We had a similar problem. During some experimentation I tuned keepalive OFF
for the entire site. We then began to have rejections on non-SSL
connections as well as SSL. The problem also appeared to be network load
related (it would only occur during primary working hours). I believe the
problem was actually due to our network configuration. Our network would
pass thru a router doing Network Address Translation (NAT) before connecting
to the web server. We replaced that connection with a different device
(firewall) and all of our problems disappeared. I assume the router had a
problem with the increased number of connections created with keepalive OFF.
I would be interested to know if you have similar results by turning
keepalive OFF for the entire site.
Kevin Payne
Chief Architect
Retailers Market Xchange
[EMAIL PROTECTED]
> -----Original Message-----
> From: David Rees [SMTP:[EMAIL PROTECTED]]
> Sent: Friday, April 06, 2001 5:41 PM
> To: [EMAIL PROTECTED]
> Subject: RE: SSL handshake interrupted
>
> It really sounds like keepalive is turned on. Can you verify that keep
> alive is turned off? Disable keepalive for the entire server if need be.
>
> I'm using MSIE 5.50.4522.1800 (128bit) here, and I've never had problems
> connecting.
>
> -Dave
>
> > -----Original Message-----
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED]]On Behalf Of kreso
> > Sent: Friday, April 06, 2001 5:28 PM
> > To: [EMAIL PROTECTED]
> > Subject: Re: SSL handshake interrupted
> >
> >
> > We are using 5.50.4134.0100 MSIE
> >
> > The problem is that when we access secure site, we get rejected
> > about 20% of
> > times.
> > The error message is the standard browser message:
> > This page cannot be displayed at this time... etc...
> >
> > Once rejected, if we re-submit the request, just a second or less
> > after the
> > rejection - the very
> > same request... the request will go through.
> >
> > Please let us know if you need more info, as this is very frustrating...
> > Thanks
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]