Forum Discussion
SSL handshake failed
Hello Dears
I noticed on the log there are many SSL handshake failed with my virtual server so any advise about how to solve the issue.
Bests
Hello,
Please check the below link:
When experiencing SSL handshake failures issues, you can use the following troubleshooting steps to determine the root cause:
- Identifying SSL handshake failures
- Enabling SSL debug logging
- Testing SSL connections (using s_client)
- Reviewing log messages related to SSL handshake failures
- Packet tracing using the ssldump utility
Lots of good advice, specially the whole list from Mohamed_Salah_
There is a good chance you have quite some of them, where it is the other side (the client) which causes them. Make sure you focus on the ones you see a lot or able to solve with the client side. Also keep in mind with an internet connected ADC you will see lots of bots and scans which trigger these.
COMPLETELY AGREE. This is something to chase if its part of an active troubleshooting process where you following a known source. Odds are this is either on the internet OR being monitored /probed by a tool that is not correctly setup. I get thousands of these per day. I chased them once with the links provided by Mohamed - and not a one of my finding came back to real traffic flows.
Can you share the logs?
- zamroni777Nacreous
capture the tcpdump and open the result in wireshark.
the detail of ssl/tls session setup can be easily seen in wireshark
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com