UNKNOWNHOST Exception

Renuka_Medina · June 20, 2013, 5:10am

Hi All,

We are trying post few messages to one trading partner using https. Till yesterday connection was working fine. But after adding the client’s host name in proxy by pass settings under IS Administrator, it started throwing unknown host exception. Even after removing the host from by pass proxy also, its not working.

Two servers are in cluster and this change is done in only one server, but not able to send requests from either of the servers. The same connection working fine in our dev environment.

We have restarted the servers in cluster, but no use.

from Developer when using pub.client.http service, its giving this error.

com.wm.app.b2b.server.ServiceException: java.net.UnknownHostException: test.apac.excel.com.

When I increase the log level, the below log is appeared in the server log. We didnt change any client and server certificates recently. The same setup is used in our dev environement and able to send requests to trading partner.

[4513]2013-06-19 07:23:22 CDT [ISC.0038.0002D] → HTTP/1.1 403 Service Error
[4512]2013-06-19 07:23:22 CDT [ISC.0064.0015T] Opening Socket https://test.apac.excel.com:4447/inbound
[4511]2013-06-19 07:23:22 CDT [ISC.0064.0029T] Could not open Socket connection to proxy:4200=web.us.proxy.com Exception:iaik.security.ssl.SSLException: Server certificate rejected by ChainVerifier
[4510]2013-06-19 07:23:22 CDT [ISC.0064.0017T] Proxy Header <–Connection established
[4509]2013-06-19 07:23:22 CDT [ISC.0038.0002D] ← Proxy-Connection: Keep-Alive
[4508]2013-06-19 07:23:22 CDT [ISC.0038.0002D] ← Connection: Keep-Alive
[4507]2013-06-19 07:23:22 CDT [ISC.0038.0002D] ← Via: 1.1 MSUSWAYZ003
[4506]2013-06-19 07:23:22 CDT [ISC.0040.0001D] HTTP/1.1 200
[4505]2013-06-19 07:23:21 CDT [ISC.0038.0002D] → Content-type: text/plain
[4504]2013-06-19 07:23:21 CDT [ISC.0038.0002D] → Proxy-Authorization: Basic cHM1NTQxNDk6am1Lb29sITQ1
[4503]2013-06-19 07:23:21 CDT [ISC.0038.0002D] → Host: test.apac.excel.com:4447
[4502]2013-06-19 07:23:21 CDT [ISC.0038.0002D] → Accept: image/gif, /
[4501]2013-06-19 07:23:21 CDT [ISC.0038.0002D] → User-Agent: Mozilla/4.0 [en] (WinNT; I)
[4500]2013-06-19 07:23:21 CDT [ISC.0038.0002D] → CONNECT test.apac.excel.com:4447 HTTP/1.1
[4499]2013-06-19 07:23:21 CDT [ISC.0064.0014T] Opening Socket https://test.apac.excel.com:4447/inbound proxy:4200=web.us.proxy.com

Please help to resolve the issue.

Thanks,
Renuka

Vikas_Gupta · June 20, 2013, 5:36pm

Hi Renuka,
I am not sure about your configuration what went wrong but the error you posted i.e.

Exception:iaik.security.ssl.SSLException: Server certificate rejected by ChainVerifier

It comes when during SSL handshake either the passed certificate is incorrect or it does not contain the complete chain of the certificates.