• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

nginix TLS error with https portal

Scheduled Pinned Locked Moved Captive Portal
3 Posts 2 Posters 1.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • G
    guntery
    last edited by Jul 22, 2022, 2:18 AM

    any ideas what the below is (100's per day)? The client is an authenticated windows laptop, so no idea why it would be still talking to the CP...

    SSL_read() failed (SSL: error:14191044:SSL routines:tls1_enc:internal error) while waiting for request, client: 10.1.1.102, server: 0.0.0.0:8003
    G 1 Reply Last reply Jul 22, 2022, 11:22 AM Reply Quote 0
    • G
      Gertjan @guntery
      last edited by Jul 22, 2022, 11:22 AM

      @guntery

      Like this :

      f88d845c-64cf-4aea-bbfa-57176b3e022a-image.png
      According the the SSL NGINX Captive portal web server setting, port 8003 is :

      	server {
		listen 8003 ssl http2;

      So, the device on my captive portal network identifying itself with with 192.168.2.144 and DHCP client ID : "MSFT 5.0" is haerming the TLS only web server with traffic that can be anything, except valid HTTP TLS traffic.

      Solution : have a talk with the owner of offending device, "192.168.2.144" in my case.
      Or, make it a don't care situation.

      It could be a Microrost Windows device that want to talk to the known gateway over port 80, a classic web request. It got redirected to the HTTPS web - portal login - server on port 8003 as per captive portal's firewall instruction. The web client wasn't doing TLS at that moment, although it was told to do a https://yourportal..yournetwork.tld:8003 (== TLS) : the captive portal web server complains now.

      No "help me" PM's please. Use the forum, the community will thank you.
      Edit : and where are the logs ??

      G 1 Reply Last reply Jul 23, 2022, 1:08 AM Reply Quote 0
      • G
        guntery @Gertjan
        last edited by Jul 23, 2022, 1:08 AM

        That makes sense. I guess the client has software which is trying to talk to the gateway.

        1 Reply Last reply Reply Quote 0
        1 out of 3
        • First post
          1/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received