We are experiencing SSL connection errors from client on first connections to our site which are docker services sitting behind the DFP proxy docker service. They occasionally get the error when connecting then future page loads seem to work ok. The errors occur in Edge, Chrome & OpenSSL client when testing.
The site is a swarm service setup behind the DFP. We are experiencing the same problem with a certificate issued by our internal CA and also when we use the lets encrypt companion DFP service with a letsencrypt certificate and experiencing the same problem in different environments.
Our upstream services consist of an Angular app and dotnet core back end services which we are experiencing the errors when accessing the site and the back end services directly when debugging the problem.
Examples of the errors:
Chrome:
![image](https://user-images.githubusercontent.com/24825800/39994248-6106c98e-5781-11e8-825c-162b6f7d97f9.png)
OpenSSL debug via git bash:
mason@workstation MINGW64 ~
$ openssl s_client -debug -connect mysite.com:443
CONNECTED(00000074)
write to 0x2954bf0 [0x2955330] (308 bytes => 308 (0x134))
0000 - 16 03 01 01 2f 01 00 01-2b 03 03 03 96 2e 3d 79 ..../...+.....=y
0010 - 30 4d 37 90 09 7d e4 dc-1e d1 0a a7 59 f7 ad f0 0M7..}......Y...
0020 - 8c 52 d3 8a f9 f6 f8 ad-b3 5b 84 00 00 ac c0 30 .R.......[.....0
0030 - c0 2c c0 28 c0 24 c0 14-c0 0a 00 a5 00 a3 00 a1 .,.(.$..........
0040 - 00 9f 00 6b 00 6a 00 69-00 68 00 39 00 38 00 37 ...k.j.i.h.9.8.7
0050 - 00 36 00 88 00 87 00 86-00 85 c0 32 c0 2e c0 2a .6.........2...*
0060 - c0 26 c0 0f c0 05 00 9d-00 3d 00 35 00 84 c0 2f .&.......=.5.../
0070 - c0 2b c0 27 c0 23 c0 13-c0 09 00 a4 00 a2 00 a0 .+.'.#..........
0080 - 00 9e 00 67 00 40 00 3f-00 3e 00 33 00 32 00 31 ...g.@.?.>.3.2.1
0090 - 00 30 00 9a 00 99 00 98-00 97 00 45 00 44 00 43 .0.........E.D.C
00a0 - 00 42 c0 31 c0 2d c0 29-c0 25 c0 0e c0 04 00 9c .B.1.-.).%......
00b0 - 00 3c 00 2f 00 96 00 41-00 07 c0 11 c0 07 c0 0c .<./...A........
00c0 - c0 02 00 05 00 04 c0 12-c0 08 00 16 00 13 00 10 ................
00d0 - 00 0d c0 0d c0 03 00 0a-00 ff 02 01 00 00 55 00 ..............U.
00e0 - 0b 00 04 03 00 01 02 00-0a 00 1c 00 1a 00 17 00 ................
00f0 - 19 00 1c 00 1b 00 18 00-1a 00 16 00 0e 00 0d 00 ................
0100 - 0b 00 0c 00 09 00 0a 00-23 00 00 00 0d 00 20 00 ........#..... .
0110 - 1e 06 01 06 02 06 03 05-01 05 02 05 03 04 01 04 ................
0120 - 02 04 03 03 01 03 02 03-03 02 01 02 02 02 03 00 ................
0130 - 0f 00 01 01 ....
read from 0x2954bf0 [0x295a890] (7 bytes => 7 (0x7))
0000 - 48 54 54 50 2f 31 2e HTTP/1.
no peer certificate available
No client certificate CA names sent
SSL handshake has read 7 bytes and written 308 bytes
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : 0000
Session-ID:
Session-ID-ctx:
Master-Key:
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1526296307
Timeout : 300 (sec)
Verify return code: 0 (ok)
10680:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:s23_clnt.c:794:
mason@workstation MINGW64 ~
==> If I run this again a second time, it works successfully. (Ignore the 404 error from the proxy as it's routing the request based on hostname)
mason@workstation MINGW64 ~
$ openssl s_client -debug -connect mysite.com:443
CONNECTED(000001B4)
write to 0x2a24250 [0x2a25330] (308 bytes => 308 (0x134))
0000 - 16 03 01 01 2f 01 00 01-2b 03 03 d1 02 ef 8d 97 ..../...+.......
0010 - f0 65 7e 7e 8e d0 31 a8-db 8d f9 6f f7 79 bf d1 .e~~..1....o.y..
0020 - 1a d7 4b 0e 39 35 4a 82-46 0d 32 00 00 ac c0 30 ..K.95J.F.2....0
0030 - c0 2c c0 28 c0 24 c0 14-c0 0a 00 a5 00 a3 00 a1 .,.(.$..........
0040 - 00 9f 00 6b 00 6a 00 69-00 68 00 39 00 38 00 37 ...k.j.i.h.9.8.7
0050 - 00 36 00 88 00 87 00 86-00 85 c0 32 c0 2e c0 2a .6.........2...*
0060 - c0 26 c0 0f c0 05 00 9d-00 3d 00 35 00 84 c0 2f .&.......=.5.../
0070 - c0 2b c0 27 c0 23 c0 13-c0 09 00 a4 00 a2 00 a0 .+.'.#..........
0080 - 00 9e 00 67 00 40 00 3f-00 3e 00 33 00 32 00 31 ...g.@.?.>.3.2.1
0090 - 00 30 00 9a 00 99 00 98-00 97 00 45 00 44 00 43 .0.........E.D.C
00a0 - 00 42 c0 31 c0 2d c0 29-c0 25 c0 0e c0 04 00 9c .B.1.-.).%......
00b0 - 00 3c 00 2f 00 96 00 41-00 07 c0 11 c0 07 c0 0c .<./...A........
00c0 - c0 02 00 05 00 04 c0 12-c0 08 00 16 00 13 00 10 ................
00d0 - 00 0d c0 0d c0 03 00 0a-00 ff 02 01 00 00 55 00 ..............U.
00e0 - 0b 00 04 03 00 01 02 00-0a 00 1c 00 1a 00 17 00 ................
00f0 - 19 00 1c 00 1b 00 18 00-1a 00 16 00 0e 00 0d 00 ................
0100 - 0b 00 0c 00 09 00 0a 00-23 00 00 00 0d 00 20 00 ........#..... .
0110 - 1e 06 01 06 02 06 03 05-01 05 02 05 03 04 01 04 ................
0120 - 02 04 03 03 01 03 02 03-03 02 01 02 02 02 03 00 ................
0130 - 0f 00 01 01 ....
read from 0x2a24250 [0x2a2a890] (7 bytes => 7 (0x7))
0000 - 16 03 03 00 42 02 ....B.
