You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Certificates cannot be issued by CAs to internal IP addresses (192.168.x.x) thus, even if you own your domain, have a valid certificate for it and your MQTT broker uses it, but your router does not support NAT traversal, when accessing the broker from the same internal network via its IP address, TLS will fail as the CN field in the certificate will not match the IP address.
paho-mqtt allows TLS to skip CN verification —client.set_tls_insecure(True)—. A command line option may be added (say -ti/--tls_insecure) enabling this feature.
The text was updated successfully, but these errors were encountered:
Certificates cannot be issued by CAs to internal IP addresses (192.168.x.x) thus, even if you own your domain, have a valid certificate for it and your MQTT broker uses it, but your router does not support NAT traversal, when accessing the broker from the same internal network via its IP address, TLS will fail as the CN field in the certificate will not match the IP address.
paho-mqtt allows TLS to skip CN verification —
client.set_tls_insecure(True)
—. A command line option may be added (say-ti
/--tls_insecure
) enabling this feature.The text was updated successfully, but these errors were encountered: