Configure SSL for RTMPS

Guillermo_Arturo_Rom · May 18, 2010, 1:58pm

Hi!

I’m trying to configure my Amazon instance to use rtmps instead of rtmp.

I already have a wildcard certificate, and did follow these instructions:

How to request an SSL certificate from a certificate authority

However on the VHost file the hostport definition for port 443 was merged with ports 80 and 1935 like this:

<Port>1935,80,443</Port>

So I took out port 443 and defined the hostport like this:

<HostPort>
	<ProcessorCount>4</ProcessorCount>
	<IpAddress>*</IpAddress>
	<Port>443</Port>
	<SSLConfig>
		<KeyStorePath>${com.wowza.wms.context.VHostConfigHome}/path/to/my/ceert/file</KeyStorePath>
		<KeyStorePassword>my_keystore_password</KeyStorePassword>
		<KeyStoreType>JKS</KeyStoreType>
		<SSLProtocol>TLS</SSLProtocol>
		<Algorithm>SunX509</Algorithm>
	</SSLConfig>
	<SocketConfiguration>
		<ReuseAddress>true</ReuseAddress>
		<ReceiveBufferSize>24000</ReceiveBufferSize>
		<SendBufferSize>65000</SendBufferSize>
		<KeepAlive>true</KeepAlive>
		<AcceptorBackLog>100</AcceptorBackLog>
	</SocketConfiguration>
	<HTTPProviders>
		<HTTPProvider>
			<BaseClass>com.wowza.wms.http.HTTPClientAccessPolicy</BaseClass>
			<RequestFilters>*clientaccesspolicy.xml</RequestFilters>
			<AuthenticationMethod>none</AuthenticationMethod>
		</HTTPProvider>
		<HTTPProvider>
			<BaseClass>com.wowza.wms.http.HTTPCrossdomain</BaseClass>
			<RequestFilters>*crossdomain.xml</RequestFilters>
			<AuthenticationMethod>none</AuthenticationMethod>
		</HTTPProvider>
		<HTTPProvider>
			<BaseClass>com.wowza.wms.http.HTTPServerVersion</BaseClass>
			<RequestFilters>*</RequestFilters>
			<AuthenticationMethod>none</AuthenticationMethod>
		</HTTPProvider>
	</HTTPProviders>
</HostPort>

The Vhost file I’m modyfing is the “root” one (i.e. the one at the conf folder in the installation directory) But I’m using 3 Vhost environments and just want to use SSL for one of them for now.

So… when I attempt to do a rtmps connection to the server, nothing happens. It’s like it’s not even connecting since I get nothing in the log files.

In the application file Im using the RequireSecureConnection module to enforce the use of at least rtmpe.

Could someone help me out here?

Richard_Lanham · May 18, 2010, 11:30pm

As you indicate, you will have to do this in the VHost you are going to use RTMPS with. If you want to use it in each VHost it has to be a different IP/Port combination in each.

As far as I know, RTMPE is comparable security, and I know it just works.

Richard

Charlie_Good · October 18, 2012, 3:42pm

I believe the problem above was with SSL certificate conversion to a form for Java (JKS - Java Key Store). Are you trying to use an exisitng certificate? It can be tricky to convert.

Charlie

Scott_Moore · October 18, 2012, 6:33pm

Was this issue ever resolved? It seems very close to the same issue I’m having with Wowza 3.1.0 (EC2 instance).

Regards,

Scott

Topic		Replies	Views
Issue with RTMPS Wowza Streaming Engine	2	2173	May 30, 2014
Configuring RTMPS Wowza Streaming Engine	6	3315	May 28, 2014
RTMPS Configuration Wowza Streaming Engine	4	4213	August 14, 2014
RTMPS and Wowza Wowza Streaming Engine	5	6456	July 18, 2019
RTMPS and RTMPE on the same port and IP Address Wowza Streaming Engine	3	2662	June 20, 2013

Configure SSL for RTMPS

Related topics