0007 - <SPACES/NULS>
read from 0x2a24250 [0x2a2a89a] (64 bytes => 64 (0x40))
0000 - 00 3e 03 03 cc 11 71 78-6b 42 e8 e7 c9 c0 db 79 .>....qxkB.....y
0010 - e3 da 4e 7e c6 52 3d 5a-f3 3c cd b2 f8 c0 90 73 ..N~.R=Z.<.....s
0020 - f6 3d fe 15 00 c0 30 00-00 16 ff 01 00 01 00 00 .=....0.........
0030 - 0b 00 04 03 00 01 02 00-23 00 00 00 0f 00 01 01 ........#.......
read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5))
0000 - 16 03 03 0b c9 .....
read from 0x2a24250 [0x2a2a898] (3017 bytes => 1084 (0x43C))
0000 - 0b 00 0b c5 00 0b c2 00-07 26 30 82 07 22 30 82 .........&0.."0.
0010 - 06 0a a0 03 02 01 02 02-12 04 4f 75 81 ac a1 3e ..........Ou...>
0020 - 1b ec 44 e2 e8 73 a1 c3-02 41 3a 30 0d 06 09 2a ..D..s...A:0...*
0030 - 86 48 86 f7 0d 01 01 0b-05 00 30 4a 31 0b 30 09 .H........0J1.0.
0040 - 06 03 55 04 06 13 02 55-53 31 16 30 14 06 03 55 ..U....US1.0...U
0050 - 04 0a 13 0d 4c 65 74 27-73 20 45 6e 63 72 79 70 ....Let's Encryp
0060 - 74 31 23 30 21 06 03 55-04 03 13 1a 4c 65 74 27 t1#0!..U....Let'
0070 - 73 20 45 6e 63 72 79 70-74 20 41 75 74 68 6f 72 s Encrypt Author
0080 - 69 74 79 20 58 33 30 1e-17 0d 31 38 30 35 31 31 ity X30...180511
0090 - 30 30 30 31 33 33 5a 17-0d 31 38 30 38 30 39 30 000133Z..1808090
00a0 - 30 30 31 33 33 5a 30 27-31 25 30 23 06 03 55 04 00133Z0'1%0#..U.
00b0 - 03 13 1c 70 72 69 76 78-2d 69 64 61 61 73 2d 64 ...mysite.com...
00c0 - 65 6d 6f 2e 65 64 65 6c-6b 65 79 2e 6e 65 74 30 ................
00d0 - 82 02 22 30 0d 06 09 2a-86 48 86 f7 0d 01 01 01 .."0....H......
00e0 - 05 00 03 82 02 0f 00 30-82 02 0a 02 82 02 01 00 .......0........
00f0 - 99 a0 79 34 89 b1 b7 2b-e1 af a5 51 f5 b0 c7 79 ..y4...+...Q...y
0100 - a7 15 10 7b e8 6a 7b 3e-85 37 48 a9 b0 a5 e8 7f ...{.j{>.7H.....
0110 - 47 46 05 1d 4d ac 59 96-e1 ba e2 68 03 8a 83 21 GF..M.Y....h...!
0120 - 2a 8d a3 25 bf c4 54 c8-bf 8f 3b 23 ff 95 20 e6 ..%..T...;#.. .
0130 - 1b 16 b9 40 25 a9 67 21-88 5b ce 80 79 6b 37 22 ...@%.g!.[..yk7"
0140 - 22 0b 50 ce 8d 7c 18 e0-a7 8a 1a dc 2f a0 6f 08 ".P..|....../.o.
0150 - 47 49 2b 58 2f c2 38 60-c1 59 69 97 4c 87 eb 99 GI+X/.8.Yi.L... 0160 - 51 fa b5 aa 50 8f d5 0c-bc 74 78 8a c1 be a1 38 Q...P....tx....8 0170 - fb 23 9b 88 72 ec 8b 32-fe 3a 1b e1 39 1c 06 a2 .#..r..2.:..9... 0180 - 9c ea 47 6a a3 6d 9d 2c-3c 11 86 e4 6a 5e 94 7b ..Gj.m.,<...j^.{ 0190 - bf 8d 13 8b 71 13 02 27-8c fb a6 f6 79 e5 26 1f ....q..'....y.&. 01a0 - 65 57 9f 5f 9f 10 b0 4f-65 dc 5c 05 5e b8 99 35 eW._...Oe.\.^..5 01b0 - 8c 9d 06 09 99 eb ab 07-28 ea 28 b4 d7 8a 67 53 ........(.(...gS 01c0 - b5 62 ce 16 1d f9 11 f0-3c 48 c3 e8 69 32 d4 b0 .b......<H..i2.. 01d0 - b1 af aa 9f 1e b6 61 0a-9a 30 3f f9 ba 34 64 37 ......a..0?..4d7 01e0 - ef 5d 74 bb 01 67 86 a7-23 db 68 f1 25 08 3f 57 .]t..g..#.h.%.?W 01f0 - f7 e0 f8 de 87 53 a9 64-0a 45 14 d5 da 85 8a 45 .....S.d.E.....E 0200 - 7c 7b 6c 8d 15 3d 8b b4-0e b4 9d ad 9c 43 f1 e0 |{l..=.......C.. 0210 - c9 ba ea d5 0b a4 c6 02-2a 70 c1 57 8a 59 ba 14 ........*p.W.Y.. 0220 - 14 16 31 d9 23 d8 39 f0-03 34 43 69 d4 10 47 64 ..1.#.9..4Ci..Gd 0230 - 42 26 23 de ce 74 3f 57-2a d3 36 a7 6f 98 d8 55 B&#..t?W*.6.o..U 0240 - 2b 65 f5 9a 26 18 6d 54-96 95 c6 2b 5d 58 e2 47 +e..&.mT...+]X.G 0250 - 5e a3 f8 ff 1b a5 d5 e4-24 bf 55 05 5d 35 a4 4f ^.......$.U.]5.O 0260 - fd 8d f5 be 3a 75 8b 94-31 c2 41 84 1c f5 b9 32 ....:u..1.A....2 0270 - 42 6e 09 e6 71 c3 76 8b-dc 34 91 08 37 95 28 22 Bn..q.v..4..7.(" 0280 - fc 12 1f c9 33 8d 4e da-4c d8 13 ea 78 79 9d af ....3.N.L...xy.. 0290 - 09 0b 06 f0 76 8c b1 f9-b2 ad d9 e7 dc b5 ef 33 ....v..........3 02a0 - 53 3a 67 23 8e 0a 3e b7-cf b5 e1 36 77 38 ed 0b S:g#..>....6w8.. 02b0 - ea 4c 17 db 02 f8 94 0e-7f 77 8d 69 ea 2f 34 8b .L.......w.i./4. 02c0 - 55 f9 ed b1 41 21 67 9e-e1 91 dc a6 d8 36 f1 c0 U...A!g......6.. 02d0 - e1 92 3b 10 c3 14 50 3b-10 f5 81 67 f3 da 13 00 ..;...P;...g.... 02e0 - 18 8c 6f 10 40 1a e1 8c-df d4 d1 8c 68 6b bf 87 [email protected].. 