证书来自阿里云。
Nginx配置如下
server {listen 443;server_name package.oeynet.com;root /server/wwwroot/package_v1/Public;ssl on;ssl_certificate /server/certs/package.oeynet.com/214082784100471.pem;ssl_certificate_key /server/certs/package.oeynet.com/214082784100471.key;ssl_session_timeout 5m;ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;ssl_protocols TLSv1 TLSv1.1 TLSv1.2;ssl_prefer_server_ciphers on;location / {index index.html index.htm index.php l.php;
# autoindex on;if (!-e $request_filename) {rewrite ^/(.*)$ /index.php/$1 last;break;}}location ~ \.php(.*)$ {fastcgi_pass 127.0.0.1:9000;fastcgi_split_path_info ^((?U).+\.php)(/?.+)$;fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;fastcgi_param PATH_INFO $fastcgi_path_info;fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info;include fastcgi_params;}location ~* \.(png|jpeg|jpg|bmp|gif|ico|js|css|scss){expires 3d;}}
server {listen 80;server_name package.oeynet.com;rewrite ^(.*)$ https://$host$1 permanent;
}
并且做了80端口的跳转,发现任然是访问不了。查看443端口,发现也listen状态。
最后我本地wget一下,发现下载下来网页了,但是外网访问不了,那我肯定就是防火墙搞的鬼了。
来看看firewalld,再次调试,成功访问。