My ESP8266 can’t connect to my local server using SSL!
I tried all ports from 8441 to 9443!
Here is my server.properties
hardware.mqtt.port=8440
#hardware ssl port
hardware.ssl.port=9443
#http, plain web sockets and plain hardware port
http.port=8080
#if this property is true csv download url will use port 80 and will ignore http.port
force.port.80.for.csv=false
#if this property is true redirect_command will use 80 port and will ignore http.port
force.port.80.for.redirect=true
#secured https, web sockets and app port
https.port=9443
#address to bind to. by default bounded to all interfaces
listen.address=
#by default server uses embedded in jar cert to simplify local server installation.
#WARNNING DO NOT USE THIS CERTIFICATES ON PRODUCTION OR IN WHERE ENVIRNOMENTS REAL SECURITY REQUIRED.
#provide either full path to files either use '.' for specifying current directory. For instance "./myfile.crt"
server.ssl.cert=./ssl/cert.pem
server.ssl.key=./ssl/key.pem
server.ssl.key.pass=
#by default System.getProperty("java.io.tmpdir")/blynk used
data.folder=./data
#folder for logs.
logs.folder=./logs
#log debug level. trace|debug|info|error. Defines how precise logging will be.
log.level=debug
#maximum number of devices allowed per account
user.devices.limit=50
#maximum number of tags allowed per account
user.tags.limit=100
#defines maximum allowed number of user dashboards. Needed to limit possible number of tokens.
user.dashboard.max.limit=100
#defines maximum allowed widget size in KBs as json string.
user.widget.max.size.limit=20
#user is limited with 100 messages per second.
user.message.quota.limit=100
#maximum allowed number of notification queue. Queue responsible for processing email, pushes, twits sending.
#Because of performance issue - those queue is processed in separate thread, this is required due
#to blocking nature of all above operations. Usually limit shouldn't be reached.
notifications.queue.limit=2000
#Number of threads for performing blocking operations - push, twits, emails, db queries.
#Recommended to hold this value low unless you have to perform a lot of blocking operations.
blocking.processor.thread.pool.limit=6
#this setting defines how often we can send mail/tweet/push or any other notification. Specified in seconds
notifications.frequency.user.quota.limit=5
#this setting defines how often we can send webhooks. Specified in miliseconds
webhooks.frequency.user.quota.limit=1000
#this setting defines how big could be response for webhook GET request. Specified in kbs
webhooks.response.size.limit=96
#maximum size of user profile in kb's
user.profile.max.size=128
#number of strings to store in terminal widget
terminal.strings.pool.size=25
#number of strings to store in map widget
map.strings.pool.size=25
#number of strings to store in lcd widget
lcd.strings.pool.size=6
#maximum number of rows allowed
table.rows.pool.size=100
#period in millis for saving all user DB to disk.
profile.save.worker.period=60000
#period in millis for saving stats to disk.
stats.print.worker.period=60000
#max size of web request in bytes, 256 kb (256x1024) is default
web.request.max.size=524288
#maximum number of points that are fetched during CSV export
#43200 == 60 * 24 * 30 - minutes points for 1 month
csv.export.data.points.max=43200
#specifies maximum period of time when hardware socket could be idle. After which
#socket will be closed due to non activity. In seconds. Default value 10 if not provided.
#leave it empty for infinity timeout
hard.socket.idle.timeout=10
#enable DB
enable.db=false
#enable raw data storage to DB
enable.raw.db.data.store=false
#size of async logger ring buffer. should be increased for loads >2-3k req/sec
async.logger.ring.buffer.size=2048
#when true - allows reading worker to trigger hardware even app is offline
allow.reading.widget.without.active.app=false
#when enabled server will also store hardware and app IP
allow.store.ip=true
#initial amount of energy
initial.energy=100000
#ADMINISTRATION SECTION
admin.rootPath=/admin
#used for reset password page and certificate generation.
#by default current server IP is taken. could be replaced with more friendly hostname.
#it is recommended to override this property with your server IP to avoid possible problems of host resolving
#server.host=test.blynk.cc
#used for fallback page for reset user password, in most cases it should be the same as server.host
#IP is not allowed here, it should be blynk-cloud.com for Blynk app
#or *.blynk.cc for private servers with own apps
restore.host=blynk-cloud.com
product.name=Blynk
#email used for certificate registration, could be omitted in case you already specified it in mail.properties
#contact.email=
#network interface to determine server's current IP.
#only the first characters of the interface's name are needed.
#the default setting eth will use the first ethX interface found (i.e. eth0)
net.interface=eth
#comma separated list of administrator IPs. allow access to admin UI only for those IPs.
#you may set it for 0.0.0.0/0 to allow access for all.
#you may use CIDR notation. For instance, 192.168.0.53/24
allowed.administrator.ips=0.0.0.0/0,::/0
# default admin name and password. that will be created on initial server start
admin.email=admin@blynk.cc
admin.pass=admin
And my arduino sketch
#define BLYNK_PRINT Serial
#include <ESP8266WiFi.h>
#include <BlynkSimpleEsp8266_SSL.h>
// You should get Auth Token in the Blynk App.
// Go to the Project Settings (nut icon).
char auth[] = "01f45ed89cf64dxxxxxxxxxxxxxx";
// Your WiFi credentials.
// Set password to "" for open networks.
char ssid[] = "TP-LINK";
char pass[] = "passpass";
void setup()
{
// Debug console
Serial.begin(9600);
Blynk.begin(auth, ssid, pass, IPAddress(192,168,0,100), 9443);
}
void loop()
{
Blynk.run();
// You can inject your own code or combine it with other sketches.
// Check other examples on how to communicate with Blynk. Remember
// to avoid delay() function!
}
Here is my log file!
13:05:15.499 INFO - Using data dir '.\data'
13:05:15.532 DEBUG- Starting reading user DB.
13:05:15.961 DEBUG- Reading user DB finished.
13:05:15.961 INFO - Region : local. Host : 169.254.79.154.
13:05:16.684 INFO - Initializing gmail smtp mail transport. Username : nilavachowdhury1999@gmail.com . SMTP host : smtp.gmail.com:587
13:05:16.715 INFO - Reports : 0
13:05:16.717 INFO - Didn't find Let's Encrypt certificates.
13:05:16.717 WARN - You didn't specified 'server.host' or 'contact.email' properties in server.properties file. Automatic certificate generation is turned off. Please specify above properties for automatic certificates retrieval.
13:05:16.844 DEBUG- hard.socket.idle.timeout = 10
13:05:17.271 INFO - HTTP API and WebSockets server listening at 8080 port.
13:05:17.272 INFO - HTTPS API, WebSockets and Admin page server listening at 9443 port.
13:05:17.273 INFO - Mqtt hardware server listening at 8440 port.
13:06:14.857 DEBUG- Unsecured connection attempt or not supported protocol. Channel : /66.102.6.138:63687. Reason : io.netty.handler.ssl.NotSslRecordException: not an SSL/TLS record: 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
I have the latest library and latest server release downloaded!
I have tried both Nodemcu and Esp8266 but failed!
I even tried Arduino with usb connection! All failed with SSL! Without SSL everything works fine!
), can that be added to the applicable Sketch Builder SSL examples? Perhaps a mention in the SSL session of the Server documentations as well?