02f0 - 02 03 01 00 01 a3 82 03-23 30 82 03 1f 30 0e 06 ........#0...0.. 0300 - 03 55 1d 0f 01 01 ff 04-04 03 02 05 a0 30 1d 06 .U...........0.. 0310 - 03 55 1d 25 04 16 30 14-06 08 2b 06 01 05 05 07 .U.%..0...+..... 0320 - 03 01 06 08 2b 06 01 05-05 07 03 02 30 0c 06 03 ....+.......0... 0330 - 55 1d 13 01 01 ff 04 02-30 00 30 1d 06 03 55 1d U.......0.0...U. 0340 - 0e 04 16 04 14 2e 1f 0d-06 2e 75 3a 2f b0 1b ab ..........u:/... 0350 - 36 61 52 31 96 a1 9c cf-51 30 1f 06 03 55 1d 23 6aR1....Q0...U.# 0360 - 04 18 30 16 80 14 a8 4a-6a 63 04 7d dd ba e6 d1 ..0....Jjc.}.... 0370 - 39 b7 a6 45 65 ef f3 a8-ec a1 30 6f 06 08 2b 06 9..Ee.....0o..+. 0380 - 01 05 05 07 01 01 04 63-30 61 30 2e 06 08 2b 06 .......c0a0...+. 0390 - 01 05 05 07 30 01 86 22-68 74 74 70 3a 2f 2f 6f ....0.."http://o 03a0 - 63 73 70 2e 69 6e 74 2d-78 33 2e 6c 65 74 73 65 csp.int-x3.letse 03b0 - 6e 63 72 79 70 74 2e 6f-72 67 30 2f 06 08 2b 06 ncrypt.org0/..+. 03c0 - 01 05 05 07 30 02 86 23-68 74 74 70 3a 2f 2f 63 ....0..#http://c 03d0 - 65 72 74 2e 69 6e 74 2d-78 33 2e 6c 65 74 73 65 ert.int-x3.letse 03e0 - 6e 63 72 79 70 74 2e 6f-72 67 2f 30 27 06 03 55 ncrypt.org/0'..U 03f0 - 1d 11 04 20 30 1e 82 1c-70 72 69 76 78 2d 69 64 ... 0........... 0400 - 61 61 73 2d 64 65 6d 6f-2e 65 64 65 6c 6b 65 79 ................ 0410 - 2e 6e 65 74 30 81 fe 06-03 55 1d 20 04 81 f6 30 ...t0....U. ...0 0420 - 81 f3 30 08 06 06 67 81-0c 01 02 01 30 81 e6 06 ..0...g.....0... 0430 - 0b 2b 06 01 04 01 82 df-13 01 01 01 .+.......... read from 0x2a24250 [0x2a2acd4] (1933 bytes => 1933 (0x78D)) 0000 - 30 81 d6 30 26 06 08 2b-06 01 05 05 07 02 01 16 0..0&..+........ 0010 - 1a 68 74 74 70 3a 2f 2f-63 70 73 2e 6c 65 74 73 .http://cps.lets 0020 - 65 6e 63 72 79 70 74 2e-6f 72 67 30 81 ab 06 08 encrypt.org0.... 0030 - 2b 06 01 05 05 07 02 02-30 81 9e 0c 81 9b 54 68 +.......0.....Th 0040 - 69 73 20 43 65 72 74 69-66 69 63 61 74 65 20 6d is Certificate m 0050 - 61 79 20 6f 6e 6c 79 20-62 65 20 72 65 6c 69 65 ay only be relie 0060 - 64 20 75 70 6f 6e 20 62-79 20 52 65 6c 79 69 6e d upon by Relyin 0070 - 67 20 50 61 72 74 69 65-73 20 61 6e 64 20 6f 6e g Parties and on 0080 - 6c 79 20 69 6e 20 61 63-63 6f 72 64 61 6e 63 65 ly in accordance 0090 - 20 77 69 74 68 20 74 68-65 20 43 65 72 74 69 66 with the Certif 00a0 - 69 63 61 74 65 20 50 6f-6c 69 63 79 20 66 6f 75 icate Policy fou 00b0 - 6e 64 20 61 74 20 68 74-74 70 73 3a 2f 2f 6c 65 nd at https://le 00c0 - 74 73 65 6e 63 72 79 70-74 2e 6f 72 67 2f 72 65 tsencrypt.org/re 00d0 - 70 6f 73 69 74 6f 72 79-2f 30 82 01 03 06 0a 2b pository/0.....+ 00e0 - 06 01 04 01 d6 79 02 04-02 04 81 f4 04 81 f1 00 .....y.......... 00f0 - ef 00 76 00 db 74 af ee-cb 29 ec b1 fe ca 3e 71 ..v..t...)....>q 0100 - 6d 2c e5 b9 aa bb 36 f7-84 71 83 c7 5d 9d 4f 37 m,....6..q..].O7 0110 - b6 1f bf 64 00 00 01 63-4c b7 a3 a1 00 00 04 03 ...d...cL....... 0120 - 00 47 30 45 02 20 0b 73-8e 1b 52 ab 04 49 1b 2f .G0E. .s..R..I./ 0130 - 43 80 60 49 6e 41 b3 8e-3a e9 69 f5 f4 c1 72 62 C.
InA..:.i...rb
0140 - f5 8e be 96 b8 46 02 21-00 97 2b f9 3f 3a 47 cc .....F.!..+.?:G.
0150 - bf ad 02 ad 7c 27 77 68-22 e9 b6 e3 5e 3d f8 ca ....|'wh"...^=..
0160 - 66 65 aa 78 fc 5e ed 0e-aa 00 75 00 29 3c 51 96 fe.x.^....u.)<Q.
0170 - 54 c8 39 65 ba aa 50 fc-58 07 d4 b7 6f bf 58 7a T.9e..P.X...o.Xz
0180 - 29 72 dc a4 c3 0c f4 e5-45 47 f4 78 00 00 01 63 )r......EG.x...c
0190 - 4c b7 a3 84 00 00 04 03-00 46 30 44 02 20 64 83 L........F0D. d.
01a0 - 01 e7 bc be 11 e0 33 88-eb 16 5a 8a 01 64 20 92 ......3...Z..d .
01b0 - a2 8d ad 89 b2 05 1b cb-b3 a5 d3 f1 fd d1 02 20 ...............
01c0 - 13 b9 12 38 94 6a 8b cc-ce f3 74 d1 52 82 af d5 ...8.j....t.R...
01d0 - 88 fd fe df b9 96 a7 f7-44 89 d2 c7 dc 5e 9d d4 ........D....^..
01e0 - 30 0d 06 09 2a 86 48 86-f7 0d 01 01 0b 05 00 03 0....H.........
