nginx配置https后,网站出现无法访问情况

96
Godtoy
2017.05.11 13:09* 字数 104

证书来自阿里云。

Nginx配置如下

server {
    listen  443;
    server_name  package.oeynet.com;
    root /server/wwwroot/package_v1/Public;
    ssl on;
    ssl_certificate   /server/certs/package.oeynet.com/214082784100471.pem;
    ssl_certificate_key  /server/certs/package.oeynet.com/214082784100471.key;
    ssl_session_timeout 5m;
    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_prefer_server_ciphers on;
    location / {
            index  index.html index.htm index.php l.php;
#           autoindex  on;
           if (!-e $request_filename) {
              rewrite ^/(.*)$ /index.php/$1 last;
              break;
            }
    }

    location ~ \.php(.*)$ {
        fastcgi_pass   127.0.0.1:9000;
            fastcgi_split_path_info  ^((?U).+\.php)(/?.+)$;
            fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name;
            fastcgi_param  PATH_INFO  $fastcgi_path_info;
            fastcgi_param  PATH_TRANSLATED  $document_root$fastcgi_path_info;
            include        fastcgi_params;
    }
        location ~* \.(png|jpeg|jpg|bmp|gif|ico|js|css|scss){
                expires 3d;
        }

}
server {
   listen 80;
   server_name package.oeynet.com;
   rewrite ^(.*)$  https://$host$1 permanent;
}

并且做了80端口的跳转,发现任然是访问不了。查看443端口,发现也listen状态。

最后我本地wget一下,发现下载下来网页了,但是外网访问不了,那我肯定就是防火墙搞的鬼了。
来看看firewalld,再次调试,成功访问。

image.png
image.png
网络安全