I tested it on a CentOS7 machine and on I actually could use only one listen port with ssl, so there must be something else with your setup. If you are on CentOS or any other RHEL based os, is selinux enabled or at least in permissive mode ? Check with ?sestatus?, test with ?setenforce permissive?. Paul Van: Icecast <icecast-bounces at xiph.org> Namens zer0___ at hotmail.com Verzonden: Friday, 8 January 2021 14:49 Aan: Icecast streaming server user discussions <icecast at xiph.org> Onderwerp: Re: [Icecast] Icecast and HTTPS I will test this, maybe it must at least have one port with ssl disabled. You could do a bind for port 8000 on 127.0.0.1 Then functionally you only have port 8443 on public network. You can also block this port in your firewall. Paul Op 8 jan. 2021 14:31 schreef Wang <Wang at pc-factory.at<mailto:Wang at pc-factory.at>>:> That should be easy, just use only one <listen-socket> section with ssl enabled: > > <listen-socket> > <port>8000</port> > <ssl>1</ssl> > </listen-socket>Thought so too. But in this case port 8000 does not work. With this: <listen-socket><port>8000</port><ssl>1</ssl></listen-socket> <listen-socket><port>8443</port><ssl>1</ssl></listen-socket> neither port 8000 nor port 8443 work. What might I be missing here?> Did you restart (and not only reload) icecast ?Yes, I did.> Paul_______________________________________________ Icecast mailing list Icecast at xiph.org<mailto:Icecast at xiph.org> lists.xiph.org/mailman/listinfo/icecast -------------- next part -------------- An HTML attachment was scrubbed... URL: <lists.xiph.org/pipermail/icecast/attachments/20210109/7543dc5c/attachment.htm>
Hello Paul, I am running Debian 10. I also tested: port 8000 without ssl, but ports 8443 8444 8445 8846 with ssl (all of them at the same time). It worked. It seems there has to be one non-ssl port running ...> I tested it on a CentOS7 machine and on I actually could use only one > listen port with ssl, so there must be something else with your setup. > > If you are on CentOS or any other RHEL based os, is selinux enabled or at > least in permissive mode ? > > Check with ?sestatus?, test with ?setenforce permissive?. > > Paul > >> Van: Icecast <icecast-bounces at xiph.org> Namens zer0___ at hotmail.com >> Verzonden: Friday, 8 January 2021 14:49 >> Aan: Icecast streaming server user discussions <icecast at xiph.org> >> Onderwerp: Re: [Icecast] Icecast and HTTPS >> >> I will test this, maybe it must at least have one port with ssl disabled. >> >> You could do a bind for port 8000 on 127.0.0.1 >> >> Then functionally you only have port 8443 on public network. >> >> You can also block this port in your firewall. >> >> Paul