01f0 - 82 01 01 00 67 51 71 f2-cc 12 82 04 f6 72 24 7e ....gQq......r$~
0200 - 97 35 85 a3 60 ff 1c 95-1d ac d7 95 0f 23 7f 81 .5..........#.. 0210 - d9 9f bf 6c 14 02 9c 94-45 45 8a 19 54 91 c1 5e ...l....EE..T..^ 0220 - 1a 0e fa 97 e6 19 05 3b-be 3a 19 38 38 84 87 42 .......;.:.88..B 0230 - cc 75 ff fb 50 33 3a c9-ac fa 5e 7f 97 92 b5 4d .u..P3:...^....M 0240 - 39 31 04 69 dd 12 78 6e-66 74 16 88 c9 cc b9 5d 91.i..xnft.....] 0250 - f1 13 6f d5 bc dc 9e ad-17 b7 24 53 6b c2 b0 01 ..o.......$Sk... 0260 - e4 8d e9 a5 d0 15 a4 32-9d 13 dc e8 71 68 6c 72 .......2....qhlr 0270 - 5e a4 f5 85 73 e4 2d 27-7d f5 91 7d d5 1a 86 f0 ^...s.-'}..}.... 0280 - 24 bb 8e 4a ca 08 b8 f4-d9 33 ed 2a 8a 38 69 50 $..J.....3.*.8iP 0290 - 77 07 88 e4 07 37 1f 83-5a 05 a6 f6 14 66 5a 52 w....7..Z....fZR 02a0 - c1 7f 4f 3b a0 3b 85 22-b8 00 77 75 00 fb 3a f2 ..O;.;."..wu..:. 02b0 - f5 62 c6 54 d5 cc 09 5c-ca 09 25 ca 9f bc 31 d0 .b.T...\..%...1. 02c0 - e5 2d d7 a9 eb 96 4f 94-00 cf 29 fe 59 47 8a f3 .-....O...).YG.. 02d0 - af f7 ea 1c d7 58 fb 2e-e5 e7 e7 10 17 8c 0f 07 .....X.......... 02e0 - 4b b2 a1 9f 89 32 26 4b-0b 01 3c a2 ff 23 bd 0c K....2&K..<..#.. 02f0 - 69 5a b1 cf 00 04 96 30-82 04 92 30 82 03 7a a0 iZ.....0...0..z. 0300 - 03 02 01 02 02 10 0a 01-41 42 00 00 01 53 85 73 ........AB...S.s 0310 - 6a 0b 85 ec a7 08 30 0d-06 09 2a 86 48 86 f7 0d j.....0...*.H... 0320 - 01 01 0b 05 00 30 3f 31-24 30 22 06 03 55 04 0a .....0?1$0"..U.. 0330 - 13 1b 44 69 67 69 74 61-6c 20 53 69 67 6e 61 74 ..Digital Signat 0340 - 75 72 65 20 54 72 75 73-74 20 43 6f 2e 31 17 30 ure Trust Co.1.0 0350 - 15 06 03 55 04 03 13 0e-44 53 54 20 52 6f 6f 74 ...U....DST Root 0360 - 20 43 41 20 58 33 30 1e-17 0d 31 36 30 33 31 37 CA X30...160317 0370 - 31 36 34 30 34 36 5a 17-0d 32 31 30 33 31 37 31 164046Z..2103171 0380 - 36 34 30 34 36 5a 30 4a-31 0b 30 09 06 03 55 04 64046Z0J1.0...U. 0390 - 06 13 02 55 53 31 16 30-14 06 03 55 04 0a 13 0d ...US1.0...U.... 03a0 - 4c 65 74 27 73 20 45 6e-63 72 79 70 74 31 23 30 Let's Encrypt1#0 03b0 - 21 06 03 55 04 03 13 1a-4c 65 74 27 73 20 45 6e !..U....Let's En 03c0 - 63 72 79 70 74 20 41 75-74 68 6f 72 69 74 79 20 crypt Authority 03d0 - 58 33 30 82 01 22 30 0d-06 09 2a 86 48 86 f7 0d X30.."0...*.H... 03e0 - 01 01 01 05 00 03 82 01-0f 00 30 82 01 0a 02 82 ..........0..... 03f0 - 01 01 00 9c d3 0c f0 5a-e5 2e 47 b7 72 5d 37 83 .......Z..G.r]7. 0400 - b3 68 63 30 ea d7 35 26-19 25 e1 bd be 35 f1 70 .hc0..5&.%...5.p 0410 - 92 2f b7 b8 4b 41 05 ab-a9 9e 35 08 58 ec b1 2a ./..KA....5.X..* 0420 - c4 68 87 0b a3 e3 75 e4-e6 f3 a7 62 71 ba 79 81 .h....u....bq.y. 0430 - 60 1f d7 91 9a 9f f3 d0-78 67 71 c8 69 0e 95 91
.......xgq.i...
0440 - cf fe e6 99 e9 60 3c 48-cc 7e ca 4d 77 12 24 9d .....<H.~.Mw.$. 0450 - 47 1b 5a eb b9 ec 1e 37-00 1c 9c ac 7b a7 05 ea G.Z....7....{... 0460 - ce 4a eb bd 41 e5 36 98-b9 cb fd 6d 3c 96 68 df .J..A.6....m<.h. 0470 - 23 2a 42 90 0c 86 74 67-c8 7f a5 9a b8 52 61 14 #*B...tg.....Ra. 0480 - 13 3f 65 e9 82 87 cb db-fa 0e 56 f6 86 89 f3 85 .?e.......V..... 0490 - 3f 97 86 af b0 dc 1a ef-6b 0d 95 16 7d c4 2b a0 ?.......k...}.+. 04a0 - 65 b2 99 04 36 75 80 6b-ac 4a f3 1b 90 49 78 2f e...6u.k.J...Ix/ 04b0 - a2 96 4f 2a 20 25 29 04-c6 74 c0 d0 31 cd 8f 31 ..O* %)..t..1..1 04c0 - 38 95 16 ba a8 33 b8 43-f1 b1 1f c3 30 7f a2 79 8....3.C....0..y 04d0 - 31 13 3d 2d 36 f8 e3 fc-f2 33 6a b9 39 31 c5 af 1.=-6....3j.91.. 04e0 - c4 8d 0d 1d 64 16 33 aa-fa 84 29 b6 d4 0b c0 d8 ....d.3...)..... 04f0 - 7d c3 93 02 03 01 00 01-a3 82 01 7d 30 82 01 79 }..........}0..y 0500 - 30 12 06 03 55 1d 13 01-01 ff 04 08 30 06 01 01 0...U.......0... 0510 - ff 02 01 00 30 0e 06 03-55 1d 0f 01 01 ff 04 04 ....0...U....... 0520 - 03 02 01 86 30 7f 06 08-2b 06 01 05 05 07 01 01 ....0...+....... 0530 - 04 73 30 71 30 32 06 08-2b 06 01 05 05 07 30 01 .s0q02..+.....0. 0540 - 86 26 68 74 74 70 3a 2f-2f 69 73 72 67 2e 74 72 .&http://isrg.tr 0550 - 75 73 74 69 64 2e 6f 63-73 70 2e 69 64 65 6e 74 ustid.ocsp.ident 0560 - 72 75 73 74 2e 63 6f 6d-30 3b 06 08 2b 06 01 05 rust.com0;..+... 0570 - 05 07 30 02 86 2f 68 74-74 70 3a 2f 2f 61 70 70 ..0../http://app 0580 - 73 2e 69 64 65 6e 74 72-75 73 74 2e 63 6f 6d 2f s.identrust.com/ 0590 - 72 6f 6f 74 73 2f 64 73-74 72 6f 6f 74 63 61 78 roots/dstrootcax 05a0 - 33 2e 70 37 63 30 1f 06-03 55 1d 23 04 18 30 16 3.p7c0...U.#..0. 05b0 - 80 14 c4 a7 b1 a4 7b 2c-71 fa db e1 4b 90 75 ff ......{,q...K.u. 05c0 - c4 15 60 85 89 10 30 54-06 03 55 1d 20 04 4d 30 ..
