I have setup an Apache 2.2.17 on Windows Server 2003 and added a basic html page with mod_ssl.so configurations. I am building this to eventually be a reverse proxy to force TLS only. So the only cipher I have enabled is TLS. I get my page to load in Chrome and Firefox, but in IE 6, 7 and 8, I get a 404 with no entry into the access.log on the apache server.
Using wireshark I can see that the handshake is started by the client and server, but the server just stops responding followed by the client sending repeated Reset requests. I am wondering if this is related to the SNI issues with earlier apache builds. I am using OpenSSL 9.8o, so this should be included.
My goal is to use this server to enable FIPS compliance for legacy servers. If there is a FAQ which can redirect my solution, I will accept that also :)
I have uploaded an export of the wireshark log, unfortunately it won't let me upload a .pcap, so it is in txt. I stopped recording before the usual 15 reset requests were seen, but you can see one at the end of the log. I am 60.107, server is 140.179 TLS-log.txt
”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
-Mike Kapnisakis, Warner Bros
With your subscription - you'll gain access to our exclusive IT community of thousands of IT pros. You'll also be able to connect with highly specified Experts to get personalized solutions to your troubleshooting & research questions. It’s like crowd-sourced consulting.
We can't always guarantee that the perfect solution to your specific problem will be waiting for you. If you ask your own question - our Certified Experts will team up with you to help you get the answers you need.
Our certified Experts are CTOs, CISOs, and Technical Architects who answer questions, write articles, and produce videos on Experts Exchange. 99% of them have full time tech jobs - they volunteer their time to help other people in the technology industry learn and succeed.
We can't guarantee quick solutions - Experts Exchange isn't a help desk. We're a community of IT professionals committed to sharing knowledge. Our experts volunteer their time to help other people in the technology industry learn and succeed.