cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Ray2025
Cadet
Cadet
‎08-19-2025 02:44 AM
  • 272 Views

http: TLS handshake error from xxx EOF

I want to know how to resolve this issue. Although it is an info-level message, it generates around 200,000 logs every day, and I have noticed that the IP address does not match the load balancer.

oc -n openshift-machine-config-operator logs machine-config-server-cv46h --tail=20
I0818 06:14:06.720283 1 log.go:194] http: TLS handshake error from xx.xx.xx.76:13236: EOF
I0818 06:14:07.468683 1 log.go:194] http: TLS handshake error from xx.xx.xx.2:17390: EOF
I0818 06:14:08.523342 1 log.go:194] http: TLS handshake error from xx.xx.xx.3:13450: EOF
I0818 06:14:08.936596 1 log.go:194] http: TLS handshake error from xx.xx.xx.75:10678: EOF
I0818 06:14:11.753175 1 log.go:194] http: TLS handshake error from xx.xx.xx.76:13516: EOF
I0818 06:14:12.467949 1 log.go:194] http: TLS handshake error from xx.xx.xx.2:17648: EOF
I0818 06:14:13.531226 1 log.go:194] http: TLS handshake error from xx.xx.xx.3:13708: EOF
I0818 06:14:13.952786 1 log.go:194] http: TLS handshake error from xx.xx.xx.75:10952: EOF
I0818 06:14:16.759814 1 log.go:194] http: TLS handshake error from xx.xx.xx.76:13784: EOF
I0818 06:14:17.492874 1 log.go:194] http: TLS handshake error from xx.xx.xx.2:17906: EOF
I0818 06:14:18.571128 1 log.go:194] http: TLS handshake error from xx.xx.xx.3:13966: EOF
I0818 06:14:18.976756 1 log.go:194] http: TLS handshake error from xx.xx.xx.75:11228: EOF
I0818 06:14:21.783398 1 log.go:194] http: TLS handshake error from xx.xx.xx.76:14066: EOF

 

Labels (1)
Labels
Join the discussion
1 Reply
Chetan_Tiwary_
Community Manager
Community Manager
‎08-22-2025 05:55 PM
  • 270 Views

@Ray2025 seems the error you are seeing in the machine-config-server logs is likely just your load balancer doing a health check. It's using a basic, non-TLS connection to check if the service is up. 

If the source IP address in the log matches your load balancer's IP, you might be able to fix it. Just configure your load balancer to use a TLS connection for its health checks instead of a plain TCP one. This will stop the handshake errors from showing up in your logs. 

oc -n openshift-machine-config-operator logs machine-config-server-<id>

 

0 Kudos
Join the discussion
You must log in to join this conversation.
Red Hat Learning Community

Red Hat

Learning Community

A collaborative learning environment, enabling open source skill development.

Red Hat Inc. Copyright ?2025 Red Hat, Inc. Privacy policy Terms of use