Hi Kannel User:
I am Trying to set the WAP Gateway to do client HTTPS requset.
I use openssl to make certkey.pem(ssl-client-certkey )
OPENSSL command that I used to make certkey.pem
----------------------------------------------------------------------
OPENSSL Command Line:
----------------------------------------------------------------------
OPENSSL Command Line:
> openssl req -new -keyout certkey.pem -text -out cert.req
Using configuration from /usr/share/ssl/openssl.cnf
Generating a 1024 bit RSA private key
................++++++
.++++++
writing new private key to 'certkey.pem'
Enter PEM pass phrase:pass phrase
Verifying password - Enter PEM pass phrase:pass phrase
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:JP
State or Province Name (full name) [Some-State]:Tokyo
Locality Name (eg, city) []:.
Organization Name (eg, company) [Internet Widgits Pty Ltd]:TestKannel
Organizational Unit Name (eg, section) []:.
Common Name (eg, your name or your server's hostname) []:www.****.co.jp
Email Address []:[EMAIL PROTECTED]
Using configuration from /usr/share/ssl/openssl.cnf
Generating a 1024 bit RSA private key
................++++++
.++++++
writing new private key to 'certkey.pem'
Enter PEM pass phrase:pass phrase
Verifying password - Enter PEM pass phrase:pass phrase
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:JP
State or Province Name (full name) [Some-State]:Tokyo
Locality Name (eg, city) []:.
Organization Name (eg, company) [Internet Widgits Pty Ltd]:TestKannel
Organizational Unit Name (eg, section) []:.
Common Name (eg, your name or your server's hostname) []:www.****.co.jp
Email Address []:[EMAIL PROTECTED]
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
to be sent with your certificate request
A challenge password []:
An optional company name []:
> openssl req -x509 -in cert.req -text -key certkey.pem -out cert.crt
Using configuration from /usr/share/ssl/openssl.cnf
Enter PEM pass phrase:pass phrase
Using configuration from /usr/share/ssl/openssl.cnf
Enter PEM pass phrase:pass phrase
---------------------------------------------------------------------
from here my certkey.pem is make.
then I put this into my Kannel Configuration file below.
---------------------------------------------------------------------
# Kannel Configuration file
group = core
admin-port = 13000
admin-password = bar
wapbox-port = 13001
wdp-interface-name = "*"
log-file = "/var/log/kannel/bearerbox.log"
access-log = "/var/log/kannel/access.log"
group = core
admin-port = 13000
admin-password = bar
wapbox-port = 13001
wdp-interface-name = "*"
log-file = "/var/log/kannel/bearerbox.log"
access-log = "/var/log/kannel/access.log"
ssl-client-certkey ="certkey.pem"
wapbox-port-ssl = true
wapbox-port-ssl = true
http-proxy-host = proxy
http-proxy-port = 8085
http-proxy-port = 8085
#Wapbox Configuration
group = wapbox
bearerbox-host = gsm-brws1
log-file = "/var/log/kannel/wapbox.log"
force-sar = yes
---------------------------------------------------------------------
Run the gateway
ERROR occur as below........
[root@gsm-brws1 gateway-1.2.0]# ./gw/bearerbox ./doc/kannel.conf
2002-10-22 15:06:29 [0] INFO: Debug_lvl = -1, log_file = <none>, log_lvl = 0
2002-10-22 15:06:29 [0] WARNING: DLR: using default 'internal' for storage type.
2002-10-22 15:06:29 [0] DEBUG: Kannel bearerbox version `1.2.0'.
System Linux, release 2.4.4-18ksmp, version #1 SMP Tue Jun 5 06:14:54 PDT 2001,
machine i686.
Hostname gsm-brws1, IP 172.20.204.21.
Libxml version 20402.
Using OpenSSL 0.9.6a 5 Apr 2001.
Using native malloc.
2002-10-22 15:06:29 [0] INFO: Added logfile `./tmp/kannel.log' with level `0'.
2002-10-22 15:06:29 [0] INFO: ----------------------------------------
2002-10-22 15:06:29 [0] INFO: Kannel bearerbox II version 1.2.0 starting
2002-10-22 15:06:29 [0] INFO: Started access logfile `access.log'.
Enter PEM pass phrase:pass phrase
2002-10-22 15:06:39 [0] PANIC: reading global client certificate file certkey.pe
m, the certificate isn't consistent with the private key (or failed reading the
file)
2002-10-22 15:06:29 [0] INFO: ----------------------------------------
2002-10-22 15:06:29 [0] INFO: Kannel bearerbox II version 1.2.0 starting
2002-10-22 15:06:29 [0] INFO: Started access logfile `access.log'.
Enter PEM pass phrase:pass phrase
2002-10-22 15:06:39 [0] PANIC: reading global client certificate file certkey.pe
m, the certificate isn't consistent with the private key (or failed reading the
file)
---------------------------------------------------------------------
< Question >
Does anyone know how to fix this problems ?
Or is that I use the wrong program to make my "certkey.pem" ?
< Question >
Does anyone know how to fix this problems ?
Or is that I use the wrong program to make my "certkey.pem" ?
Do I have to set my configurate,
./configure --with-wtls=openssl
./make
./make
( instead of using the original : ./configure then ./make),
before doing the above task ?
before doing the above task ?
BestRegards
TuskSeng Kong
Get a speedy connection with MSN Broadband.� Join now! Click Here
