what browser are you using? On Wed, May 16, 2012 at 5:30 PM, Stephen Cottham < [email protected]> wrote:
> Hey Maxim,**** > > ** ** > > I got that to work now, I added the Certificate into my trusted Root > folder via the browser and it will now connect, so anyone using a > self-signed cert will need to add this to all machines they plan on running > it with otherwise RMTPS will fail.**** > > ** ** > > Cheers**** > > ** ** > > ** ** > > ** ** > > ** ** > > ** ** > > *From:* Stephen Cottham [mailto:[email protected]] > *Sent:* Wednesday, 16 May 2012 11:26 AM > *To:* [email protected] > *Subject:* RE: RTMPS question**** > > ** ** > > Hey Maxim,**** > > ** ** > > I’ve created the self-signed certificate, this is working fine in apache > and the install process (HTTPS) but fails on RTMPS only.**** > > ** ** > > All I get from my logs is the following:**** > > ** ** > > [WARN] [NioProcessor-19] org.red5.server.net.rtmps.RTMPSMinaIoHandler - > Exception caught Connection reset by peer**** > > [WARN] [NioProcessor-19] org.red5.server.net.rtmps.RTMPSMinaIoHandler - > Exception caught Broken pipe**** > > [WARN] [NioProcessor-19] org.red5.server.net.rtmps.RTMPSMinaIoHandler - > Exception caught null**** > > ** ** > > And **** > > ** ** > > [WARN] [Red5_Scheduler_Worker-4] org.red5.server.net.rtmp.RTMPConnection - > Closing RTMPMinaConnection from 10.17.23.28 : 51487 to null (in: 319 out > 639 ), with id 3 due to long handshake**** > > ** ** > > Just to check I put the authorised cert back in and it connects fine, I’ll > keep on trying to see what’s going wrong, not much from the logs etc.. > unfortunately.**** > > ** ** > > ** ** > > Cheers**** > > ** ** > > ** ** > > ** ** > > ** ** > > ** ** > > ** ** > > ** ** > > *From:* Maxim Solodovnik [mailto:[email protected]] > *Sent:* Wednesday, 16 May 2012 9:38 AM > *To:* [email protected] > *Subject:* Re: RTMPS question**** > > ** ** > > Thanks Stephen,**** > > ** ** > > I did use these steps to create certificates (the option with root > certificate):**** > > http://www.tc.umn.edu/~brams006/selfsign.html**** > > http://www.tc.umn.edu/~brams006/selfsign_ubuntu.html**** > > ** ** > > ** ** > > and these 2 commands to convert server certificate to the keystore:**** > > ** ** > > openssl pkcs12 -export -out certificate.pfx -inkey server.key -in > server.crt -certfile ca.crt**** > > ** ** > > keytool -importkeystore -deststorepass secret -destkeypass secret > -destkeystore keystore -destalias red5 -srckeystore certificate.pfx > -srcstoretype PKCS12 -srcstorepass password -srcalias 1**** > > ** ** > > not sure if it helps, since it not completely working.**** > > ** ** > > p.s. the certificate generated works well for Apache web server.**** > > ** ** > > ** ** > > On Wed, May 16, 2012 at 3:29 PM, Stephen Cottham < > [email protected]> wrote:**** > > Hi Maxim,**** > > **** > > I have SSL running fine with a legit certificate, at some point today I > can create a self-signed and test this for you.**** > > **** > > Best Regards**** > > **** > > **** > > **** > > *From:* Maxim Solodovnik [mailto:[email protected]] > *Sent:* Wednesday, 16 May 2012 9:24 AM > *To:* [email protected] > *Subject:* Fwd: RTMPS question**** > > **** > > Dear All,**** > > **** > > Is there anybody was able to set up RTMPS with self-signed certificate?*** > * > > Or maybe have clue for the issue described below? > > Thanks in advance :)**** > > ---------- Forwarded message ---------- > From: *[email protected]* <[email protected]> > Date: Wed, May 16, 2012 at 3:09 PM > Subject: Re: RTMPS question > To: Maxim Solodovnik <[email protected]> > Cc: [email protected] > > > I have no SSL test environment currently. I did not run into this issue. > > I did only find the corresponding code that throws your issue in the red5 > sources: > > http://code.google.com/p/red5/source/browse/java/server/trunk/src/org/red5/server/net/rtmp/codec/RTMPProtocolDecoder.java#212 > > However there is no advice in the source how to resolve it. > > Maybe some other users have an idea that successfully run OpenMeetings via > SSL, for example the people asking for the RTMPSClient feature in the > Screensharing. > > Sebastian**** > > **** > > 2012/5/16 Maxim Solodovnik <[email protected]>**** > > Hello Sebastian,**** > > **** > > I'm currently trying to setup and test RTMPS for Screen sharing.