Unable to make http2 requests to an Apache Server, though the server sends "Upgrade:h2" in response headers
I have enabled mod_http2 for the Apache Web Server, and made the necessary changes in the conf, still any request made from a browser to the server follows http/1.1 Protocol
The server sends a Upgrade:h2 header field but the browser still continues to make http/1.1 requests.
How can i make a h2 request from Mozilla/Chrome? I'm using Mozilla Firefox 48.0
Solution
The HTTP/2 standard imposes some extra requirements on https, no cipher from a specified black list may be used.
An acceptable Apache SSL configuration regarding this is:
SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK
SSLProtocol All -SSLv2 -SSLv3
This needs to be changed in the httpd config file and NS_ERROR_NET_INADEQUATE_SECURITY should not occur after httpd restart.
- How does a Node.js "server" compare with Nginx or Apache servers?
- How to solve "invoke-rc.d: policy-rc.d denied execution of start." when building a container Ubuntu 14.04 and installing apache2?
- PHP page in the wwwroot folder
- htaccess remove trailing slash on root directory redirecting too many times
- How do I change the root directory of an Apache server?
- Why is Xdebug not working with XAMPP, even though it says it is installed in Terminal?
- Apache won't load php_curl.dll
- Cannot loadExtension in SQLite3 module, PHP
- Netbeans 8.0.2 The module has not been deployed
- .htaccess block access by checking partial HTTP header name and visitor IP as conditions
- Apache 2.4.9 Does Not Respect PidFile Directive
- Better way to test .htaccess file
- .htaccess password protected folder goes to 404 page
- nginx : Its Multithreaded but uses multiple processes?
- How to enable local network users to access my WAMP sites?
- Apache Tomcat 9 unable to access manager webapp
- apache mod_rewrite is not working or not enabled
- Why does Jenkins complain that my reverse proxy setup is broken?
- Tomcat shutdown VERY slow after calling shutdown.sh?
- I want to hide json file from public access. How do I do that?
- How can I get mod_rewrite and mod_alias to work together?
- Apache: Restrict access to specific source IP inside virtual host
- SSL peer certificate or SSH remote key was not OK
- How do I configure a Tilde Server on OpenBSD httpd?
- apache and php in seperate containers on ubuntu
- OCI8 working with the command line but not on apache
- Name duplicates previous WSGI daemon definition
- Certbot Apache error "Name duplicates previous WSGI daemon definition."
- Apache: difference between "Header always set" and "Header set"?
- Setting up a local dev environment for HTML Javascript