[EMAIL PROTECTED] wrote: > If I run the command: > > openssl s_client -connect server.domain.com:443 -state -reconnect > > I see the intial connection and certificate exchange happen in under a second. > However, further reconnections using the same SSL session result in a delay of > around 4 seconds at the 'read server hello' stage. >
This problem turned out to be down to a setting on a Cisco Local Director sitting between the outside world and the server. The problem was not down to any SSL implementation (and was repeatable on several different ones). In case anyone else has this nightmare, changing: sticky xxx.xxx.xxx.xxx:tcp 1440 ssl to sticky xxx.xxx.xxx.xxx::tcp 30 generic did the trick. Saul Hazledine ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
