证书来自阿里云。
Nginx配置如下
server {
listen 443;
server_name package.oeynet.com;
root /server/wwwroot/package_v1/Public;
ssl on;
ssl_certificate /server/certs/package.oeynet.com/214082784100471.pem;
ssl_certificate_key /server/certs/package.oeynet.com/214082784100471.key;
ssl_session_timeout 5m;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
location / {
index index.html index.htm index.php l.php;
# autoindex on;
if (!-e $request_filename) {
rewrite ^/(.*)$ /index.php/$1 last;
break;
}
}
location ~ \.php(.*)$ {
fastcgi_pass 127.0.0.1:9000;
fastcgi_split_path_info ^((?U).+\.php)(/?.+)$;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param PATH_INFO $fastcgi_path_info;
fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info;
include fastcgi_params;
}
location ~* \.(png|jpeg|jpg|bmp|gif|ico|js|css|scss){
expires 3d;
}
}
server {
listen 80;
server_name package.oeynet.com;
rewrite ^(.*)$ https://$host$1 permanent;
}并且做了80端口的跳转,发现任然是访问不了。查看443端口,发现也listen状态。
最后我本地wget一下,发现下载下来网页了,但是外网访问不了,那我肯定就是防火墙搞的鬼了。
来看看firewalld,再次调试,成功访问。
**粗体** _斜体_ [链接](http://example.com) `代码` - 列表 > 引用。你还可以使用@来通知其他用户。