Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

6.8.3 SSL/SSH connections are breaking

Featured Replies

Hello,

 

I have a strange problem where outbound ssl connections are breaking. For example using curl from host itself or dockers such as sonarr doing api requests or nzbget downloading data from ssl sources break from time to time.

 

Example:

 

root@oasis:~#  curl -o o https://www.google.com
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
curl: (35) error:1408F119:SSL routines:ssl3_get_record:decryption failed or bad record mac

 

Out of 10 curls 1 might fail but its more noticeable in nzbget where I am getting spammed with those errors.

 

Things I tried so far and no success:

 

1. Tested with another computer on same switch to rule out my network

2. Swapped ethernet cables

3. Swapped ethernet ports (my motherboard has 2)

4. Unraid created a bond interface so I tried going back to individual interfaces

5. Disabled all offloading features such as lso, gro, tso, etc...

6. Did a memtest86 for 10~hours no errors.

 

Hardware specs:

 

CPU: AMD Ryzen 3600

Motherboard: AsRock X470D4U

Memory: Crucial 32GB (2 x 16GB) 288-Pin DDR4 SDRAM DDR4 2666

Nic: From motherboard

 

Thanks for any ideas!

 

oasis-diagnostics-20200512-1031.zip

  • Author

In case someone has ideas I found the following:

 

1. Changing the cipher in nzbget to RC4-MD5 got rid of all the ssl errors for nzbget.

2. Changing the cipher to blank (auto) or choosing AES128-SHA for example brings back ssl errors.

 

Not sure how to test with curl since most websites block rc4-md5 since its less secure

 

Archived

This topic is now archived and is closed to further replies.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.