Was just checking out the Candid UI on https://a4gq6-oaaaa-aaaab-qaa4q-cai.icp0.io/ and ran into this
ic0.app of the same canister works fine https://a4gq6-oaaaa-aaaab-qaa4q-cai.ic0.app/
Ah, now getting something more specific on a different browser.
An error occurred during a connection to a4gq6-oaaaa-aaaab-qaa4q-cai.icp0.io. SSL received a record that exceeded the maximum permissible length.
So the TLS handshake isn’t succeeding. Could this be the result of the domain being added to an active block/blacklist?
1 Like
Hey @icme,
unfortunately, I cannot reproduce your issue. I doubt that it is because of some active block/blacklist as that usually happens at the DNS-level.
What happens when you curl the site:
curl -sv https://a4gq6-oaaaa-aaaab-qaa4q-cai.icp0.io/
% curl -sv https://a4gq6-oaaaa-aaaab-qaa4q-cai.icp0.io/
* Trying 145.40.67.162:443...
* Connected to a4gq6-oaaaa-aaaab-qaa4q-cai.icp0.io (145.40.67.162) port 443
* ALPN: curl offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
* CAfile: /etc/ssl/cert.pem
* CApath: none
* LibreSSL/3.3.6: error:1404B42E:SSL routines:ST_CONNECT:tlsv1 alert protocol version
* Closing connection
So a TLS mismatch?
Tried again this morning and am now able to access icp0.io.
Not sure what might have changed between last Friday and today 