 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
.NET Forum / ASP.NET / Web Services / November 2004Erratic SSL Error: Could not establish secure channel for SSL/TLS
Hi, I wonder if anyone is experiencing a similar problem. I have a collection of web services that I access from a client over the internet. I use SSL to secure the connection. My client application makes thousands of calls to the web services each day, but every now and then I get the following error message: System.Net.WebException: The underlying connection was closed: Could not establish secure channel for SSL/TLS. ---> System.IO.IOException: Unable to read data from the transport connection. ---> System.IO.IOException: Unable to read data from the transport connection. ---> System.Net.Sockets.SocketException: An existing connection was forcibly closed by the remote host It happens erratically, and I've checked my SSL settings and certificates - all seems to be fine. Just every now and again I get this SSL error. My client is a .Net 1.1 application. My web services are running under IIS 6.0 on Windows 2003, .Net 1.1. Any insight would be greatly appreciated! Many Thanks, Luke Venediger. Luke, Are you currently overriding 'GetWebRequest()' in the proxy class on the client and setting keep alives to false? Alex > Hi, > [quoted text clipped - 20 lines] > Many Thanks, > Luke Venediger. Hi Alex, We're not overriding GetWebRequest in the proxy. As for the keep-alives they are enabled on the web server. Should they be disabled? Thanks, Luke Venediger. We're doing the same thing. Client application using web services on the 1.1 .NET Framework. Our servers are Windows 2003 Web Edition. Every now and then we're receiving the "The underlying connection was closed: Could not establish secure channel for SSL/TLS." error. Has anyone else responded with reasons for this error? Thanks Hello , I have exactly the same problem : using TCPListener and socket on two machine (one client, one server). On two XPs, that works. On two 2003 Servers, after a while I get the same message : 'Unable to read data from the transport connection ..' Isn' t it against some 2003 timeouts ?? If you find some topics to help me solving the problem , please let me know (I will let you know when I' ll fix) Thanks Fred fredplain@hotmail.com Hi All, It sounds like everyone here is using load balanced servers. Apparently the problem happens when you use a proxy server for incoming and outgoing traffic (as might be the case in a load-balanced environment.) A solution is to specify the proxy address in the machine.config file of your web servers. For example: <proxy usesystemdefault="false" proxyaddress="http://yourproxy" bypassonlocal="true" /> There is a Microsoft knowledge base article on configuring a bypass proxy on your machine: http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;307220 Hope that helps, Cheers, Hi All, It sounds like everyone here is using load balanced servers. Apparently the problem happens when you use a proxy server for incoming and outgoing traffic (as might be the case in a load-balanced environment.) A solution is to specify the proxy address in the machine.config file of your web servers. For example: <proxy usesystemdefault="false" proxyaddress="http://yourproxy" bypassonlocal="true" /> There is a Microsoft knowledge base article on configuring a bypass proxy on your machine: http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;307220 Hope that helps, Cheers, Luke. Hi, To get rid of this problem, a work around that is effective is to disable keep-alives in the generated .NET proxy client. What is happening is that the reused connection gets closed, but the proxy isn't accounting for this so it tries to use a dead connection. The work around is to prevent the proxy from making a request with keep-alives enabled. Regards Dan Rogers Microsoft Corporation -------------------- >From: lukev123@gmail.com (Luke Venediger) >Newsgroups: microsoft.public.dotnet.framework.aspnet.webservices [quoted text clipped - 7 lines] >Content-Transfer-Encoding: 8bit >X-Trace: posting.google.com 1097498090 8848 127.0.0.1 (11 Oct 2004 12:34:50 GMT) >X-Complaints-To: groups-abuse@google.com >NNTP-Posting-Date: Mon, 11 Oct 2004 12:34:50 +0000 (UTC) >Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!news-out.cwix.com!newsfeed.cwix.co m!border1.nntp.dca.giganews.com!nntp.giganews.com!news.glorb.com!postnews1.g oogle.com!not-for-mail >Xref: cpmsftngxa06.phx.gbl microsoft.public.dotnet.framework.aspnet.webservices:25816 >X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.webservices > [quoted text clipped - 22 lines] >Many Thanks, >Luke Venediger.
Free MagazinesGet these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...
|
Reply to this Message
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.