Hi People,
We have an active proxy at a customer site, this was running unencrypted for quite some time and we attempted to configure PSK encryption without success.
Enabled the proxy encryption at the Zabbix Server UI
And configured the below 4 parameters at the zabbix_proxy.conf
TLSConnect = psk
TLSAccept = psk
TLSPSKIdentity=xyx
TLSPSKFile= c:\zabbix\sec.psk
restarted the proxy.
Getting this error on Server log
27833:20210129:154052.781 failed to accept an incoming connection: from X.X.X.X: TLS handshake set result code to 1: file s3_srvr.c line 1435: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher: TLS write fatal alert "handshake failure"
Getting this error on Proxy log
16595:20210129:160904.586 Unable to connect to the server [xyz]:10051 [TCP successful, cannot establish TLS to [[xyzu]:10051]: connection closed by peer]
Any piece of advice would be appreciated.
Cheers
Salai
We have an active proxy at a customer site, this was running unencrypted for quite some time and we attempted to configure PSK encryption without success.
Enabled the proxy encryption at the Zabbix Server UI
And configured the below 4 parameters at the zabbix_proxy.conf
TLSConnect = psk
TLSAccept = psk
TLSPSKIdentity=xyx
TLSPSKFile= c:\zabbix\sec.psk
restarted the proxy.
Getting this error on Server log
27833:20210129:154052.781 failed to accept an incoming connection: from X.X.X.X: TLS handshake set result code to 1: file s3_srvr.c line 1435: error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher: TLS write fatal alert "handshake failure"
Getting this error on Proxy log
16595:20210129:160904.586 Unable to connect to the server [xyz]:10051 [TCP successful, cannot establish TLS to [[xyzu]:10051]: connection closed by peer]
Any piece of advice would be appreciated.
Cheers
Salai
Comment