跳转到主内容

SVM无法连接到FPolicy服务器、因为未启用SSL

适用场景

  • ONTAP 9
  • Fpolicy
  • CIFS
  • SSL

问题描述

  • SVM无法连接到FPolicy 服务器
  • EMS显示以下错误:
    • fpolicy: fpolicy.server.disconnect:error]: Connection to the FPolicy server "10.10.10.75" is broken ( reason: "Read returned error while reading message from FPolicy server." ).
    • fpolicy: fpolicy.server.disconnect:error]: Connection to the FPolicy server "10.10.10.75" is broken ( reason: "Send request to FPolicy server failed." ).
    • Connection to the FPolicy server "10.10.10.75" is broken ( reason: "Error encountered while sending a message to FPolicy to FPolicy server." ).
    • fpolicy.server.connectError: Node failed to establish a connection with the FPolicy server "xx.xx.xx.xx" of policy "Varonis" for Vserver SVM1 (reason: "Select Timed out."). 
  • apache-error.GZ错误:
    • [ssl:warn] [pid 12024:tid 34376559360] [client 10.10.10.75:52449] [vserver 1] SSL is not configured for this vserver
  • 数据包跟踪:
    • 从FPolicy 服务器端启动连接尝试时、 NetApp不会响应来自Fpolicy服务器的TLS Hello、并请求关闭TCP连接。SVM无法连接到FPolicy服务器、因为未启用SSL

    • 从NetApp端启动连接尝试后、Fpolicy服务器会在发送Fpolicy协商响应后重置TCP连接。

Fpolicy服务器将重置TCP连接

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.