...0T..U. .M0
05d0 - 4b 30 08 06 06 67 81 0c-01 02 01 30 3f 06 0b 2b K0...g.....0?..+
05e0 - 06 01 04 01 82 df 13 01-01 01 30 30 30 2e 06 08 ..........000...
05f0 - 2b 06 01 05 05 07 02 01-16 22 68 74 74 70 3a 2f +........"http:/
0600 - 2f 63 70 73 2e 72 6f 6f-74 2d 78 31 2e 6c 65 74 /cps.root-x1.let
0610 - 73 65 6e 63 72 79 70 74-2e 6f 72 67 30 3c 06 03 sencrypt.org0<..
0620 - 55 1d 1f 04 35 30 33 30-31 a0 2f a0 2d 86 2b 68 U...50301./.-.+h
0630 - 74 74 70 3a 2f 2f 63 72-6c 2e 69 64 65 6e 74 72 ttp://crl.identr
0640 - 75 73 74 2e 63 6f 6d 2f-44 53 54 52 4f 4f 54 43 ust.com/DSTROOTC
0650 - 41 58 33 43 52 4c 2e 63-72 6c 30 1d 06 03 55 1d AX3CRL.crl0...U.
0660 - 0e 04 16 04 14 a8 4a 6a-63 04 7d dd ba e6 d1 39 ......Jjc.}....9
0670 - b7 a6 45 65 ef f3 a8 ec-a1 30 0d 06 09 2a 86 48 ..Ee.....0....H
0680 - 86 f7 0d 01 01 0b 05 00-03 82 01 01 00 dd 33 d7 ..............3.
0690 - 11 f3 63 58 38 dd 18 15-fb 09 55 be 76 56 b9 70 ..cX8.....U.vV.p
06a0 - 48 a5 69 47 27 7b c2 24-08 92 f1 5a 1f 4a 12 29 H.iG'{.$...Z.J.)
06b0 - 37 24 74 51 1c 62 68 b8-cd 95 70 67 e5 f7 a4 bc 7$tQ.bh...pg....
06c0 - 4e 28 51 cd 9b e8 ae 87-9d ea d8 ba 5a a1 01 9a N(Q.........Z...
06d0 - dc f0 dd 6a 1d 6a d8 3e-57 23 9e a6 1e 04 62 9a ...j.j.>W#....b.
06e0 - ff d7 05 ca b7 1f 3f c0-0a 48 bc 94 b0 b6 65 62 ......?..H....eb
06f0 - e0 c1 54 e5 a3 2a ad 20-c4 e9 e6 bb dc c8 f6 b5 ..T..*. ........
0700 - c3 32 a3 98 cc 77 a8 e6-79 65 07 2b cb 28 fe 3a .2...w..ye.+.(.:
0710 - 16 52 81 ce 52 0c 2e 5f-83 e8 d5 06 33 fb 77 6c .R..R......3.wl
0720 - ce 40 ea 32 9e 1f 92 5c-41 c1 74 6c 5b 5d 0a 5f [email protected]...\A.tl[].
0730 - 33 cc 4d 9f ac 38 f0 2f-7b 2c 62 9d d9 a3 91 6f 3.M..8./{,b....o
0740 - 25 1b 2f 90 b1 19 46 3d-f6 7e 1b a6 7a 87 b9 a3 %./...F=.~..z...
0750 - 7a 6d 18 fa 25 a5 91 87-15 e0 f2 16 2f 58 b0 06 zm..%......./X..
0760 - 2f 2c 68 26 c6 4b 98 cd-da 9f 0c f9 7f 90 ed 43 /,h&.K.........C
0770 - 4a 12 44 4e 6f 73 7a 28-ea a4 aa 6e 7b 4c 7d 87 J.DNosz(...n{L}.
0780 - dd e0 c9 02 44 a7 87 af-c3 34 5b b4 42 ....D....4[.B
read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5))
0000 - 16 03 03 02 4d ....M
read from 0x2a24250 [0x2a2a898] (589 bytes => 589 (0x24D))
0000 - 0c 00 02 49 03 00 17 41-04 3b 87 a9 91 e3 2f 06 ...I...A.;..../.
0010 - 1a 2e 35 28 b4 53 2f 7a-37 a1 5a f1 2c 8c 50 85 ..5(.S/z7.Z.,.P.
0020 - c5 c5 a2 9a 44 de 68 53-63 98 cd 80 a5 ee 4e 97 ....D.hSc.....N.
0030 - 42 23 1b 6d e8 5c 17 5e-04 87 8a f2 24 59 b3 66 B#.m..^....$Y.f
0040 - 8c 0b 29 22 aa 48 eb 3e-af 06 01 02 00 26 fa 92 ..)".H.>.....&..
