php - nginx配置HTTPS出錯

Question

瀏覽器報錯資訊

Nginx設定

Answer 1

你不會是用IP位址直接存取的吧？ 憑證證明的是域名，一定要用憑證綁定的域名來存取。

Answer 2

nginx啟動不報錯？

Answer 3

nginx -t看了沒，還有日誌沒記錄麼

Answer 4

憑證是對網域簽發的，你用ip訪問當然會出現這樣的情況呀，因為找不到IP 對應的憑證啊！

Answer 5

數位憑證的路徑要使用絕對路徑，例如：

    ssl_certificate         /usr/local/nginx/ssl/enginx.net.crt;
    ssl_certificate_key     /usr/local/nginx/ssl/enginx.net.key;

還有server_name不能用127.0.0.1，請使用域名，例如：

    server_name             enginx.net;

以下是我的SSL設定檔：

    ssl                     on;
    ssl_certificate         /usr/local/nginx/ssl/enginx.net.crt;
    ssl_certificate_key     /usr/local/nginx/ssl/enginx.net.key;
    ssl_buffer_size         16k;
    ssl_ciphers             ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384:DES-CBC3-SHA;
    ssl_prefer_server_ciphers   on;
    ssl_protocols           TLSv1 TLSv1.1 TLSv1.2;
    ssl_session_cache       builtin:20480 shared:SSL:10m;
    ssl_session_timeout     1h;
    ssl_stapling            on;
    ssl_session_tickets     on;