Configure SSL for RTMPS

Guillermo_Arturo_Rom · May 18, 2010, 1:58pm

Hi!

I’m trying to configure my Amazon instance to use rtmps instead of rtmp.

I already have a wildcard certificate, and did follow these instructions:

How to request an SSL certificate from a certificate authority

However on the VHost file the hostport definition for port 443 was merged with ports 80 and 1935 like this:

<Port>1935,80,443</Port>

So I took out port 443 and defined the hostport like this:

<HostPort>
	<ProcessorCount>4</ProcessorCount>
	<IpAddress>*</IpAddress>
	<Port>443</Port>
	<SSLConfig>
		<KeyStorePath>${com.wowza.wms.context.VHostConfigHome}/path/to/my/ceert/file</KeyStorePath>
		<KeyStorePassword>my_keystore_password</KeyStorePassword>
		<KeyStoreType>JKS</KeyStoreType>
		<SSLProtocol>TLS</SSLProtocol>
		<Algorithm>SunX509</Algorithm>
	</SSLConfig>
	<SocketConfiguration>
		<ReuseAddress>true</ReuseAddress>
		<ReceiveBufferSize>24000</ReceiveBufferSize>
		<SendBufferSize>65000</SendBufferSize>
		<KeepAlive>true</KeepAlive>
		<AcceptorBackLog>100</AcceptorBackLog>
	</SocketConfiguration>
	<HTTPProviders>
		<HTTPProvider>
			<BaseClass>com.wowza.wms.http.HTTPClientAccessPolicy</BaseClass>
			<RequestFilters>*clientaccesspolicy.xml</RequestFilters>
			<AuthenticationMethod>none</AuthenticationMethod>
		</HTTPProvider>
		<HTTPProvider>
			<BaseClass>com.wowza.wms.http.HTTPCrossdomain</BaseClass>
			<RequestFilters>*crossdomain.xml</RequestFilters>
			<AuthenticationMethod>none</AuthenticationMethod>
		</HTTPProvider>
		<HTTPProvider>
			<BaseClass>com.wowza.wms.http.HTTPServerVersion</BaseClass>
			<RequestFilters>*</RequestFilters>
			<AuthenticationMethod>none</AuthenticationMethod>
		</HTTPProvider>
	</HTTPProviders>
</HostPort>

The Vhost file I’m modyfing is the “root” one (i.e. the one at the conf folder in the installation directory) But I’m using 3 Vhost environments and just want to use SSL for one of them for now.

So… when I attempt to do a rtmps connection to the server, nothing happens. It’s like it’s not even connecting since I get nothing in the log files.

In the application file Im using the RequireSecureConnection module to enforce the use of at least rtmpe.

Could someone help me out here?

Richard_Lanham · May 18, 2010, 11:30pm

As you indicate, you will have to do this in the VHost you are going to use RTMPS with. If you want to use it in each VHost it has to be a different IP/Port combination in each.

As far as I know, RTMPE is comparable security, and I know it just works.

Richard

Charlie_Good · October 18, 2012, 3:42pm

I believe the problem above was with SSL certificate conversion to a form for Java (JKS - Java Key Store). Are you trying to use an exisitng certificate? It can be tricky to convert.

Charlie

Scott_Moore · October 18, 2012, 6:33pm

Was this issue ever resolved? It seems very close to the same issue I’m having with Wowza 3.1.0 (EC2 instance).

Regards,

Scott

Topic		Replies	Views
Configure a host port to use the certificate Wowza ClearCaster Pro	3	5862	August 11, 2020
Configuring RTMPS Wowza Streaming Engine	6	3311	May 28, 2014
SSL setup and vhost.xml Wowza Streaming Engine ssl	5	3069	October 10, 2023
Issue with RTMPS Wowza Streaming Engine	2	2166	May 30, 2014
Enabling RTMPS with Streamlock streaming using Amazon S3 video and Wowza Wowza Streaming Engine	1	2279	December 4, 2014

Configure SSL for RTMPS

Related topics