Troubleshooting
Problem
OFTP2-TLS Handshake fails when opening outbound connection
Symptom
When attempting to open an outbound OFTP over TLS connection to a Trading partner an SSL Handshake Error occurs
Cause
Using a tool like tcpdump/etherreal/wireshark to inspect the outbound connection shows this:
Secure Sockets Layer
SSLv2 Record Layer: Client Hello
[Version: SSL 2.0 (0x0002)]
Length: 52
Handshake Message Type: Client Hello (1)
Version: TLS 1.0 (0x0301)
Cipher Spec Length: 27
Session ID Length: 0
Challenge Length: 16
Cipher Specs (9 specs)
Challenge
where the Client Hello is wrapped in a SSLv2 Envelope and the Partner does reply
Secure Sockets Layer
TLSv1 Record Layer: Alert (Level: Fatal, Description: Handshake Failure)
Content Type: Alert (21)
Version: TLS 1.0 (0x0301)
Length: 2
Alert Message
Diagnosing The Problem
get a tcpdump or wireshark trace
Resolving The Problem
Install FixPack 2 for IBM Sterling B2B Integrator 5.2.4
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21634245