brocaar
commented
5 years ago Please use https://forum.loraserver.io for support related questions. Before you create a new topic, please make sure that there isn’t already a topic which covers your question.
Hello,
I need some information and this is not a bug for me.
I try to set a secure connection between the lora gateway bridge (installed on physical gateway) and the mosquitto (lora network server installed on cloud) without ssl authentication by certificate.
So, By default an SSL/TLS enabled listener will operate in a similar fashion to a https enabled web server, in that the server has a certificate signed by a CA and the client will verify that it is a trusted certificate. The overall aim for me is encryption of the network traffic.
So, is the gateway bridge check the certificate is valid and trusted by an official certificate authority ? I'm not using a self signed certificate.
As i understood, if the certificate and key is not set in lora gateway toml file (or arguments), it's not possible to establish a connection to the LNS (mosquitto), right ?
I'm using the august version without geo server ....
Thanks by advance for your response
Some config below:
if mqtts port config (8883), put here to enable tls
listener 8883 protocol mqtt
cafile /etc/ssl/certs
certfile mosquitto/certs/xxxxxxxxxxxxxxxxxx.com.cer
certfile mosquitto/certs/http.pem
keyfile mosquitto/certs/xxxxxxxxxxxxxxxxx.com.key
keyfile mosquitto/certs/http-key.pem
require_certificate false
And on lora gateway bridge side: /home/root/lora-gateway-bridge/bin/lora-gateway-bridge --udp-bind $UDP_HOST:$UDP_PORT --mqtt-server tcp://$MQTT_HOST:$MQTT_PORT --mqtt-username $USERNAME --mqtt-password $PASSWORD #2>&1 | $LOGGER & ==> when i use ssl://..... cannot connect, so (server cert or client cert) and public key required right ?