TechMali
Knowing is not enough; We must apply. Willing is not enough; We must do. "Bruce Lee"

TLS1.2 slowness

Muhammad Ali Tibco March 11, 2018

We switched over to TLS 1.2 btween two of our integrations and things started to become too slow. We investigated various issues like slow algorithem etc but it turned out to be that new TLS 1.2 add some headers where the length is more then the default length allowed by the network TCP-MSS.

This caused packets to be dropped fixing this value improved the network performance.

Wire shark was use to investigate the TCP dump from both ends.

Tags: , , , , ,

About: Muhammad Ali

I am a Java and Tibco expert. I have Master's degree in software engineering of distributed systems from Royal Institute of technology KTH Stockholm Sweden and I am an expert software engineer and integrator with over a decade of industry experience from Europe, Gulf and Asia regions. I am a strong opensource believer and encourage "sharing as caring" principle.