Re: Resolving host to IP address

2022-09-15 Thread Sebastien Flaesch
h Cc: Tom Lane ; pgsql-general@lists.postgresql.org Subject: Re: Resolving host to IP address EXTERNAL: Do not click links or open attachments if you do not recognize the sender. Hi Sebastien: On Mon, 12 Sept 2022 at 16:40, Sebastien Flaesch wrote: > I think I got it: PostgreSQL should

Re: Resolving host to IP address

2022-09-12 Thread Francisco Olarte
Hi Sebastien: On Mon, 12 Sept 2022 at 16:40, Sebastien Flaesch wrote: > I think I got it: PostgreSQL should listen to the real, non-loopback network > interface. Not really. Your problem is not where postgres listens, but where your host line resolves, the 127.0.1.1 stuff, plus your rules. I

Re: Resolving host to IP address

2022-09-12 Thread Sebastien Flaesch
Thank you all for your comments. I think I got it: PostgreSQL should listen to the real, non-loopback network interface. Just for info (local dev config, not prod): sf@toro:/opt3/dbs/pgs/14.1-openssl/data$ grep listen_addresses postgresql.conf listen_addresses = 'localhost,toro.strasbourg.4js.

Re: Resolving host to IP address

2022-09-12 Thread Francisco Olarte
A little off topic but may be useful for someone: On Mon, 12 Sept 2022 at 16:11, Tom Lane wrote: ... > Linux doesn't seem to show its routing of the loopback domain in netstat > output, but it's probably much like what macOS shows explicitly: Among other things it can be shown by "ip route show"

Re: Resolving host to IP address

2022-09-12 Thread Francisco Olarte
On Mon, 12 Sept 2022 at 14:23, Sebastien Flaesch wrote: > I managed to establish the secure connection, by using > DN=root.strasbourg.4js.com for the self-signed root CA, and > DN=toro.strasbourg.4js.com for the server certificate, DN=pgsuser for the > client certificate. > I have created my cl

Re: Resolving host to IP address

2022-09-12 Thread Tom Lane
Sebastien Flaesch writes: > $ psql > 'postgresql://toro.strasbourg.4js.com:5437/test1?user=pgsuser&sslmode=verify-ca&sslrootcert=./root.crt&sslcert=./client.crt&sslkey=./client.key' > psql: error: connection to server at "toro.strasbourg.4js.com" (127.0.1.1), > port 5437 failed: FATAL: no pg_hb

Resolving host to IP address

2022-09-12 Thread Sebastien Flaesch
Hi! I am playing with PostgreSQL TLS/SSL connections using OpenSSL, with server and client certificates. I managed to establish the secure connection, by using DN=root.strasbourg.4js.com for the self-signed root CA, and DN=toro.strasbourg.4js.com for the server certificate, DN=pgsuser for the