证书来自阿里云。

Nginx配置如下

server {listen  443;server_name  package.oeynet.com;root /server/wwwroot/package_v1/Public;ssl on;ssl_certificate   /server/certs/package.oeynet.com/214082784100471.pem;ssl_certificate_key  /server/certs/package.oeynet.com/214082784100471.key;ssl_session_timeout 5m;ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;ssl_protocols TLSv1 TLSv1.1 TLSv1.2;ssl_prefer_server_ciphers on;location / {index  index.html index.htm index.php l.php;
#           autoindex  on;if (!-e $request_filename) {rewrite ^/(.*)$ /index.php/$1 last;break;}}location ~ \.php(.*)$ {fastcgi_pass   127.0.0.1:9000;fastcgi_split_path_info  ^((?U).+\.php)(/?.+)$;fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name;fastcgi_param  PATH_INFO  $fastcgi_path_info;fastcgi_param  PATH_TRANSLATED  $document_root$fastcgi_path_info;include        fastcgi_params;}location ~* \.(png|jpeg|jpg|bmp|gif|ico|js|css|scss){expires 3d;}}
server {listen 80;server_name package.oeynet.com;rewrite ^(.*)$  https://$host$1 permanent;
}

并且做了80端口的跳转，发现任然是访问不了。查看443端口，发现也listen状态。

最后我本地wget一下，发现下载下来网页了，但是外网访问不了，那我肯定就是防火墙搞的鬼了。
来看看firewalld，再次调试，成功访问。