[syslog-ng] Mutual TLS issues

Matthew Pounsett matt at conundrum.com
Wed Sep 19 15:50:03 UTC 2018


On 19 September 2018 at 10:08, PÁSZTOR György <
pasztor at linux.gyakg.u-szeged.hu> wrote:

>
> > Any idea what's wrong here? And, should I be able to get this to work
> using
> > different CAs for the client and server certs?
>
> I think the file name in your ca-dir will be the problem.
> Btw.: if you want to test tls settings divided from syslog-ng, then you can
> always use this two commands:
> openssl s_client -connect host:port -key keyfile.key -cert certfile.crt
> -CApath /your/ca/dir
> And to emulate the server side:
> openssl s_server -accept port -key keyfile.key -cert certfile.crt -CApath
> /your/ca/dir
>

Thanks!
This turned out to be it.  I'm not entirely sure how I missed that bit in
the HOW-To.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.balabit.hu/pipermail/syslog-ng/attachments/20180919/4fb90888/attachment.html>


More information about the syslog-ng mailing list