Server to Server Problem

Prady_Arddhika · September 28, 2006, 9:57am

Hi…

I’'m new at this wildfire server

sorry for my silly question…

now im trying to use server to server module at my server

let me list my configuration

Server 1 (hostname : chat.tixy.lan)

Server to Server Settings

server to server service : enabled
idle connection settings : never
allowed to connect : anyone

Security Settings

server connection security : optional

Server 2 (hostname : ngobrol.tixer.lan)

same configuration **

Then with my Pandion from Server 1, connect to Server 2 (Click on transportation menu)

type ngobrol.tixer.lan :

Unknown Service : proxy.ngobrol.tixer.lan

Connecting…

Unknown Service : conference.ngobrol.tixer.lan

Connecting…

Unknown Service : pubsub.ngobrol.tixer.lan

Connecting…

Unknown Service : search.ngobrol.tixer.lan

Connecting…

Session from server 2 say :

chat.tixy.lan connection incomming

but nothing happen

Line: -

The log file from Server 2 :

at org.jivesoftware.wildfire.server.OutgoingServerSession.secureAndAuthenticate(Ou tgoingServerSession.java:367)

at org.jivesoftware.wildfire.server.OutgoingServerSession.createOutgoingSession(Ou tgoingServerSession.java:303)

at org.jivesoftware.wildfire.server.OutgoingServerSession.authenticateDomain(Outgo ingServerSession.java:140)

at org.jivesoftware.wildfire.server.OutgoingSessionPromise.createSessionAndSendPac ket(OutgoingSessionPromise.java:126)

at org.jivesoftware.wildfire.server.OutgoingSessionPromise.access$300(OutgoingSess ionPromise.java:37)

at org.jivesoftware.wildfire.server.OutgoingSessionPromise$1$1.run(OutgoingSession Promise.java:91)

at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java: 650)

at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:675)

at java.lang.Thread.run(Thread.java:595)

Caused by: javax.net.ssl.SSLHandshakeException: General SSLEngine problem

at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)

at com.sun.net.ssl.internal.ssl.SSLEngineImpl.fatal(SSLEngineImpl.java:1413)

at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:176)

at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:168)

at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshake r.java:847)

at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.j ava:106)

at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:495)

at com.sun.net.ssl.internal.ssl.Handshaker$1.run(Handshaker.java:437)

at java.security.AccessController.doPrivileged(Native Method)

at com.sun.net.ssl.internal.ssl.Handshaker$DelegatedTask.run(Handshaker.java:932)

at org.jivesoftware.wildfire.net.TLSStreamHandler.doTasks(TLSStreamHandler.java:37 1)

at org.jivesoftware.wildfire.net.TLSStreamHandler.doHandshake(TLSStreamHandler.jav a:281)

… 11 more

Caused by: java.security.cert.CertificateException: root certificate not trusted of

at org.jivesoftware.wildfire.net.ServerTrustManager.checkServerTrusted(ServerTrust Manager.java:133)

at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(SSLContext Impl.java:320)

at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshake r.java:840)

… 18 more

2006.09.28 07:00:09 OS - Going to try connecting using server dialback

2006.09.28 07:00:09 OS - Trying to connect to chat.tixy.lan:5269

2006.09.28 07:00:10 OS - Connection to chat.tixy.lan:5269 successful

2006.09.28 07:00:10 OS - Sent dialback key to host: chat.tixy.lan id: 4bbcf682 from domain: proxy.ngobrol.tixer.lan

2006.09.28 07:00:10 OS - Unexpected answer in validation from: chat.tixy.lan id: 4bbcf682 for domain: proxy.ngobrol.tixer.lan answer:

java.lang.Exception: Failed to create connection to remote server

at org.jivesoftware.wildfire.server.OutgoingSessionPromise.createSessionAndSendPac ket(OutgoingSessionPromise.java:139)

at org.jivesoftware.wildfire.server.OutgoingSessionPromise.access$300(OutgoingSess ionPromise.java:37)

at org.jivesoftware.wildfire.server.OutgoingSessionPromise$1$1.run(OutgoingSession Promise.java:91)

at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java: 650)

at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:675)

at java.lang.Thread.run(Thread.java:595)

Line: -

Cant anyone help me…

Thanks

Prady_Arddhika · September 29, 2006, 3:46am

Up…up…

Aznidin · September 29, 2006, 8:46am

Hi,

It seems like you’'ve hit the name resolution problem for remote services. The solution would be to make all the xmpp (sub)domain names for all remotely available services like proxy.ngobrol.tixer.lan, conference.ngobrol.tixer.lan etc, resolveable. Additional information can be found here.

Caused by: java.security.cert.CertificateException: root certificate not trusted of John Doe, OU=XMPP, O=Jive Software, L=Portland, ST=OR, C=US

By default, S2S will not allow TLS connection using untrusted certificates. Looks like you are using a self-signed certificate that comes together in Wildfire bundle. This certificate is not trusted, and so S2S fails. However, if security is not your major issue, then you may disable certificate verification by setting the system property “xmpp.server.certificate.verify” to “false” via Wildfire admin console.