.0.1: zbx_tls_accept(): gnutls_handshake() failed:\
           -21 Could not negotiate a supported cipher suite.

在任意日志中(使用OpenSSL 1.0.2c):

failed to accept an incoming connection: from 127.0.0.1: TLS handshake returned error code 1:\
           file .\ssl\s3_srvr.c line 1411: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher:\
           TLS write fatal alert "handshake failure"