h
Cc: Tom Lane ; pgsql-general@lists.postgresql.org
Subject: Re: Resolving host to IP address
EXTERNAL: Do not click links or open attachments if you do not recognize the
sender.
Hi Sebastien:
On Mon, 12 Sept 2022 at 16:40, Sebastien Flaesch
wrote:
> I think I got it: PostgreSQL should
Hi Sebastien:
On Mon, 12 Sept 2022 at 16:40, Sebastien Flaesch
wrote:
> I think I got it: PostgreSQL should listen to the real, non-loopback network
> interface.
Not really. Your problem is not where postgres listens, but where your
host line resolves, the 127.0.1.1 stuff, plus your rules.
I
Thank you all for your comments.
I think I got it: PostgreSQL should listen to the real, non-loopback network
interface.
Just for info (local dev config, not prod):
sf@toro:/opt3/dbs/pgs/14.1-openssl/data$ grep listen_addresses postgresql.conf
listen_addresses = 'localhost,toro.strasbourg.4js.
A little off topic but may be useful for someone:
On Mon, 12 Sept 2022 at 16:11, Tom Lane wrote:
...
> Linux doesn't seem to show its routing of the loopback domain in netstat
> output, but it's probably much like what macOS shows explicitly:
Among other things it can be shown by "ip route show"
On Mon, 12 Sept 2022 at 14:23, Sebastien Flaesch
wrote:
> I managed to establish the secure connection, by using
> DN=root.strasbourg.4js.com for the self-signed root CA, and
> DN=toro.strasbourg.4js.com for the server certificate, DN=pgsuser for the
> client certificate.
> I have created my cl
Sebastien Flaesch writes:
> $ psql
> 'postgresql://toro.strasbourg.4js.com:5437/test1?user=pgsuser&sslmode=verify-ca&sslrootcert=./root.crt&sslcert=./client.crt&sslkey=./client.key'
> psql: error: connection to server at "toro.strasbourg.4js.com" (127.0.1.1),
> port 5437 failed: FATAL: no pg_hb
Hi!
I am playing with PostgreSQL TLS/SSL connections using OpenSSL, with server and
client certificates.
I managed to establish the secure connection, by using
DN=root.strasbourg.4js.com for the self-signed root CA, and
DN=toro.strasbourg.4js.com for the server certificate, DN=pgsuser for the