So I ran both of those openssl commands and they match up.
So I think I will try upgradiong to 4.0.2. Is there any upgrade path from 3.2.0 to 4.0.2?
first, and fore-most: "My ATS version is 3.2.0", our current latest stable is 4.0.2, and we highly recommend upgrading to that version (we also appreciate reports about why you won't or cannot upgrade)
The reason curl is giving you these errors is because SSL isn't actually configured properly because:
"""ERROR: SSL ERROR: Cannot use server private key file: /usr/local/etc/trafficserver/domain2.key"""
These errors have been completely reworked in 4.x (I had to switch to the 3.2.x code to even find it), but generally it means we were unable to load the certificate, as you're not getting a permission error, and as the path exists the only explanation left is that the certificate and the key don't match up.
You an verify that with:
openssl x509 -in path-to-certificate -noout -modulus
openssl rsa -in path-to-key -noout -modulus
One final remark: """dest_ip=ipaddressofdomain2:443 ssl_cert_name=domain2.cer ssl_key_name=domain2.key""", 443 is default, you can leave that out.
That's all from me,
Well! With 4.1.1 now real soon to be out, you could directly upgrade to that.
The upgrade procedure is the same: https://cwiki.apache.org/confluence/display/TS/Upgrading+to+v4.0
Tel: +43 (0) 664 886 22 883
Mail: [hidden email]
GPG: 8716 7A9F 989B ABD5 100F 4008 F266 55D6 2998 1641
|Free forum by Nabble||Edit this page|