Nginx-ru mailing list archive (nginx-ru@sysoev.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: https прокси
- To: nginx-ru@xxxxxxxxx
- Subject: Re: https прокси
- From: "maty" <nginx-forum@xxxxxxxx>
- Date: Fri, 17 Sep 2010 19:22:34 -0400
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=mickey.jlkhosting.com; s=x; h=Sender:From:References:In-Reply-To:Message-ID:Content-Transfer-Encoding:Content-Type:Subject:To:Date; bh=ryBtgTVEJ280ueFPsfh0Qn3TR08bBrO9djsu5DqWDf0=; b=cRKU1GpLAEymD1ZRpu4FtLTYiOaTjUjDu5e+b5OF3FCg6ZDohEdLpeDfjWi3hMiOdibyYs16EqU0H484ZDgR0lA87RML8A1WXxPMwNgeoqRqdLwXBIbIWzY4CDT6Zldv;
- In-reply-to: <20100821063348.GH48332@xxxxxxxxxxxxx>
- References: <20100821063348.GH48332@xxxxxxxxxxxxx>
У меня подобная проблема и рестарт не
помогает. Используя инструкции с этой
страницы http://www.debian-administration.org/articles/618
сгенерил свое CA и сделал самоподписный
сертификат. CN: *.amazonaws.com
Система для тестов, не удивляйтесь
такому конфигу:
worker_processes 1;
error_log logs/error.log;
events {
worker_connections 1024;
}
http {
upstream frontends {
server 127.0.0.1:4114 weight=20;
server 127.0.0.1:4224 weight=1;
}
include mime.types;
default_type application/octet-stream;
keepalive_timeout 65;
proxy_read_timeout 200;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
gzip on;
gzip_min_length 1000;
gzip_proxied any;
gzip_types text/plain text/css text/xml
application/x-javascript application/xml
application/atom+xml text/javascript;
proxy_next_upstream error;
server {
listen 4444;
server_name localhost servername.amazonaws.com;
location / {
root html;
index index.html index.htm;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
server {
listen 443;
server_name servername.amazonaws.com;
ssl on;
ssl_certificate /usr/local/nginx/conf/newcert.pem;
ssl_certificate_key /usr/local/nginx/conf/newkey.nopass.pem;
access_log logs/ssl_access.log;
error_log logs/ssl_error.log debug;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
location / {
root html;
index index.html index.htm;
}
}
}
FF3 при доступе к https://amazonaws.com:4444 выдает:
SSL received a record that exceeded the maximum permissible length.
(Error code: ssl_error_rx_record_too_long)
В простом access логе пишет такую фигню:
"\x16\x03\x01\x00?\x01\x00\x00?\x03\x01L???&?z=\x0F?" 400 173 "-" "-"
в logs/ssl_access.log и error_log logs/ssl_error.log не пишет
ничего
Posted at Nginx Forum:
http://forum.nginx.org/read.php?21,121698,131584#msg-131584
_______________________________________________
nginx-ru mailing list
nginx-ru@xxxxxxxxx
http://nginx.org/mailman/listinfo/nginx-ru
|
