SRX

Hello,

I'm experiencing an issue with SSL Proxy Reverse on my Juniper SRX device where I'm setting up SSL inspection for inbound connections. The error message I'm seeing is:

OpenSSL: error:1409C041:SSL routines:ssl3_setup_read_buffer:malloc failure

This appears to happen when SSL traffic volume is high, but I'm not sure what's causing the memory allocation failure.

System & Configuration Details:

• Device: Juniper SRX 345
• JunOS Version: junos 21.2R3-S3.5]
• SSL Proxy Mode: Reverse Proxy (for inbound SSL traffic)

packet drop with : SSL_PROXY_SSL_SESSION_DROP 

------------------------------
bahram peymani
------------------------------

At the risk of pointing to the obvious, you're not running out of memory, are you?

Take a look at this: https://supportportal.juniper.net/s/article/SRX-Some-security-features-fail-to-work-properly-with-low-free-global-data-SHM?language=en_US

That article isn't mentioning SSL specifically, and in fact the problem they do describe should be fixed in your JunOS version, but there are a few commands listed there that may reveal some interesting information for you. This reminds of another article related to memory allocation for processes, but I can't find it right now.