0050 - 5e 8b 2f 05 cb 32 48 14-fd 39 39 60 3b 32 55 8d ^./..2H..99;2U. 0060 - b8 ba c5 6b 90 aa 56 58-56 f7 fa fb 71 9d 77 03 ...k..VXV...q.w. 0070 - a7 91 fc ef d1 c6 2b 7d-b0 82 be 63 f2 93 bb c9 ......+}...c.... 0080 - 34 c3 4b 9f 4c 83 71 92-d2 f2 55 af 42 a5 b7 30 4.K.L.q...U.B..0 0090 - 77 bf 61 1b d4 d1 bf 6a-55 64 30 4b 79 55 39 47 w.a....jUd0KyU9G 00a0 - bf f6 b2 b2 8d 88 1f d0-3c 9b 02 6c 70 f2 30 0a ........<..lp.0. 00b0 - 68 ed 6a 89 b8 9e 40 a7-6a 72 5e f8 f1 85 6d e6 [email protected]^...m. 00c0 - 6b 63 4f a0 cf 31 d3 1c-f7 42 7c 44 59 07 fc 6e kcO..1...B|DY..n 00d0 - 9a e2 f1 e0 4f 01 97 ff-36 ac bf 11 01 93 6d a2 ....O...6.....m. 00e0 - 5c 5a d8 ca a6 38 19 da-35 5d 1e ad ab ea 92 9c \Z...8..5]...... 00f0 - 2f ea 06 4b 3f ee 17 08-69 40 eb 9e 17 6b 2e c4 /[email protected].. 0100 - 71 ee 15 0b a4 25 5e 78-de 4c aa 46 b1 a3 7c 3e q....%^x.L.F..|> 0110 - 81 98 95 e1 15 cb 0f b6-5c af 8f 7c 46 94 a7 55 ........\..|F..U 0120 - f5 31 97 28 ba 1d e2 e0-ed af 08 26 fd 8e bb 4a .1.(.......&...J 0130 - 89 eb 66 bb fc 88 50 26-a3 96 fb 74 ea 2c e0 62 ..f...P&...t.,.b 0140 - f5 e6 b0 09 94 49 5c e1-35 df db e5 b8 0e c4 3a .....I\.5......: 0150 - 3d dc 2c 51 a8 87 89 b8-a8 80 0c 4d e9 ad 9c 97 =.,Q.......M.... 0160 - 88 49 cd 8c 8d 34 85 e1-28 ad 53 f8 26 7f 1f 0b .I...4..(.S.&... 0170 - 04 14 7d 23 b3 12 78 08-4f 19 ad 9d fc 5d 0e c3 ..}#..x.O....].. 0180 - da 78 70 6c ae 3a 8c 59-e5 bf 3b d6 d6 c6 6c b4 .xpl.:.Y..;...l. 0190 - 5a 04 e0 24 b0 72 00 08-23 80 7d 5d 15 ea 74 6f Z..$.r..#.}]..to 01a0 - 7a 75 87 fa c5 05 3d 5d-48 5e f2 db ad 82 de 75 zu....=]H^.....u 01b0 - de 3d 20 f2 7e 64 b0 84-03 a6 98 f8 b1 b1 53 34 .= .~d........S4 01c0 - 68 1a 66 eb cd 87 ca 5f-ab e7 a3 17 75 6a 1c ba h.f...._....uj.. 01d0 - b6 94 78 c4 87 eb 19 76-25 60 ad 61 e3 e3 cd 54 ..x....v%
.a...T
01e0 - d7 0d 6d f6 78 41 04 0d-87 3e e6 5e 4d 19 75 bf ..m.xA...>.^M.u.
01f0 - 04 7d fe 07 b8 a2 4f 02-4a c7 7c bf c4 d7 81 0d .}....O.J.|.....
0200 - cd be 46 27 8d 15 98 3a-01 4f ac ba 92 48 90 45 ..F'...:.O...H.E
0210 - b4 fd 17 1e 42 f3 82 7a-0c 4b f6 6c e0 99 79 e1 ....B..z.K.l..y.
0220 - 6b 52 5b 88 58 5b 64 3e-19 43 ce ae 05 fc be 4a kR[.X[d>.C.....J
0230 - 48 66 d2 c4 f6 ca 4e 38-1b 60 9d d9 b0 c4 f2 7e Hf....N8......~ 0240 - 1f 29 1c 9e 82 74 bf 2b-6d 15 fb 38 62 .)...t.+m..8b read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5)) 0000 - 16 03 03 00 04 ..... read from 0x2a24250 [0x2a2a898] (4 bytes => 4 (0x4)) 0000 - 0e . 0004 - <SPACES/NULS> write to 0x2a24250 [0x2a342b0] (75 bytes => 75 (0x4B)) 0000 - 16 03 03 00 46 10 00 00-42 41 04 a9 96 c7 e8 95 ....F...BA...... 0010 - 95 6e c9 41 90 ad ab ae-eb be 92 66 78 83 c7 40 .n.A.......fx..@ 0020 - fc 84 18 01 08 d2 07 08-f0 7b 33 35 56 30 bb ab .........{35V0.. 0030 - 2f e0 af 4c d0 51 25 44-73 52 c4 bb e8 c8 82 8b /..L.Q%DsR...... 0040 - 8d 9e f7 2d cc 31 57 70-ef 3b 7c ...-.1Wp.;| write to 0x2a24250 [0x2a342b0] (6 bytes => 6 (0x6)) 0000 - 14 03 03 00 01 01 ...... write to 0x2a24250 [0x2a342b0] (45 bytes => 45 (0x2D)) 0000 - 16 03 03 00 28 fe 5b 72-ce c3 69 2d ee 3e 35 1d ....(.[r..i-.>5. 0010 - 42 66 97 5d d9 91 e8 12-86 53 d9 a6 70 09 37 6c Bf.].....S..p.7l 0020 - 4a 13 3f 79 57 cc 6e 9a-b3 e0 c5 98 da J.?yW.n...... read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5)) 0000 - 16 03 03 00 aa ..... read from 0x2a24250 [0x2a2a898] (170 bytes => 170 (0xAA)) 0000 - 04 00 00 a6 00 00 01 2c-00 a0 ad 53 29 ac de 7f .......,...S)... 0010 - 7d 32 82 19 4f 76 46 7c-08 77 f5 e6 db 88 66 70 }2..OvF|.w....fp 0020 - 68 d0 ac 12 75 1e 63 24-3e a6 67 4f e3 d5 51 8b h...u.c$>.gO..Q. 0030 - 29 c8 48 15 d2 30 d9 8d-98 8f 42 b8 42 53 b5 41 ).H..0....B.BS.A 0040 - 28 ae 41 66 84 b7 d8 fb-57 59 1d 78 c4 b9 7f 95 (.Af....WY.x.... 0050 - 37 31 7c d1 9a 23 6c fd-52 d2 52 ad e3 86 18 4a 71|..#l.R.R....J 0060 - 66 ed 3b 7e 7a 3d dc ab-91 00 f5 cb 9e c8 15 37 f.;~z=.........7 0070 - 24 c3 b5 9c c0 32 8f 67-63 29 1b 43 1d a0 99 6c $....2.gc).C...l 0080 - 3b a5 f5 7f 92 9b 03 71-dd 62 e3 ed fe 9f 0a b5 ;......q.b...... 0090 - b0 c0 6c 7f fc 6f 7f 70-50 3a 3e 8e 40 60 59 27 ..l..o.pP:>.@
Y'
00a0 - 88 a3 71 3f 37 ca c7 7d-a8 7c ..q?7..}.|
read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5))
0000 - 14 03 03 00 01 .....
read from 0x2a24250 [0x2a2a898] (1 bytes => 1 (0x1))
0000 - 01 .
read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5))
0000 - 16 03 03 00 28 ....(
read from 0x2a24250 [0x2a2a898] (40 bytes => 40 (0x28))
0000 - 9c 69 e5 e3 9f 89 0c b7-b7 17 67 0c e0 33 62 8d .i........g..3b.
