From owner-freebsd-stable@FreeBSD.ORG Fri Nov 7 12:11:31 2014 Return-Path: Delivered-To: stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 9D5997EC for ; Fri, 7 Nov 2014 12:11:31 +0000 (UTC) Received: from constantine.ingresso.co.uk (constantine.ingresso.co.uk [IPv6:2a02:b90:3002:e550::3]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 62EFB9FC for ; Fri, 7 Nov 2014 12:11:31 +0000 (UTC) Received: from dilbert.london-internal.ingresso.co.uk ([10.64.50.6] helo=dilbert.ingresso.co.uk) by constantine.ingresso.co.uk with esmtps (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.82 (FreeBSD)) (envelope-from ) id 1XmiNw-0006ot-UP; Fri, 07 Nov 2014 12:11:24 +0000 Received: from petefrench by dilbert.ingresso.co.uk with local (Exim 4.84 (FreeBSD)) (envelope-from ) id 1XmiNw-0005km-S3; Fri, 07 Nov 2014 12:11:24 +0000 To: petefrench@ingresso.co.uk, ronald-lists@klop.ws, stable@freebsd.org Subject: Re: Advice on an odd networking problem In-Reply-To: Message-Id: From: Pete French Date: Fri, 07 Nov 2014 12:11:24 +0000 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 07 Nov 2014 12:11:31 -0000 > Do the https calls to nginx succeed? > I can imagine that the https certificate is not valid on 127.0.0.1 and > fetch/curl/wget asks for confirmation or something like that. yes,the vast majority of the calls succeed - all the certificates are correct, and the same effect appears under http-only (all the internal stuff is http only). -pete.