Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Cannot browser lp-cnd.lastpass.com, gives net::ERR_SSL_VERSION_INTERFERENCE in Chrome

    Scheduled Pinned Locked Moved Firewalling
    1 Posts 1 Posters 314 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      matsan
      last edited by

      Strange error that started a couple of days ago. When accessing www.lastpass.com on any of our devices in the network (Mac, PC, iOS) we get a completely broken page - no CSS, no images etc.
      Checking in Chrome I see that all commenctions to https://lp-cnd.lastpass.com gives

      "Failed to load resource net::ERR_SSL_VERSION_INTERFERENCE"

      in the console. On same devices connecting through LTE or hotspot to an iPhone - no problems. Accessing another lastpass site, like https://blog.lastpass.com/ works.
      Note that all browsers (Safari, Edge and Firefox) experience the same problem when going through the firewall.

      The network is protected with a APU45-box running 2.4.4-p1. Packages: bandwidthd, nmap, pfBlockerNG, RRD_Summary. 5 firewall rules, mainly passing all. On Advanced -> Network I have tested enabled and disabled the settings for offloading etc. No MTU or MSS on the interfaces. Not much going on in the log-files.
      Reboot of everything didn't do any change.

      I cannot remember having this problem prior to the -p1 update (and for sure my other users would have noticed since we use lastpass company-wide).
      With the 2.4.4-p1 we also have had problems with unbound (https://forum.netgate.com/topic/138535/2-4-4_1-unbound-frequently-stops-answering-domain-overrides) so maybe this is also related to that upgrade.

      We have OpenVPN going to other sites and no problems accessing other sites (that we have found) - just lastpass.com.

      Using openssl to troubleshoot (first attempt through the firewall and second on hotspot):

      msa@sieglinde:log$ openssl s_client -connect lp-cdn.lastpass.com:443
CONNECTED(00000005)
depth=1 C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
verify error:num=20:unable to get local issuer certificate
verify return:0
write:errno=54
---
Certificate chain
 0 s:/C=US/ST=California/L=Los Angeles/O=Verizon Digital Media Services, Inc./OU=SecOps/CN=sa266gl.wpc.edgecastcdn.net
   i:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
 1 s:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
   i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=US/ST=California/L=Los Angeles/O=Verizon Digital Media Services, Inc./OU=SecOps/CN=sa266gl.wpc.edgecastcdn.net
issuer=/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
---
No client certificate CA names sent
---
SSL handshake has read 4550 bytes and written 126 bytes
---
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-GCM-SHA256
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES128-GCM-SHA256
    Session-ID:
    Session-ID-ctx:
    Master-Key: 1D1BFCC6052C795DB408036E61C10843985D8AC4632DED3B7E2D5EC9B8B821DD1DB3E3F95BA0C695B1604FEC0C66924E
    Start Time: 1544865411
    Timeout   : 300 (sec)
    Verify return code: 0 (ok)
---
msa@sieglinde:log$ openssl s_client -connect lp-cdn.lastpass.com:443
CONNECTED(00000005)
depth=1 C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
verify error:num=20:unable to get local issuer certificate
verify return:0
---
Certificate chain
 0 s:/C=US/ST=California/L=Los Angeles/O=Verizon Digital Media Services, Inc./OU=SecOps/CN=sa266gl.wpc.edgecastcdn.net
   i:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
 1 s:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
   i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=US/ST=California/L=Los Angeles/O=Verizon Digital Media Services, Inc./OU=SecOps/CN=sa266gl.wpc.edgecastcdn.net
issuer=/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
---
No client certificate CA names sent
---
SSL handshake has read 4776 bytes and written 444 bytes
---
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-GCM-SHA256
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES128-GCM-SHA256
    Session-ID: 2526CAA857C21CD617E2341DF0E0866CB529F266A18513931C76479F0914396E
    Session-ID-ctx:
    Master-Key: FB5C141AC8CCF1C11E09F43047BD1CE9E68129DBBC5C0A2F066C260E9B8A6EE71417D21D458DE16998B7DFBF6E88F64A
    TLS session ticket lifetime hint: 7200 (seconds)
    TLS session ticket:
    0000 - c0 54 c8 dc df ee 1d 61-e9 73 c1 1e 23 1c 52 60   .T.....a.s..#.R`
    0010 - 60 45 4f a7 6c ed ea 2f-46 c0 69 0b 2d 09 f5 38   `EO.l../F.i.-..8
    0020 - 92 04 47 a8 ab 04 d7 aa-ae dd 6b a7 09 4d 3a 2b   ..G.......k..M:+
    0030 - c6 c5 59 89 bc 3f e3 b2-9f c6 21 7a 8c 03 e1 4c   ..Y..?....!z...L
    0040 - 6a 71 d4 04 e5 3a a1 57-e8 00 96 10 11 a0 63 03   jq...:.W......c.
    0050 - 69 a0 7b 79 29 da a6 bb-43 a4 4a 9f 68 fd c0 50   i.{y)...C.J.h..P
    0060 - 2f 17 91 9b 65 2b ca a8-77 f6 2a f1 51 b7 85 38   /...e+..w.*.Q..8
    0070 - d2 e9 5e 05 79 0b 4a 5a-6a 30 d8 76 e5 41 73 72   ..^.y.JZj0.v.Asr
    0080 - 6b f4 7a 3a 8e 53 66 25-f9 5a ac 8b ab 74 0c 35   k.z:.Sf%.Z...t.5
    0090 - 92 5e 31 53 6f 2f 24 4b-9e 66 d2 c3 51 0e 9b e7   .^1So/$K.f..Q...

    Start Time: 1544865529
    Timeout   : 300 (sec)
    Verify return code: 0 (ok)
---

^C
msa@sieglinde:log$

      As said - all other sites we have tested (banks, google, facebook etc) work over SSL.

      Any ideas where to start looking?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.