yum commands not working - connection reset by peer

Issues related to configuring your network
Post Reply
dave94
Posts: 2
Joined: 2022/08/17 02:50:13

yum commands not working - connection reset by peer

Post by dave94 » 2022/08/17 03:34:01

New centos stream 9 distro created as a virtual machine on vmware ESXI 7.0.3 behind a cisco meraki mx80 firewall. Ports allowed are: 22,80,443,3478,4000-65535

no yum commands are working, see below for example

Code: Select all

[root@openvidumaster ~]# [root@openvidumaster ~]# yum update
CentOS Stream 9 - BaseOS                                                  0.0  B/s |   0  B     00:00
Errors during downloading metadata for repository 'baseos':
  - Curl error (35): SSL connect error for https://mirrors.centos.org/metalink?repo=centos-baseos-9-stream&arch=x86_64&protocol=https,http [OpenSSL SSL_connect: Connection reset by peer in connection to mirrors.centos.org:443 ]
Error: Failed to download metadata for repo 'baseos': Cannot prepare internal mirrorlist: Curl error (35): SSL connect error for https://mirrors.centos.org/metalink?repo=centos-baseos-9-stream&arch=x86_64&protocol=https,http [OpenSSL SSL_connect: Connection reset by peer in connection to mirrors.centos.org:443 ]

User avatar
TrevorH
Site Admin
Posts: 33191
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: yum commands not working - connection reset by peer

Post by TrevorH » 2022/08/18 12:18:36

I'd guess your Meraki is fiddling with the SSL connection.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

dave94
Posts: 2
Joined: 2022/08/17 02:50:13

Re: yum commands not working - connection reset by peer

Post by dave94 » 2023/05/26 00:17:40

Found the issue -

Meraki by default has a content filtering mechanism that blocks shareware and freeware websites and mirrors.centos.org is classified as in this content category.

The options are to either add a whitelist exception to the allowlist or take off the shareware and freeware filter.

Post Reply