Openssl error: SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol


If you see similar errors as below when using openssl to test a https site, it is most likely caused by the SNI that is configured in the reverse proxy or server, like Nginx. openssl s_client -connect bla.bla.com:443 CONNECTED(00000003) 51089:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:/BuildRoot/Library/Caches/com.apple.xbs/Sources/OpenSSL098/OpenSSL098-59.60.1/src/ssl/s23_clnt.c:618: To make it work, you need to specify the hostname in the command, … Continue reading Openssl error: SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol

Advertisements

Autoscaler on OpenShift Dedicated


At the time of writing, OpenShift dedicated (v3.5.5.31) only supports autoscaling based on the CPU metrics. So the first step is to ensure the CPU request is in place. It can be setup in the section of container spec. e.g spec: containers: image: 'poc/web' name: my-web ports: - containerPort: 3000 resources: requests: cpu: 200m limits: … Continue reading Autoscaler on OpenShift Dedicated

Resources QoS in Kubernetes


I extracted a few points to grasp the rough idea of how Kubernetes manages resources QoS: Pods that need to stay up reliably can request guaranteed resources, while pods with less stringent requirements can use resources with weaker or no guarantee. If a pod is successfully scheduled, the container is guaranteed the amount of resources … Continue reading Resources QoS in Kubernetes

Missing Parts of OpenShift Dedicated


I have been working on OpenShift Dedicated (on AWS) for a few weeks. At the time of writing (v3.5.5.31), here are a couple missing parts that I have found out so far. They are all confirmed by the RedHat support. Share persistent volume across multiple containers: Currently there is no way to share the persistent … Continue reading Missing Parts of OpenShift Dedicated

Huggies – AWS Elastic Beanstalk Automation Tool


Huggies is a side project that I started when working for the NAPI team which pronounced as ['næpɪ], and that is why I named it as Huggies 😉 The team's environments are mostly on AWS Elastic Beanstalk. In general, Elastic Beanstalk is a good tool as it abstracts the complexicity of managing Elastic Load Balancer, … Continue reading Huggies – AWS Elastic Beanstalk Automation Tool