Closed Yeager1998 closed 1 year ago
Hi @michalvasko,
The print of netopeer2-server
is as follows:
[INF]: LN: Trying to connect via IPv6 to ::1:4335.
[INF]: LN: getsockopt() error (Connection refused).
[INF]: LN: Trying to connect via IPv4 to 127.0.0.1:4335.
[INF]: LN: getsockopt() error (Connection refused).
[INF]: LN: Trying to connect via IPv6 to ::1:4335.
[INF]: LN: Successfully connected to localhost:4335 over IPv6.
[INF]: SR: Session 388 (user "root", CID 29) created.
[INF]: SR: Session 389 (user "root", CID 29) created.
[INF]: SR: Session 390 (user "root", CID 29) created.
**[ERR]: LN: SSL_accept failed (sslv3 alert bad certificate).**
[INF]: LN: Trying to connect via IPv6 to ::1:4335.
[INF]: LN: getsockopt() error (Connection refused).
[INF]: LN: Trying to connect via IPv4 to 127.0.0.1:4335.
[INF]: LN: getsockopt() error (Connection refused).
[INF]: LN: Trying to connect via IPv6 to ::1:4335.
[INF]: LN: getsockopt() error (Connection refused).
All software versions are as follows:
1. libyang-2.0.231
2. libssh-0.9.6
3. libnetconf2-2.1.18
4. sysrepo-2.1.84
5. netopeer2-2.1.36
Thanks.
The command you are using seem fine so the only problem I can find are the outdated versions of our libraries that you are using. Try updating them and let us know if you still encounter the same behavior.
Hi @michalvasko After I updated all software versions, TLS call-home was successfull. All software versions are as follow:
1. libyang-2.1.55
2. libssh-0.9.6
3. libnetconf2-2.1.31
4. sysrepo-2.2.60
5. netopeer2-2.1.59
One more question: I tried to use server.key
and server.crt
for call-home authentiation, it works, is that a normal behavior?
Thanks.
Why should not the server certificate and key work for Call Home? I do not understand the question.
Hi @michalvasko I use SSH a lot and don't know much about TLS,and I will learn more information about TLS.
Thanks for your help
Hi @michalvasko, I tried the TLS connection according to README.md, it succeeded. But when I use the same certificates and authorization for TLS call-home, the
neopeer2-cli
print an certificate verification error. Here's what I do withnepeer2-cli
:Looking forward to your reply.