Poška

Yes, we did. All of them exhibit the `bad hello` error logs every second.

Our cluster reports it's own health as OK, replication between primaries and replicas works well, and so does redirection, which leads me to believe that our TLS setup is correct...

@MeirShpilraien yes it is.

@MeirShpilraien Here is a minimum reproduction that shows the failure under Ubuntu 20.04: * Download Redis Stack 6.2.2-v4 and extract it. * Create a testing cluster using this guide: https://redis.io/docs/manual/scaling/#creating-and-using-a-redis-cluster...

@MeirShpilraien I think the "port" and "tls-port" cannot have the same value, at least according to the reference "redis.conf" file for version 6.2 - the file says to disable the...

@MeirShpilraien as outlined in my provided redis.conf in my reproduction instructions, "port" is set to 0. That still triggers the issue.

@MeirShpilraien thank you for the update! Would an interim solution for securing communication over the internet be using mandatory Mutual TLS? is the timeseries module capable of providing a client...

We've tested out a config with required mutual TLS and disabled auth, and that seems to work for our use case.

An alternative to using a fork is using prebuilt version 1.0.1 binaries: https://github.com/yudai/gotty/releases/tag/v1.0.1

For anyone coming across this problem - what worked for me is using the prebuilt binaries available in the tags section. I used version 1.0.1: https://github.com/yudai/gotty/releases/tag/v1.0.1