Francois - Thanks for your reply.
On the source (where I am running openssl client): - The windows firewall is disabled (I have no other software based firewall software loaded) - I can connect to other (non-windows 2008/iis7) destination servers properly using the openssl client On the destination server (running IIS7/Windows 2008): - The windows firewall is disabled (I have no other software based firewall software loaded) - There is a hardware firewall BUT port 443 is open on it AND I am using a VPN client which tunnels through the hardware firewall anyway. - I can establish an https session using a web browser (which would seem to imply port 443 is not blocked). Any other ideas/suggestions? Thanks Brad -----Original Message----- From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Francois Dupressoir Sent: Wednesday, March 18, 2009 6:04 AM To: openssl-users@openssl.org Subject: Re: Using openssl to test SSL on Windows 2008/IIS7 Hi Brad, This looks like a windows socket issue. Error 10054 is "Connection reset by peer." You may have a firewall issue on windows 2008 that doesn't occur on the other servers and does not block https traffic. Cheers, Francois. Brad Baker wrote: > > I'm trying to use open ssl to connect to an IIS7 site hosted on a > Windows 2008 server: > > openssl s_client -host server.domain.com -port 443 > > I'm getting the following error: > > Loading 'screen' into random state - done > > CONNECTED(000000D8) > > write:errno=10054 > > The same command works fine on an IIS6 site hosted on windows 2003 and > an IIS5 site hosted on windows 2000. I can confirm that https is > functioning on the site in question by testing in a web browser. > > Is there a known incompatibility between the openssl client and IIS7 > or some IIS7 configuration setting that needs to be tweaked to allow > openssl to connect properly? > > Thanks > > Brad > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
smime.p7s
Description: S/MIME cryptographic signature
