Forum Discussion
NimbostratusAdding LTM to GTM SSL error
After running bigip_add to add the LTM server to GTM this is flooding the GTM logs.
May 20 10:51:00 kc-bigipvirt01 notice gtmd[7561]: 011ae020:5: Connection in progress to 10.30.0.101
May 20 10:51:00 kc-bigipvirt01 notice gtmd[7561]: 011ae01c:5: Connection complete to 10.30.0.101. Starting SSL handshake
May 20 10:51:00 kc-bigipvirt01 err gtmd[7561]: 011ae0fa:3: iqmgmt_ssl_connect: SSL error: error:1409441B:SSL routines:SSL3_READ_BYTES:tlsv1 alert decrypt error (336151579)
May 20 10:51:00 kc-bigipvirt01 iqmgmt_ssl_connect: SSL error:1409441B:SSL routines:SSL3_READ_BYTES:tlsv1 alert decrypt error
3 Replies
Seth_CooperEmployee
It sounds like a bad device certificate or maybe NTP is off. Can you check NTP and make sure it is working and if so then create a new device certificate and run bigip_add to exchange between the GTM and LTM?
Seth
mkozak_166878The solution was running big3d_install to install the current big3d version to the older LTM.
forsanAltostratus
Thank you mkozark!
the big3d_install solved my issue with the following log entry:
Aug 29 14:32:16 bigip2 notice gtmd[11571]: 011ae020:5: Connection in progress to 192.168.80.2 Aug 29 14:32:16 bigip2 notice gtmd[11571]: 011ae01c:5: Connection complete to 192.168.80.2. Starting SSL handshake Aug 29 14:32:16 bigip2 err gtmd[11571]: 011ae0fa:3: iqmgmt_ssl_connect: SSL error: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (336151576) Aug 29 14:32:16 bigip2 iqmgmt_ssl_connect: SSL error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca
Br Forsan
