I have a problem that has kept me busy for a week now.
I’m trying to create an SSL connection for Asterisk.
I have created the SSL certificate through
sudo contrib/scripts/ast_tls_cert -C hostname -O "My Organization" -b 2048 -d /etc/asterisk/keys
Have set the http.conf
[general] servername=Asterisk enabled=yes bindaddr=0.0.0.0 bindport=8088 prefix=asterisk tlsenable=yes tlsbindaddr=0.0.0.0:8089 tlscertfile=/etc/asterisk/keys/asterisk.pem tlsprivatekey=/etc/asterisk/keys/asterisk.pem
And checked it through the “HTTP show status” command.
HTTP Server Status: Prefix: /asterisk Server: Asterisk Server Enabled and Bound to 0.0.0.0:8088 HTTPS Server Enabled and Bound to 0.0.0.0:8089 Enabled URI's: /asterisk/httpstatus => Asterisk HTTP General Status /asterisk/phoneprov/... => Asterisk HTTP Phone Provisioning Tool /asterisk/ari/... => Asterisk RESTful API /asterisk/ws => Asterisk HTTP WebSocket
It seems to work as I see the message https server enabled
but I keep getting the following error message when I try to connect to the was through
[Aug 28 15:09:16] ERROR: iostream.c:647 ast_iostream_start_tls: Problem setting up ssl connection: error:00000001:lib(0):func(0):reason(1), Internal SSL error [Aug 28 15:09:16] ERROR: tcptls.c:179 handle_tcptls_connection: Unable to set up ssl connection with peer '18.104.22.168:63402' [Aug 28 15:09:16] ERROR: iostream.c:552 ast_iostream_close: SSL_shutdown() failed: error:00000001:lib(0):func(0):reason(1), Internal SSL error
Anybody got a clue what I am doing wrong here?
Your help would be highly appreciated.