0010 - 3e 5d 86 cd 25 69 5c 06-ba 67 22 c0 65 72 09 39 >]..%i..g".er.9
0020 - 18 ea fc c6 1d e5 e2 f0- ........
Certificate chain
0 s:/CN=mysite.com
i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
1 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
i:/O=Digital Signature Trust Co./CN=DST Root CA X3
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/CN=mysite.com
issuer=/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
No client certificate CA names sent
Peer signing digest: SHA512
Server Temp Key: ECDH, P-256, 256 bits
SSL handshake has read 3922 bytes and written 434 bytes
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 4096 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: 1D90A5743671612511F38A56A01B668C1667BF4E54CEE063A8ADE37C2C7762C2
Session-ID-ctx:
Master-Key: B13CED937290AD677DCF03CD9F20C5BDDC28A7727084C1378C04DBC6D24FE21A721161114D158CD3BFA61209D8AF0D79
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - ad 53 29 ac de 7f 7d 32-82 19 4f 76 46 7c 08 77 .S)...}2..OvF|.w
0010 - f5 e6 db 88 66 70 68 d0-ac 12 75 1e 63 24 3e a6 ....fph...u.c$>.
0020 - 67 4f e3 d5 51 8b 29 c8-48 15 d2 30 d9 8d 98 8f gO..Q.).H..0....
0030 - 42 b8 42 53 b5 41 28 ae-41 66 84 b7 d8 fb 57 59 B.BS.A(.Af....WY
0040 - 1d 78 c4 b9 7f 95 37 31-7c d1 9a 23 6c fd 52 d2 .x....71|..#l.R.
0050 - 52 ad e3 86 18 4a 66 ed-3b 7e 7a 3d dc ab 91 00 R....Jf.;~z=....
0060 - f5 cb 9e c8 15 37 24 c3-b5 9c c0 32 8f 67 63 29 .....7$....2.gc)
0070 - 1b 43 1d a0 99 6c 3b a5-f5 7f 92 9b 03 71 dd 62 .C...l;......q.b
0080 - e3 ed fe 9f 0a b5 b0 c0-6c 7f fc 6f 7f 70 50 3a ........l..o.pP:
0090 - 3e 8e 40 60 59 27 88 a3-71 3f 37 ca c7 7d a8 7c >.@`Y'..q?7..}.|
Start Time: 1526296687
Timeout : 300 (sec)
Verify return code: 0 (ok)
HTTP/1.0 408 Request Timeout
Cache-Control: no-cache
Connection: close
Content-Type: text/html
<style>
body {
padding-top: 50px
}
</style>
Docker Flow Proxy: 408 Request Timeout
No server is available to handle this request.
read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5))
0000 - 17 03 03 02 b2 .....
read from 0x2a24250 [0x2a2a898] (690 bytes => 690 (0x2B2))
0000 - 9c 69 e5 e3 9f 89 0c b8-b0 b4 47 3d 4a 61 b4 20 .i........G=Ja.
0010 - 3d 45 ad 94 63 1a 59 b1-60 78 88 e5 96 56 3d e9 =E..c.Y.`x...V=.
0020 - 44 80 b2 58 ab 22 3b e2-1b 78 90 79 c7 71 de e7 D..X.";..x.y.q..
0030 - 2c 41 19 41 ca a9 f9 a0-45 82 17 7b 6b 7f 00 88 ,A.A....E..{k...
0040 - 7a 7d b2 94 f5 89 07 36-db 67 91 b7 6d ce 51 0d z}.....6.g..m.Q.
0050 - c6 83 74 2a cd 08 94 60-9c 8e 28 d7 6b a3 7f f6 ..t*...`..(.k...
0060 - 7d e4 f7 2f c7 33 70 60-31 2d b8 9b fd 6c 07 fc }../.3p`1-...l..
0070 - 2a 57 5e 52 5d e4 ec df-0b ec a6 63 93 3a 82 02 *W^R]......c.:..
0080 - b0 10 6e 88 94 d8 65 9f-4e ac 49 e3 83 ac 2e 91 ..n...e.N.I.....
0090 - a0 71 34 fe 7d dd 32 44-9c bb 00 35 e5 27 c5 64 .q4.}.2D...5.'.d
00a0 - 8f 81 26 ca 22 ce d7 13-06 f0 5c 18 89 97 4c b5 ..&.".....\...L.
00b0 - 08 35 81 c1 c6 46 d2 9d-52 8e b5 77 a6 5b 68 d5 .5...F..R..w.[h.
00c0 - d7 31 a0 dc a2 27 f7 0a-08 fd 85 09 46 dc 29 82 .1...'......F.).
00d0 - 15 86 99 12 f2 f5 ac cd-28 b1 bc 7e c3 be 87 36 ........(..~...6
00e0 - fb c0 18 cc c0 8c 2d 11-cf ad 55 fd 07 9d 94 81 ......-...U.....
00f0 - f5 52 e9 cd a1 e1 f5 5f-9f 63 c7 e1 c9 6b 00 d2 .R....._.c...k..
0100 - df 28 d8 01 2c 1d f6 37-3a 9d 49 ee 89 41 5e bf .(..,..7:.I..A^.
0110 - 1b 91 30 d7 04 0d 5d 55-68 b4 35 d5 dc 8c a8 c5 ..0...]Uh.5.....
0120 - 9c 41 c0 88 ba f8 5c 6a-be 13 61 c4 70 fe a3 ef .A....\j..a.p...
0130 - 4c da 8b 31 bd 08 1d b5-ec a4 90 9f 06 77 99 fe L..1.........w..
0140 - 40 34 d2 ab 8f 99 56 34-97 27 d5 fd c3 8c 3e 9f
@4....V4.'....>.
0150 - c2 42 c2 85 1e f1 e2 7c-66 18 70 33 74 8f 99 42 .B.....|f.p3t..B
0160 - 7d b3 61 f9 b2 a0 64 ff-53 3a 5d 9a 7e 9b a9 e4 }.a...d.S:].~...
0170 - 65 6e c4 2f 7f ea 7b 42-e8 02 49 ce 56 41 8b 9a en./..{B..I.VA..
0180 - f5 d3 9f 09 fd 67 22 df-d3 52 da 3b 95 9c e7 59 .....g"..R.;...Y
0190 - e8 e1 79 e2 84 d5 62 52-b3 a4 8d d8 c3 4b 1b a0 ..y...bR.....K..
01a0 - 92 40 e6 93 94 7a 86 39-47 65 eb 93 e7 82 c5 c3
[email protected]......
01b0 - ca b2 9f 08 2a 52 f9 29-4b a2 c4 60 87 d1 e9 bb ....*R.)K..`....
01c0 - 86 11 aa b1 73 4f 57 9e-94 be 9b 97 c2 0a cb ef ....sOW.........
