On Thu, 30 Jan 2014 12:48:33 +0100 Reindl Harald wrote: snip... > somehow ATS does not listen on 8443 > with out the "ssl=" it does but not accept https connections > > what i don't understand is why i need "server.cert.path" and > "server.private_key.path" > at all additionally to "ssl_multicert.config" and which cert this should be in > production, but that's a leter problem after it accepts ssl-connections at all > > /etc/trafficserver/records.config: > CONFIG proxy.config.http.server_ports STRING 8080,ssl=8443 snip...
Your config is wrong - try: CONFIG proxy.config.http.server_ports STRING 8080 8443:ssl Or for outbound transparency: CONFIG proxy.config.http.server_ports STRING 8080 8443:ssl:tr-out Also, proxy.config.ssl.cert.path and proxy.config.ssl.server.private_key.path should be paths, not specific certs: """ # This is the path that SSL certificates files are relative to. Certificate # names specified in ssl_multicert.config will be located relative to this path. CONFIG proxy.config.ssl.server.cert.path STRING config # If any private key is not contained in the certificate file, you must # fill in the private key path. Private key names specified in # ssl_multicert.config will be located relative to this path. CONFIG proxy.config.ssl.server.private_key.path STRING config """ Cheers, Uri
