Secure channel support error

Step 1: Obtain the scatter point details link of the error report
Step 2: Open the scatter point details link and obtain the corresponding captured packets

Step 3: Packet capture analysis (security channel Error corresponds to the analysis of TLS protocol-related packet information in the captured packets)
Filter rules:

ip.addr==target Hostip address&&ssl (filter only packets containing target Hostip and related ssl handshake)

After the packet capture client sends the Client Hello message, the 111.12.152.62 server responds with ACK, and then continues to respond with an Alert message: (Level: Fatal, Description: Handshake Failure). This message indicates Error level: fatal, Error description: handshake failure. So we conclude that the 111.12.152.62 server responded to Handshake Failure before the Server Hello phase, causing the SSL Handshake Time to fail.
Step 4: Instant Testing result (reproduction)

First, use the Probe ID: 8937387 that reported the error to specify hosts: 111.12.152.62 moa.cdn-static.abchina.com to reproduce Instant Testing and still report the error "Secure channel support error". The packet capture is still: Level: Fatal, Description: Handshake Failure

2. 8937387Probe can access other Host normally.

3. 8937387Probe test access www.qq.com is normal

4. When 111.12.152.62Host was accessed in the last day and the normal Probe was reproduced, it was found that "security channel support error" was reported.

Step 5: Solution
The customer needs to confirm: What changes did the 111.12.152.62 server make during this time period that caused the SSL Handshake Time to fail.