search

DNS-OARC / flamethrower

a DNS performance and functional testing utility supporting UDP, TCP, DoT and DoH
Apache License 2.0
319 stars 37 forks source link

Is it possible to run DoH test with Insecure mode" #81

Open mypzzz opened 3 years ago

mypzzz commented 3 years ago

Hi,

I want to run performance testing on a private DoH server with self sign cert, but I found http2 sent "Encrypted Alert" after encrypted handshake and it fail to sent a DoH request with an error below,

root@mypz:~# ./flame -P 10.1.2.101/dns-query -c 1 -q 1 binding traffic generators to 0.0.0.0 flaming target(s) [10.1.2.101] on port 443 with 1 concurrent generators, each sending 1 queries every 1000ms on protocol doh query generator [static] contains 1 record(s) Cannot get alpn HTTP2 failed in sending data HTTP2 failed in sending data

image

Is it possible to run with insecure mode to disable TLS certificate verification ?

Regards,

weyrick commented 3 years ago

@mypzzz thanks for the report, yes if this is not currently possible then it should be.