**** > > **** > > I perform all steps from instruction**** > > But still unable to get RTMPS working**** > > Here is extended log:**** > > **** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session > Server[1](ssl...) processing the FINISHED state**** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session > Server[1*](SSL) is now secured***** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session > Server[1](SSL) processing the FINISHED state**** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session > Server[1]*(SSL) is now secured***** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslFilter - Session > Server[1](SSL): Processing the SSL Data**** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslFilter - Session > Server[1](SSL): Message received : HeapBuffer[pos=0 lim=213 cap=1024: 17 03 > 01 00 D0 67 A1 06 4E 8C EB EB 42 D8 D7 A2...]**** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslHandler - Session > Server[1](SSL) Processing the received message**** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.ssl.SslFilter - Session > Server[1](SSL): Processing the SSL Data**** > > [DEBUG] [NioProcessor-18] org.apache.mina.filter.codec.ProtocolCodecFilter > - Processing a MESSAGE_RECEIVED for session 1**** > > [DEBUG] [NioProcessor-18] > org.red5.server.net.rtmp.codec.RTMPProtocolDecoder - Start: 0**** > > [DEBUG] [NioProcessor-18] > org.red5.server.net.rtmp.codec.RTMPProtocolDecoder - decodeHandshake - > rtmp: RTMP [state=connect, client-mode=false, debug=false, encrypted=false, > lastReadChannel=0, lastWriteChannel=0, readHeaders={}, writeHeaders={}, > readPacketHeaders={}, readPackets={}, writePackets={}, writeTimestamps={}, > liveTimestamps={}, readChunkSize=128, writeChunkSize=128, encoding=AMF0] > buffer: HeapBuffer[pos=0 lim=183 cap=1536: 50 4F 53 54 20 2F 6F 70 65 6E 2F > 31 20 48 54 54...]**** > > [DEBUG] [NioProcessor-18] > org.red5.server.net.rtmp.codec.RTMPProtocolDecoder - *Handshake init too > small, buffering. remaining: 183***** > > [WARN] [Red5_Scheduler_Worker-2] org.red5.server.net.rtmp.RTMPConnection - > *Closing RTMPMinaConnection from 192.168.72.100 : 64634 to null (in: 931 > out 3083 ), with id 1 due to long handshake***** > > **** > > **** > > As you can see SSL is secured (no issues)**** > > but then I got:**** > > "Handshake init too small, buffering. remaining: 183"**** > > and**** > > "Closing RTMPMinaConnection from 192.168.72.100 : 64634 to null (in: 931 > out 3083 ), with id 1 due to long handshake"**** > > **** > > **** > > **** > > I'm using self-signed certificate with fake CA (added both to the server > and client)**** > > **** > > client debug is:**** > > "devRtmpConnection/registerMethods() **** > > error NetConnection.Connect.Failed rtmps:// > 192.168.72.105:5443/openmeetings/hibernate null false "**** > > **** > > **** > > Can you help me with it?**** > > **** > > -- > WBR > Maxim aka solomax**** > > > > **** > > -- > Sebastian Wagner > https://twitter.com/#!/dead_lock > http://www.openmeetings.de > http://www.webbase-design.de > http://www.wagner-sebastian.com > [email protected]**** > > > > **** > > **** > > -- > WBR > Maxim aka solomax**** > > *Stephen Cottham > *Group IT Manager (Associate) > > Robert Bird Group > Level 5, 333 Ann St > Brisbane, Queensland, 4000, Australia**** > > *Phone: +6173 319 2777 (AUS)***** > > *Phone: +44207 592 8000 (UK)***** > > *Fax: +6173 319 2799***** > > **** > > *Mobile: +61400 756 963 (AUS)***** > > *Mobile: +447900 918 616 (UK)***** > > *Web: **www.robertbird.com* <http://www.robertbird.com/>**** > > <http://www.robertbird.com.au/> > > This email and any attachments are confidential and may contain legally > privileged information or copyright material. Unless expressly stated, > confidentiality and/or legal privilege is not intended to be waived by the > sending of this email. The contents of this email, including any > attachments, are intended solely for the use of the individual or entity to > whom they are addressed. If you are not an intended recipient, please > contact us immediately by return email and then delete both messages. You > may not otherwise read, forward, copy, use or disclose this email or any > attachments. Any views expressed in this email are those of the individual > sender except where the sender expressly, and with authority, states > otherwise. It is your responsibility to check any attachments for viruses > or defects before opening or sending them on. None of the sender or its > related entities accepts any liability for any consequential damage > resulting from this email containing computer viruses. **** > > **** > > > Disclaimer added by *CodeTwo Exchange Rules* > www.codetwo.com**** > > ** ** > > > > **** > > ** ** > > -- > WBR > Maxim aka solomax**** > -- WBR Maxim aka solomax
<<image001.png>>
<<image002.png>>
