SSL connection timeout

Good evening, I have a problem with docker using wireguard. I have a local project, as well as wireguard, up to some time there was no problem. But I have moved to another server with wireguard installed and go online through the remote server.

Now, when I try to start the project in docker, I get either freeze or “SSL connection timeout” error. Here is the full error text

Creating funeral_api-phpi-cli_run … done Installing dependencies from lock file (including require-dev)
Verifying lock file contents can be installed on current platform.
In CurlDownloader.php line 365:
curl error 28 while downloading
SSL connection timeout

Or I get another problem, the script just freezes at this point.

Step 2/7 : RUN apk add --no-cache libzip-dev icu-dev postgresql-dev bash coreutils tzdata && docker-php-
ext-install zip && docker-php-ext-configure intl && docker-php-ext-install intl && docker-php-ext-configure
pgsql -with-pgsql=/usr/local/pgsql && docker-php-ext-install pdo_pgsql
—> Running in 82e20492676e fetch

If I disable wireguard, the project runs without any problems.

I was advised to change mtu value for wireguard and also tried this tip

But nothing helped me.

How can I solve the problem and what caused it?

On the local
Ubuntu 20.04 Docker 20.10.21 Wireguard v1.0.20200513 (default settings)

On the server
Ubuntu 20.04
Wireguard v1.0.20200513 server

The problem was solved by increasing mtu for wireguard, but only on the server.
I increased mtu from 1420 to 1500 and everything worked.
I have not changed any settings on the local machine.


HI, I had the same issue installing any app on Nextcloud, since I got this error:

❯ sudo docker exec -it nextcloud occ app:install notes
Error: cURL error 28: SSL connection timeout (see

once I’ve set the MTU on wireguard server to 1.500 I’ve fixed the issue. Thanks for your sharing!

Glad for you. Will you recommend anything else for proper working?

If the error is in the SSH Config go into /etc/ssh/sshd_config and change the gracetime. Also you have to do this in fail2ban, if it is installed.

The GraceTime give the parameter for a Login TimeToLife where nothing happened from the user.

Welcome to the forum, and thanks for trying to help others! Although the issue was solved and it was about SSL, not SSH :slight_smile:

1 Like

Oh, my fault. I’m sorry! (^^)

thank you