z/OS Communcation Server

 

Common TELNET SSL problems

 

Most TELNET SSL problems come into Level 2 with a very generic symptom of “my emulator works fine in BASIC mode but fails to my SECURE port”.  This is not enough information to begin diagnosis.  The following type message is generally all that will be seen in the console log.

 

EZZ6034I TELNET CONN 00002A59 LU **N/A**  CONN DROP  ERR 6002

  IP..PORT: 171.132.114.168..1181                           

 

TELNET will produce additional diagnostic messages (EZZ6035I) for  SSL connection failures if DEBUG (or DEBUG DETAIL)

 is coded in the TELNETPARMS section of the TCPIP profile. 

 

A typical message would look like one of the following:

 

EZZ6035I TELNET DEBUG CLIENT IPADDR..PORT 129.255.16.30..1297 395

  CONN: 00000AA3  LU:           MOD: EZBTTSMT                   

  RCODE: 6002-00  SSL/TLS handshake failed.                     

  PARM1: 00000191 PARM2:          PARM3: GSK_SECURE_SOCKET_INIT

 

EZZ6035I TELNET DEBUG CLIENT IPADDR..PORT 9.24.106.91..1290 747

CONN: 00000032 LU: MOD: EZBTTSMT                               

RCODE: 600E-00 SSL handshake Timed out.                        

PARM1: FFFFFFEA PARM2: 00000000 PARM3: 00000000