SSL Protocol error on AWS Ubuntu Instance

1
votes

I have an EC2 Ubuntu Instance running on AWS.

I have created a SSL certificate for my domain using AWS Certificate Manager.

i have created the needed hosted zone with the needed records for my domain.

I have created a Load Balancer with listeners for both protocols HTTP and HTTPS.

Now, I can access the site using the public IP from the AWS Instance and also using my domain name. The issue is when trying to access the site using https.

There appears an error page: ERR_SSL_PROTOCOL_ERROR

I don't know what is wrong in my approach to get a working site running with a SSL certificate.

I guess it can be due to the Ubuntu Apache2 configuration, but not sure.

I would appreciate a checklist of things I should verify in AWS (Certificate Manager, EC2 Instance, Load Balancer, Route 53, etc.) or in the configuration of the Ubuntu Apache2 server.

EDIT:

This is the security group inbound rules that are in use with the ELB

enter image description here

1
amazon-web-servicesssl
Have you checked ssllabs.com/ssltest/analyze.html? It will often provide more detailed reporting.Rodrigo M
I assume you have Apache configured only for http and not https? And your domain is pointing to the ELB and not the instance itself?Rodrigo M
@RodrigoM, using this tool, the result is Assessment failed: No secure protocols supportedmvasco
As another suggestion, your ELB security group would normally only allow http/s to pass through. Ssh, smtp, udp and explict tcp are not normally used in the ELB security group. I'm sure you are testing stuff, but make sure to review.Rodrigo M

1 Answers

1
votes

I would double check security group on the ELB, confirm domain DNS. It's something on the ELB side since you are not connecting there.