我的 HTTPS (SSL/TLS) nginx 配置超时
My HTTPS (SSL/TLS) nginx configuration give me timeout
我正在尝试为我的域配置 HTTPS 协议 https://www.clarinaceramics.com/
为此,我使用了 certbot 并为我的 server_names 生成了一个证书。问题是每次我尝试通过 https 访问我的网站时都会收到 ERR_CONNECTION_TIMED_OUT 错误。我认为这是防火墙配置错误,但我没有看到在哪里。
这是我的 nginx 配置:
server {
server_name 51.210.109.195 clarinaceramics.com www.clarinaceramics.com;
root /var/www/com.clarinaceramics/clarinaceramics/client/build;
index index.html index.htm;
location / {
try_files $uri /index.html =404;
}
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/clarinaceramics.com-0001/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/clarinaceramics.com-0001/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}
这是我的 wfc 配置:
To Action From
-- ------ ----
9813 ALLOW IN Anywhere
80 ALLOW IN Anywhere
443 ALLOW IN Anywhere
80/tcp ALLOW IN Anywhere
443/tcp ALLOW IN Anywhere
22/tcp ALLOW IN Anywhere
22 ALLOW IN Anywhere
9813 (v6) ALLOW IN Anywhere (v6)
80 (v6) ALLOW IN Anywhere (v6)
443 (v6) ALLOW IN Anywhere (v6)
80/tcp (v6) ALLOW IN Anywhere (v6)
443/tcp (v6) ALLOW IN Anywhere (v6)
22/tcp (v6) ALLOW IN Anywhere (v6)
22 (v6) ALLOW IN Anywhere (v6)
你有什么线索吗?我已经在这个问题上过了 2 周,但仍无法解决它,准确地说,我不是 devOps ;)
非常感谢!
最后,经过一番研究,我测试了我的443端口,它没有打开。然而,我的 ufw 配置为授权 SSL 请求。
经过挖掘,我发现 OVH 在客户 space 中提供了一个防火墙,它阻止了 443 个请求。
我正在尝试为我的域配置 HTTPS 协议 https://www.clarinaceramics.com/
为此,我使用了 certbot 并为我的 server_names 生成了一个证书。问题是每次我尝试通过 https 访问我的网站时都会收到 ERR_CONNECTION_TIMED_OUT 错误。我认为这是防火墙配置错误,但我没有看到在哪里。
这是我的 nginx 配置:
server {
server_name 51.210.109.195 clarinaceramics.com www.clarinaceramics.com;
root /var/www/com.clarinaceramics/clarinaceramics/client/build;
index index.html index.htm;
location / {
try_files $uri /index.html =404;
}
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/clarinaceramics.com-0001/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/clarinaceramics.com-0001/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}
这是我的 wfc 配置:
To Action From
-- ------ ----
9813 ALLOW IN Anywhere
80 ALLOW IN Anywhere
443 ALLOW IN Anywhere
80/tcp ALLOW IN Anywhere
443/tcp ALLOW IN Anywhere
22/tcp ALLOW IN Anywhere
22 ALLOW IN Anywhere
9813 (v6) ALLOW IN Anywhere (v6)
80 (v6) ALLOW IN Anywhere (v6)
443 (v6) ALLOW IN Anywhere (v6)
80/tcp (v6) ALLOW IN Anywhere (v6)
443/tcp (v6) ALLOW IN Anywhere (v6)
22/tcp (v6) ALLOW IN Anywhere (v6)
22 (v6) ALLOW IN Anywhere (v6)
你有什么线索吗?我已经在这个问题上过了 2 周,但仍无法解决它,准确地说,我不是 devOps ;)
非常感谢!
最后,经过一番研究,我测试了我的443端口,它没有打开。然而,我的 ufw 配置为授权 SSL 请求。
经过挖掘,我发现 OVH 在客户 space 中提供了一个防火墙,它阻止了 443 个请求。