01d0 - 13 5c a6 5b bb b6 13 cd-58 25 de fe 18 4e 91 83 .\.[....X%...N..
01e0 - 59 ba 9f 4a e7 51 a8 53-b1 9a 84 fa dc 6a 47 d6 Y..J.Q.S.....jG.
01f0 - 4c 63 c5 96 21 2c 74 fa-6d e1 42 0c a6 be 33 f1 Lc..!,t.m.B...3.
0200 - 0b 10 24 aa e5 f6 aa ca-83 24 cd fc a4 ca e1 10 ..$......$......
0210 - 42 50 cc 5b 09 2e d7 e4-d4 68 c5 31 32 a7 e2 1e BP.[.....h.12...
0220 - 81 5e aa 60 8a b1 8d cd-c1 4f 27 1b a4 0f 61 08 .^.`.....O'...a.
0230 - ae 5d 70 4f 47 d7 27 c1-f8 6e 28 ef 60 dd b0 be .]pOG.'..n(.`...
0240 - c3 a9 1e a8 ae 91 3c ca-5b e1 0c 5a a8 f3 9e b2 ......<.[..Z....
0250 - b6 0c 26 92 e1 ef cd 20-fd a2 90 11 e0 1d 68 2e ..&.... ......h.
0260 - 92 d0 e2 ef 45 3f dc 8a-69 33 64 cf ee 05 bf 9f ....E?..i3d.....
0270 - 70 61 6a ee 25 a7 74 a6-0c 0a 64 e8 96 4b a1 ab paj.%.t...d..K..
0280 - d2 9d 82 48 7f 02 45 79-58 4e 54 9e 3f da 85 8d ...H..EyXNT.?...
0290 - 5f f7 7b c6 32 89 c3 f7-99 3e ac 6f 7b f6 ff 1a _.{.2....>.o{...
02a0 - eb 9b c4 2f f0 30 04 d3-fd 4d 89 a8 16 d5 41 1e .../.0...M....A.
02b0 - 63 dc c.
read from 0x2a24250 [0x2a2a893] (5 bytes => 5 (0x5))
0000 - 15 03 03 00 1a .....
read from 0x2a24250 [0x2a2a898] (26 bytes => 26 (0x1A))
0000 - 9c 69 e5 e3 9f 89 0c b9-a3 f7 69 eb a2 2e c7 5e .i........i....^
0010 - 92 ea c6 3d 1c ec f2 78-59 05 ...=...xY.
closed
write to 0x2a24250 [0x2a2ede3] (31 bytes => 31 (0x1F))
0000 - 15 03 03 00 1a fe 5b 72-ce c3 69 2d ef f0 5c 72 ......[r..i-..\r
0010 - 3f 05 e0 0d df 67 a2 97-3b b4 32 6b 8f a7 b3 ?....g..;.2k...
depth=2 O = Digital Signature Trust Co., CN = DST Root CA X3
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
verify return:1
depth=0 CN = mysite.com
verify return:1
mason@workstation MINGW64 ~
$
The errors that i'm seeing in the DFP proxy logs:
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:06:53 HAPRoxy: 10.255.0.2:62444 [14/May/2018:11:06:53.271] services services/ -1/-1/-1/-1/0 400 658 - - PR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:06:53 HAPRoxy: 10.255.0.2:62445 [14/May/2018:11:06:53.289] services services/ -1/-1/-1/-1/0 400 658 - - PR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:08:12 HAPRoxy: 10.255.0.2:62482 [14/May/2018:11:07:52.483] services~ services/ -1/-1/-1/-1/20142 408 666 - - cR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:08:32 HAPRoxy: 10.255.0.2:62490 [14/May/2018:11:08:16.053] services~ services/ -1/-1/-1/-1/16695 400 0 - - CR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:08:34 HAPRoxy: 10.255.0.2:62496 [14/May/2018:11:08:34.325] services services/ -1/-1/-1/-1/0 400 658 - - PR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:09:09 HAPRoxy: 10.255.0.2:62501 [14/May/2018:11:08:49.324] services~ services/ -1/-1/-1/-1/20082 408 666 - - cR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:10:25 HAPRoxy: 10.255.0.2:62544 [14/May/2018:11:10:05.811] services~ services/ -1/-1/-1/-1/20068 408 666 - - cR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:11:02 HAPRoxy: 10.255.0.2:62555 [14/May/2018:11:10:54.447] services~ services/ -1/-1/-1/-1/8247 400 0 - - CR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:11:47 HAPRoxy: 10.255.0.2:62598 [14/May/2018:11:11:47.145] services services/ -1/-1/-1/-1/0 400 658 - - PR-- 1/1/0/0/0 0/0 ""
proxy.1.1unsyhg8k5ar@mysite | 2018/05/14 11:18:27 HAPRoxy: 10.255.0.2:62765 [14/May/2018:11:18:07.489] services~ services/ -1/-1/-1/-1/20180 408 666 - - cR-- 1/1/0/0/0 0/0 ""
Examples of our docker services running:
docker service create --name proxy
-p 443:443
--network proxy
-e LISTENER_ADDRESS=swarm-listener
-e DEBUG=true
--constraint 'node.labels.type == appserver'
--mode global
--secret cert_mysite.pem
dockerflow/docker-flow-proxy
docker service create --name letsencrypt-companion-certrenewal
--label com.df.notify=true
--label com.df.distribute=true
--label com.df.servicePath=/.well-known/acme-challenge
--label com.df.port=80
--label com.df.aclName='proxyPriorityV'
-e DOMAIN_1="('mysite.com')"
-e CERTBOT_EMAIL="[email protected]"
-e PROXY_ADDRESS="proxy"
-e CERTBOT_CRON_RENEW="('0 3 * * *' '0 15 * * *')"
--network proxy
--mount type=bind,source=/etc/letsencrypt,destination=/etc/letsencrypt
--constraint 'node.id==rsnit1x717fm0yoy3m2tq0fp0'
--replicas 1 hamburml/docker-flow-letsencrypt:latest
docker service create
--name myapp-dotnetcore-api
--constraint 'node.labels.type == appserver'
--network proxy
--mount type=volume,source=myapp-logs,destination=/var/log/applogs
--label com.df.notify=true
--label com.df.distribute=true
--label com.df.serviceDomain=mysite.com
--label com.df.servicePath=/mysite-api
--label com.df.port=5000
--mode global
regserver:8095/myimage:32
docker service create
--name idm-angular-app
--network proxy
--mount type=volume,source=angularapp-commonmodules-logs,destination=/var/log/app-logs
--constraint 'node.labels.type == appserver'
--label com.df.notify=true
--label com.df.distribute=true
--label com.df.reqPathReplace=/
--label com.df.reqPathSearch=/commonmodules
--label com.df.serviceDomain=mysite.com
--label com.df.servicePath=/commonmodules
--label com.df.port=80
--mode global
regserver:8095/myimage:36
I hope this information is extensive enough but if you need addition information feel free to ask.
Br, Mason