Security NGINX SSL仅针对特定域存在错误ERR_SSL_VERSION_或_CIPHER_不匹配
不幸的是,使用cloudflare获得了Security NGINX SSL仅针对特定域存在错误ERR_SSL_VERSION_或_CIPHER_不匹配,security,ssl,nginx,ssl-certificate,cloudflare,Security,Ssl,Nginx,Ssl Certificate,Cloudflare,不幸的是,使用cloudflare获得了错误\u SSL\u版本\u或\u密码\u不匹配 这是一个类似以下内容的节目: Unsupported protocol The client and server don't support a common SSL protocol version or cipher suite. 我正在使用多域假定example1.com和example2.com。 example1和example2具有相同的配置,当然除了server\u name及其cert/
错误\u SSL\u版本\u或\u密码\u不匹配
这是一个类似以下内容的节目:
Unsupported protocol
The client and server don't support a common SSL protocol version or cipher suite.
我正在使用多域假定example1.com
和example2.com
。
example1
和example2
具有相同的配置,当然除了server\u name
及其cert/private
pem之外
example1
工作做得很好。
但是example2
显示了ERR\u SSL\u VERSION\u或\u CIPHER\u不匹配
我所做的:
sslshopper
检查证书,但似乎只有在example2
中才出现了故障...
http {
...
# SSL Settings
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:10m;
ssl_ciphers TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256;
...
include /etc/nginx/cloudflare.inc;
include /etc/nginx/conf.d/*.conf;
}
示例1.conf
server {
listen 443 ssl;
server_name example1.com www.example1.conf;
ssl_certificate /etc/pki/tls/certs/example1.crt;
ssl_certificate_key /etc/pki/tls/private/example1.crt;
root /usr/share/nginx/html/example1;
index index.html;
location / {
try_files $uri $uri/ /index.html;
}
}