You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
version of openssl and openssl-devel
#yum list openssl-devel openssl Installed Packages
openssl.x86_64 1:1.0.2k-21.el7_9
openssl-devel.x86_64 1:1.0.2k-21.el7_9
443 and 853 port are opened
some of server configures: interface: 0.0.0.0@853 #ipv4 over TLS
interface: ::0@853 #ipv4 over TLS
interface: 0.0.0.0@443
interface: ::0@443
#netstat -aptn tcp 0 0 0.0.0.0:853 0.0.0.0:* LISTEN 22615/unbound
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 22615/unbound
tcp6 0 0 :::443 :::* LISTEN 22615/unbound
tcp6 0 0 :::853 :::* LISTEN 22615/unbound
The certification is generated as follows:
#openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key.pem -out cert.pem
in the server configure: tls-service-key: key.pem
tls-service-pem: cert.pem
The text was updated successfully, but these errors were encountered:
hi,
When dot and doh are tried, DoT is ok, but DoH doesn't work well.
#./dohclient -s 127.0.0.1 paypal.com A IN
[1628843078] unbound[22642:0] error: could not allocate SSL_CTX pointer crypto error:140A90A1:lib(20):func(169):reason(161)
[1628843078] unbound[22642:0] fatal error: cannot create ssl ctx
Enviroment is as follows:
./configure --with-libevent --with-pthreads --enable-subnet --sysconfdir=/etc --with-ssl -with-libnghttp2
#yum list openssl-devel openssl
Installed Packages
openssl.x86_64 1:1.0.2k-21.el7_9
openssl-devel.x86_64 1:1.0.2k-21.el7_9
some of server configures:
interface: 0.0.0.0@853 #ipv4 over TLS
interface: ::0@853 #ipv4 over TLS
interface: 0.0.0.0@443
interface: ::0@443
#netstat -aptn
tcp 0 0 0.0.0.0:853 0.0.0.0:* LISTEN 22615/unbound
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 22615/unbound
tcp6 0 0 :::443 :::* LISTEN 22615/unbound
tcp6 0 0 :::853 :::* LISTEN 22615/unbound
#openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key.pem -out cert.pem
in the server configure:
tls-service-key: key.pem
tls-service-pem: cert.pem
The text was updated successfully, but these errors were encountered: