SSL error after configuration

Brainslag

After running the Script and logging in to configure it flow the first time It starts giving me an Error code: SSL_ERROR_RX_RECORD_TOO_LONG

The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.

Please contact the website owners to inform them of this problem.

How do i fix this?

johnny

A couple of Questions to help us with your issue:

What Operating System and Version?
Have you tried reinstalling from scratch?
is ports 443 and 80 exposed to the internet as this is required for lets encrypt cert to be acquired?
do you have a FQDN pointed to the IP of the ITFlow instance?

wrongecho

Hey @Brainslag

Did you get anywhere with this at all?

johnny

Hello @Brainslag just checking to see if this is resolved so we can mark this topic solved or keep it open.

GolfKiloWhiskey

The fix for (after i realized even if hosting internally) is you need port 80/443 open from your WAN to your ITFlow instance. When certbot runs, its querying LetsEncrypt to build your certificate, but cant reach your Apache instance for the ACME challenge. That error is basically that the HTTPS backend is not protected and needs the cert tied to it.

Also, when running the install script, it will fail if you run it as sudo. It'll skip every part of the script and not even try to run certbot since it doesn't even install Apache. Make sure you download the script, dump it in /tmp. SSH to your ITFlow instance, log in as root. Change to /tmp. run "chmod +x itflow_install.sh". Then ./itflow_install.sh and watch the fun begin.

wrongecho

Hey @GolfKiloWhiskey

Glad you managed to figure it out.

This does appear to be mentioned in the docs already, so looks like we're all good from that front

Ports 80 (HTTP) and 443 (HTTPS) TCP accessible from the outside in

https://docs.itflow.org/installation_script

Keen to hear your thoughts on ITFlow, if you do need any further assistance please reach out!