bneradt commented on issue #12674: URL: https://github.com/apache/trafficserver/issues/12674#issuecomment-3705546061
Hi @CanOfSocks . For general HTTP/2 to origin configuration guidance, I added some notes to this ticket earlier which you may find helpful: https://github.com/apache/trafficserver/issues/12175#issuecomment-2805936162 However, judging from your output, and your own analysis, this has more to do with TLS configuration. > HTTP2 cleartext, but this does not appear to be mentioned as supported in the documentation. Yes, even ATS aside, HTTP/2 over cleartext is hard to deploy. You seem to have `ssl_multicert.config` issues (maybe you have duplicate entries for a CN?), but that shouldn't cause your origin side issues. That could cause client connection issues to your ATS proxy, but I wouldn't expect that to cause an origin side connection problem. Your failing local curl is interesting. Maybe there is an issue with the boring stack against that origin for some reason? I'm not as familiar with working with boringssl. I see you have pretty extensive debug tag logging enabled in your `records.yaml`. Those logs may be helpful here. Can try to proxy a connection through ATS and attach the resulting logs to this ticket? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
