【发布时间】:2020-01-11 14:31:00
【问题描述】:
我在 Nginx 上设置 ssl 服务器,将 proxy_pass 设置为 apache。
代码由 certbot 重新创建,但无法正常工作。我不知道出了什么问题。
我也尝试将 $host 替换为 $server_name 和论坛中的其他建议,但没有成功。
server {
server_name biofit.blog www.biofit.blog;
listen [::]:443 ssl ipv6only=on; # managed by Certbot
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/gekko.winsum.ws/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/gekko.winsum.ws/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
location / {
proxy_buffers 8 32k;
proxy_buffer_size 64k;
proxy_pass http://biofit.blog:81;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-NginX-Proxy true;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_read_timeout 86400s;
proxy_send_timeout 86400s;
}
}
server {
if ($host = www.biofit.blog) {
return 301 https://$host$request_uri;
} # managed by Certbot
if ($host = biofit.blog) {
return 301 https://$host$request_uri;
} # managed by Certbot
listen 80;
listen [::]:80;
server_name biofit.blog www.biofit.blog;
return 404; # managed by Certbot
}
ssl 的预期输出应该传递给在端口 81 上运行的 apache,但不是: ERR_TOO_MANY_REDIRECTS
【问题讨论】:
-
curl -I biofit.blog HTTP/1.1 301 永久移动服务器:nginx/1.10.3 日期:星期一,2019 年 9 月 9 日 20:03:40 GMT 内容类型:文本/html 内容长度: 185 连接: keep-alive 位置: biofit.blog
-
似乎重定向来自 PHP。你应该检查你的申请。