We’re having issues with connectivity on FreePBX as a result of our firewall doing SSL inspection. I have the certificate installed into /etc/pki/ca-trust/source/anchors/ but curl is ignoring it and as a result nothing within FreePBX is connecting.
I can get around it by setting curl to NOVERIFY within the freepbx curl function, but then FreePBX complains that it’s been updated and is a potential security issue (which of course it is).
It’s curl that’s the issue, so updates fail as it’s ignoring the ca-trust certificate. Everything that’s done via SSH on the server works (so the certificate itself isn’t the issue - it’s that curl is ignoring it)