cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1571
Views
0
Helpful
0
Replies

Facing errors with Cisco EST server

Hi,

Am working on CISCO EST server application which is there in github https://github.com/cisco/libest .

We have a PKI client which is trying to connect to EST server “runserver.sh” which is running on local host and listening on port 8085. In this process we are working from many days and getting some errors which are listed below:

1. When I give server address as https://127.0.0.1/.well-known/est , am getting “PKI Networking interface connect and send request operation failed” error because client is unable connect to EST server using TCP connection. (port number 8085 is also given). What’s the problem here?

2. We cannot capture signals in localhost using Wireshark tool, so we are using linux command “sudo ssldump -i lo port 8085”. Here we can see ‘Client Hello’ with cipher suites many times but EST server is not responding with “Server Hello”. Why server is not responding to client hello ?

3. When Server is running, I run command “sudo ssldump -i lo port 8085” to see preferred cipher suite by Server. But preferred cipher suite list is empty. Why ?

4. In RFC7030, it is said that EST uses TLS1.1 with mandatory cipher suite TLS_RSA_WITH_3DES_EDE_CBC_SHA. So in both Client and Server we set this TLS version and above version, still facing same problem.

5. One more important thing is we are using CURL library in our client not openSSL. Is this a reason for error what we are getting??


Please help me by sending answers to my questions 

0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: