Fiddler is unable to connect in case of Tunnel Requests with HTTPS Handshake
575 views
Skip to first unread message
QA User
Jun 16, 2016, 7:13:02 AM6/16/16
to Fiddler
Fiddler fails to connect to Tunnel request, this happens for some of the domain
and same Fiddler CA Certificate is working fine for other domains.
Request:
A SSLv3-compatible ClientHello handshake was found. Fiddler extracted the parameters below.
Version: 3.3 (TLS/1.2)
Random: 57 63 D7 AD 90 DE AC 87 2F EC 66 6B 38 74 0D 55 4A 69 86 57 17 DC 63 25 26 A6 30 E1 C7 E4 67 79
"Time": 6/3/2062 8:57:19 PM
SessionID: empty
Extensions:
server_name some.domain.com
elliptic_curves secp256r1 [0x17], secp384r1 [0x18], secp521r1 [0x19]
ec_point_formats uncompressed [0x0]
signature_algs sha384_rsa, sha256_rsa, sha1_rsa, sha384_ecdsa, sha256_ecdsa, sha1_ecdsa
NextProtocolNego empty
ALPN h2, h2-16, h2-15, h2-14, spdy/3.1, spdy/3, http/1.1
status_request OCSP - Implicit Responder
SignedCertTimestamp (RFC6962) empty
Ciphers:
[00FF] TLS_EMPTY_RENEGOTIATION_INFO_SCSV
[5600] TLS_FALLBACK_SCSV http://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv
[C02C] TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[C02B] TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[C024] TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[C00A] TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[C023] TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[C009] TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[C030] TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[C02F] TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[C028] TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[C027] TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[C013] TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA
Compression:
[00] NO_COMPRESSION
Response (Error):
fiddler.network.https> HTTPS handshake to some.domain.com (for #125) failed. System.IO.IOException Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host. < An existing connection was forcibly closed by the remote host
and same Fiddler CA Certificate is working fine for other domains.
Request:
A SSLv3-compatible ClientHello handshake was found. Fiddler extracted the parameters below.
Version: 3.3 (TLS/1.2)
Random: 57 63 D7 AD 90 DE AC 87 2F EC 66 6B 38 74 0D 55 4A 69 86 57 17 DC 63 25 26 A6 30 E1 C7 E4 67 79
"Time": 6/3/2062 8:57:19 PM
SessionID: empty
Extensions:
server_name some.domain.com
elliptic_curves secp256r1 [0x17], secp384r1 [0x18], secp521r1 [0x19]
ec_point_formats uncompressed [0x0]
signature_algs sha384_rsa, sha256_rsa, sha1_rsa, sha384_ecdsa, sha256_ecdsa, sha1_ecdsa
NextProtocolNego empty
ALPN h2, h2-16, h2-15, h2-14, spdy/3.1, spdy/3, http/1.1
status_request OCSP - Implicit Responder
SignedCertTimestamp (RFC6962) empty
Ciphers:
[00FF] TLS_EMPTY_RENEGOTIATION_INFO_SCSV
[5600] TLS_FALLBACK_SCSV http://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv
[C02C] TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[C02B] TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[C024] TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[C00A] TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[C023] TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[C009] TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[C030] TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[C02F] TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[C028] TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
[C027] TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[C013] TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA
Compression:
[00] NO_COMPRESSION
Response (Error):
fiddler.network.https> HTTPS handshake to some.domain.com (for #125) failed. System.IO.IOException Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host. < An existing connection was forcibly closed by the remote host
EricLaw
Jun 17, 2016, 8:40:48 PM6/17/16
to Fiddler
What version of Fiddler? Which HTTPS protocol versions are enabled inside Tools > Fiddler Options > HTTPS? Is there some reason you can't share the real domain name?
Reply all
Reply to author
Forward
0 new messages