I'm using the MOD5541X to connect securely to a server using SSL_connect with Netburner 2.9.5.
The parameters used to work with the old server, but the provider has moved it over to Kubernetes and the connection fails now:
int fds = SSL_connect(ipadd, 0, NV_Settings.nAPIDestPort, TICKS_PER_SECOND * 120,NULL);
if (fds <= 0)
{
close(fds);
switch (fds)
{
case SSL_ERROR_FAILED_NEGOTIATION:
{
iprintf(" SSL_ERROR_FAILED_NEGOTIATION \r\n"); //-256
break;
}
I keep getting -256 as the return value.
The new server has TLSv1.2 and v1.3 enabled, but I can't find in the Netburner documentation what level is possible using 2.9.5 ?
TLS or SSL level used with 2.9.5
Re: TLS or SSL level used with 2.9.5
Hello,
The default for 2.9.5 is TLS 1.2. The error message you indicate is negotiation failed, so it must be for some other reason. A wireshark trace might help. It might be a good idea to work directly with our SSL/TLS engineers with a support ticket.
The default for 2.9.5 is TLS 1.2. The error message you indicate is negotiation failed, so it must be for some other reason. A wireshark trace might help. It might be a good idea to work directly with our SSL/TLS engineers with a support ticket.
Re: TLS or SSL level used with 2.9.5
Thanks for the clarification.
I never managed to figure out how to do a Wireshark trace of packets between the Netburner and the external server using my Windows PC.
In the end I upgraded to 3.4.0 and the connection now works again.
I guess something got fixed in one of the upgrades, but it's all good now.
I never managed to figure out how to do a Wireshark trace of packets between the Netburner and the external server using my Windows PC.
In the end I upgraded to 3.4.0 and the connection now works again.
I guess something got fixed in one of the upgrades, but it's all good now.
Re: TLS or SSL level used with 2.9.5
In 3.4 it supports both TLS 1.2 and 1.3 by default. I think that might be what made it work.
Re: TLS or SSL level used with 2.9.5
Thanks for getting back to the forum and reporting that. Might help others.