All Questions
Tagged with tls networking
24 questions
0
votes
0
answers
164
views
Pure-ftpd set up for TLS "AUth command unsupported"
I enabled TLS on pure-ftpd as per instructions. Created DH file, installed certificates, increased the logging level.
Now, when connecting from filezilla, I receive a hello stating that TLS is enabled/...
- 1
0
votes
0
answers
939
views
How can I fix this? “XRAY: transport/internet/websocket: failed to serve http for WebSocket > accept tcp [::]:8443: use of closed network connection.”
Recently I bought a Germany based VPS server to create my own VPN using v2ray because I live in Iran and the internet is heavily censored here.
I connected my domain to CloudFlare CDN to avoid my ...
- 1
0
votes
1
answer
310
views
PolarProxy doesnt write packets to the pcap file
Im trying to use PolarProxy on windows to capture some packets but when i test it out it doesnt write anything to the pcap file
I tried using --autoflush 1 which is meant to write it to pcap file ...
- 1
0
votes
0
answers
188
views
TLS Error: TLS key negotiation failed to occur withing 60 seconds
I'm working remotely using my laptop by connecting to the office VPN server (in India), if I connect from UAE, the connection works immediately fine... But now when I try to connect from Egypt (using ...
- 1
0
votes
0
answers
218
views
What cause client not to sent [ChangeCipherSpec] package
I face a problem. i have a device when doing TLS handshake, Client fail to send [ChangeCipherSpec], currently all https website is failed but http is working.
i check it from wireshark, it show as ...
- 1
0
votes
1
answer
3k
views
Is it possible to use AdGuard Home with DNSSEC to DNS over TLS but with a Bind9 internal DNS Server downstream of AdGuard?
In the diagram I threw together the left hand side shows my current LAN's DNS query path, I would like to have it as shown on the right hand side with AdGuard and DNSSEC or DNS over TLS if possible I ...
0
votes
2
answers
2k
views
Could in-place upgrade of Server 2012 to 2019 affect firewall rules or IIS sites?
An application I support has been installed on Windows Server 2012. The server is to be upgraded to Server 2019 in an in-place upgrade. This is to be done without being tested first.
The application ...
- 143
-1
votes
1
answer
470
views
TLS inspection with proxy
How can I install a proxy in my network to be able decrypt any traffic that passes through my network? I own all devices, and if there is a need I can provide the private keys and certificates for the ...
ArmSec247
0
votes
1
answer
412
views
TLS handshake to microsoft.com hangs
Two Linux machines (Ubuntu 20.04 & 18.04.4 running on vSphere) behind NAT are not able to complete the TLS handshake to https://microsoft.com and https://mcr.microsoft.com, while they are able to ...
1
vote
1
answer
417
views
Seeking explanation of occurences during Wireshark SSL/TLS decryption
Currently using:
OS: Official Kali Linux 2019.4
Browser:
Chromium Version 76.0.3809.100 (Developer Build) built on Debian bullseye/sid, running on Debian kali-rolling (64-bit)
Wireshark 2.6.10 (Git ...
- 11
0
votes
1
answer
6k
views
lftp behind firewall – what ports need to be opened?
I need to setup a secure file transfer from Linux client to z/OS ftp server using TLS 1.2 secure protocol. I am trying to use the lftp client for this purpose.
My Linux server is behind a firewall. I ...
- 1
1
vote
1
answer
307
views
Openssl SSL_CTX_new is successfull but set errno to ENOSYS (Function not implemented)
The SSL_CTX_new() function works fine but something is strange it sets errno to ENOSYS.
Documentation doesn't say anything about this :
https://www.openssl.org/docs/man1.1.1/man3/SSL_CTX_new.html
#...
- 13
0
votes
1
answer
1k
views
Block all non-HTTPS traffic when browsing
I am trying to get approval for a firewall rule from an external Windows system into our company network to access a proxy to get back out to the Internet. My needs will involve use of a web browser, ...
- 563
0
votes
2
answers
116
views
Building a program in Linux
I am a Windows user but I need to use a Linux tool. I am using Ubuntu. The tool's website here provided a file named: build-x86-64.sh which I installed it. It then says all what you need is to run: % ....
- 579
0
votes
0
answers
528
views
Understanding Curl command and timing difference
I have a system setup like this -
Internet <--------------> (eno1) Comp A (192.168.151.19)(eth1) <----------> (eth1) Comp B (192.168.151.15)
eno1 and eth1 are bridged.
Comp B access the ...
user647332
0
votes
1
answer
2k
views
Session closing unexpectedly
Forgive my lack of knowledge, as this may be a simple question. Since updating my PC, I am getting the following in chrome when I try to reach certain financial sites.
This site can’t be reached
...
0
votes
1
answer
190
views
Why are HTTPS connections not slow anymore?
When the web was young, HTTP connections were relatively fast, and HTTPS connections were painfully slow.
In the last several years, the speed of HTTPS connections are often very similar to that of ...
- 9,357
0
votes
0
answers
124
views
How Firewall monitors SSL HTTPS Content? Like Content Filtering
as per my knowledge, in SSL/TLS , only the source and destination machine can decrypt the message during a data communication . Then how a firewall like (Cyberoam) monitors the SSL Traffic, Like ...
- 176
0
votes
1
answer
3k
views
How to check which TLS cipher suite is used in tcp connection
I am using imapfilter to sort my mails on a remote IMAP server provided by some company. My configuration restricts imapfilter to the usage of TLS 1.2 via STARTTLS. I do know how to check which TLS ...
- 111
0
votes
1
answer
3k
views
Any way to create OpenSSL certificate request that would be valid for two IP addresses?
I have a private app running as a webserver on a machine on an isolated wifi router using 192.168.1.*/255.255.255.0, with no DNS capability & no upstream Internet; basically, only local wireless. ...
- 233
1
vote
2
answers
63
views
Is there a hardware appliance that can see VPN packet payloads? [closed]
My IT staff at work claims they have a hardware appliance that can see the payload of a packet that has been encrypted using a VPN. I was told this only works if the connection was established on a ...
- 21
1
vote
0
answers
1k
views
*some* OpenVPN clients won't connect within same network as server (TLS Handshake Failed)
I have an Raspberry Pi running an open VPN server on my LAN. I moved this server from one location to another (at the old location, it was working just fine).
NOW my android devices are running on ...
- 11
0
votes
1
answer
1k
views
Programs having trouble connecting to internet resources
I am running Windows 8. Recently, a bunch of my programs such as GitHub for Windows, WebStorm, Chrome, etc.. stopped being able to use internet resources. Many say, that there me bay a firewall or ...
- 255
0
votes
1
answer
4k
views
DiskStation: OpenVPN TLS Handshake error (self-signed cert & defaults)
I have a DS 1813+ (DSM 5 4493 Update 1 - latest) and am having issues setting up OpenVPN:
DS' 3rd interface is directly connected on a static IP, with the DS firewall set to only allow the VPN app on ...
