p***@w3eta.net
2015-10-13 17:27:37 UTC
I've been experimenting with mod_proxy as a reverse proxy, and so far have not
been able to get the data connection to work with TLS.
The control connection works fine with TLS, but any command that creates a data
connection fails with "tls_getc SSL_ERROR_SSL" displayed at the client. Then
eventually the control connection will timeout. If I use passive mode, then the
first data connection is successful, but the next data connection associated
with that control connection fails.
I have all the certificate verification turned off. The client has no trouble
connecting to the backend ftp server, and the proxy works as expected with TLS
turned off.
Both that backend and proxy servers are ProFTPD 1.3.6rc2 cloned from github.
I've spent the last several days looking through logs and the source code, and
trying different configuration options. I'm still not sure if I'm doing
something wrong or there is bug somewhere.
Any suggestions on things to try, or where to look? Or details you might need
to help diagnose?
--
Dan Campbell
been able to get the data connection to work with TLS.
The control connection works fine with TLS, but any command that creates a data
connection fails with "tls_getc SSL_ERROR_SSL" displayed at the client. Then
eventually the control connection will timeout. If I use passive mode, then the
first data connection is successful, but the next data connection associated
with that control connection fails.
I have all the certificate verification turned off. The client has no trouble
connecting to the backend ftp server, and the proxy works as expected with TLS
turned off.
Both that backend and proxy servers are ProFTPD 1.3.6rc2 cloned from github.
I've spent the last several days looking through logs and the source code, and
trying different configuration options. I'm still not sure if I'm doing
something wrong or there is bug somewhere.
Any suggestions on things to try, or where to look? Or details you might need
to help diagnose?
--
Dan Campbell