Blog dedicated to Oracle Applications (E-Business Suite) Technology; covers Apps Architecture, Administration and third party bolt-ons to Apps

Thursday, July 19, 2007

Firefox error -12263

While accessing our newly configured extranet site, we are getting Firefox error -12263. The network guys say that all the routing is correct. Did a google search with these keywords: 12263 site:mozilla.org


Found this on http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslerr.html :

SSL_ERROR_RX_RECORD_TOO_LONG -12263 "SSL received a record that exceeded the maximum permissible length."

This generally indicates that the remote peer system has a flawed implementation of SSL, and is violating the SSL specification.

Traffic flow is like this: https://justanexample.com -> Goes to Big IP load balancer -> redirected to Apache which is not on plain http and not on https.

Network team informed us that SSL certificate was not present for the BigIP. We had assumed that since it is a common hardware, SSL certificate would be already in place. It turns out that you need a separate certificate for each URL. We have placed the order for the certificate now, and once we get it, the network team will install it on the BigIP. Let us see if the problem goes away after this configuration is done.The problem did not go away and the network team realized that they had to do some additional steps after installing the certificate namely recreate the TrustedCA certificate as access to the URL was showing that certificate is for localhost.localdomain. After they fixed these, it worked like a dream.

No comments: