New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
How to enable TLS? #267
Comments
hmmm.. I have yet to adapt to latest open5gs release (v.2.7.0), which underwent a lot of changes in configuration. Will let you know once I add support for enabling TLS. |
Thank you! I'm using v2.6.6 now, if you have any suggestions you can provide them too! Thanks!! |
Hi! I changed the scheme to https successfully. However, where can I find the sslkey.log to decrypt TLS packet? Thanks!! |
I am not sure which sslkey.log you are referring to. |
I want to decrypt TLS to HTTP/2 packets in Wireshark, so I need to put the current generated "sslkey.log" in the (Pre)-Master-Secret log filename. Or is there another way to decrypt TLS packets? |
I try it. However, the TLS packets didn't be decrypted into HTTP/2 packets. I think the reason is that the cipher suite is TLS_AES_256_GCM_SHA384, as shown in the figure. It needs a session key instead of a private key like free5GC. But I didn't find anything about the session key (e.g. sslkey.log). Please tell me if you have any suggestions. Thanks!! |
Here is a perfect article about to how to decrypt TLS traffic - https://support.citrix.com/article/CTX135889/how-to-export-and-use-ssl-session-keys-to-decrypt-ssl-traces-without-sharing-the-ssl-private-key Hope it helps |
I have modified nrf.yaml as follows, and then the NRF produces the following log
[sbi] INFO: nghttp2_server() [https://172.22.0.12]:7777
. I would like to know how to change the configuration of other NFs because currently, none of my NFs can register with the NRF.Thank you!
The text was updated successfully, but these errors were encountered: