Fluentd shows "SSL_ERROR_RX_RECORD_TOO_LONG" when connecting to external elasticsearch

Solution Verified - Updated -

Issue

  • Connectivity between fluentd pod and external elasticsearch show "SSL_ERROR_RX_RECORD_TOO_LONG" error:
--Connectivity between logging-fluentd-XXXXX and elasticsearch
  with ca
* About to connect() to 10.0.0.1 port 9200 (#0)
*   Trying 10.0.0.1...
* Connected to 10.0.0.1 (10.0.0.1) port 9200 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
*   CAfile: /etc/fluent/keys/ca
  CApath: none
* NSS error -12263 (SSL_ERROR_RX_RECORD_TOO_LONG)
* SSL received a record that exceeded the maximum permissible length.
* Closing connection 0
  • What is mutual TLS?

Environment

  • Red Hat OpenShift Container Platform
    • 3.11

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content