<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
</head>
<body>
<div dir="auto">Is this on a VPS? They might have and additional firewall on the hosting side you need to adjust.</div>
<div dir="auto"><br>
</div>
<div dir="auto">If this is behind a routwer and you are outside the network make sure to port-forward port 443.</div>
<div dir="auto"><br>
</div>
<div dir="auto"><br>
</div>
<div dir="auto"><br>
</div>
<div id="composer_signature" dir="auto">
<div dir="auto" style="font-size:12px; color:#575757">Sent from my Galaxy</div>
</div>
<div dir="auto"><br>
</div>
<div><br>
</div>
<div><br>
</div>
<div>-------- Original message --------</div>
<div>From: Brian Carey <biscotty666@gmail.com> </div>
<div>Date: 9/4/22 19:55 (GMT-05:00) </div>
<div>To: nginx@nginx.org </div>
<div>Subject: Re: Trouble setting up SSL </div>
<div><br>
</div>
<div>
<p>Thanks so much for your reply. See answers below.<br>
</p>
<div class="moz-cite-prefix">On 9/4/22 17:48, Moshe Katz wrote:<br>
</div>
<blockquote type="cite">
<div dir="auto">
<div dir="auto">Here are a few things you can check (all of these need to be run as root or using `sudo`):</div>
<div dir="auto"><br>
</div>
<div dir="auto">Is nginx actually listening on port 443? There are lots of different commands you can use to check this, but I like to use `netstat -lptn | grep nginx`.</div>
<div dir="auto"><br>
</div>
</div>
</blockquote>
<span style="font-family:monospace"><span style="color:#000000; background-color:#ffffff"><a class="moz-txt-link-abbreviated" href="mailto:root@biscotty-lt:/etc/nginx/conf.d#">root@biscotty-lt:/etc/nginx/conf.d#</a> netstat -lptn | grep nginx
</span><br>
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 58325/<span style="font-weight:bold; color:#ff5454; background-color:#ffffff">nginx</span><span style="color:#000000; background-color:#ffffff">: master </span><br>
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 58325/<span style="font-weight:bold; color:#ff5454; background-color:#ffffff">nginx</span><span style="color:#000000; background-color:#ffffff">: master
</span><br>
</span>
<blockquote type="cite">
<div dir="auto">
<div dir="auto">Is there an error in your config? Check this with `nginx -t`.</div>
</div>
</blockquote>
<p><span style="font-family:monospace"><span style="color:#000000; background-color:#ffffff"><a class="moz-txt-link-abbreviated" href="mailto:root@biscotty-lt:/etc/nginx/conf.d#">root@biscotty-lt:/etc/nginx/conf.d#</a> nginx -t
</span><br>
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok <br>
nginx: configuration file /etc/nginx/nginx.conf test is successful<br>
<br>
</span></p>
<blockquote type="cite">
<div dir="auto"><br>
<div>Have you allowed port 443 through your firewall? Check `/var/log/syslog` for firewall messages.<br>
</div>
</div>
</blockquote>
I've disabled the firewall until I get this resolved.<br>
<blockquote type="cite">
<div dir="auto">
<div><br>
<div class="gmail_quote">
<div dir="ltr" class="gmail_attr">On Sun, Sep 4, 2022, 7:27 PM Brian Carey <<a href="mailto:biscotty666@gmail.com" target="_blank" rel="noreferrer" class="moz-txt-link-freetext">biscotty666@gmail.com</a>> wrote:<br>
</div>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex; border-left:1px #ccc solid; padding-left:1ex">
Hi,<br>
<br>
I'm pretty new to nginx but do have a server up and running. I've been <br>
pulling my hair out over ssl setup though. I have read the docs on your <br>
server and some others like the alpine site. The most recent attempt I <br>
followed the video tutorial on your website. Whenever I try to connect <br>
via ssl it hangs. I hope someone here has some ideas because I don't <br>
know where else to turn.<br>
<br>
No errors show in the nginx logs.<br>
<br>
I'm running Ubuntu 20.04. Nginx was installed following the instructions <br>
on your website.<br>
<br>
When I try to access <a href="http://www.biscotty.dev" rel="noreferrer noreferrer noreferrer" target="_blank" class="moz-txt-link-freetext">
http://www.biscotty.dev</a> with curl I get a response. <br>
If I explicitly request https it hangs indefinitely. The <br>
commands/responses are posted below.<br>
<br>
Not sure if this matters but I have learned that dev domains try to <br>
enforce https, so explicitly using http in a browser gui craps out no <br>
matter what, but curl ignores this and serves you via http anyway. I <br>
don't know if this matters but I thought I would mention it.<br>
<br>
Here is my .conf file. I have not modified anything else from the <br>
initial install.<br>
<br>
'''<br>
server {<br>
listen 80 default_server;<br>
server_name <a href="http://www.biscotty.dev" rel="noreferrer noreferrer noreferrer" target="_blank">
www.biscotty.dev</a>;<br>
return 301 <a class="moz-txt-link-freetext" href="https://$server_name$request_uri">
https://$server_name$request_uri</a>;<br>
}<br>
<br>
server {<br>
listen 443 ssl;<br>
server_name <a href="http://www.biscotty.dev" rel="noreferrer noreferrer noreferrer" target="_blank">
www.biscotty.dev</a>;<br>
<br>
ssl_certificate /etc/nginx/ssl/<a href="http://biscotty.dev" rel="noreferrer noreferrer" target="_blank">biscotty.dev</a>.crt;<br>
ssl_certificate_key /etc/nginx/ssl/<a href="http://biscotty.dev" rel="noreferrer noreferrer" target="_blank">biscotty.dev</a>.key;<br>
<br>
location / {<br>
root /usr/share/nginx/html;<br>
index index.html index.htm;<br>
}<br>
}<br>
'''<br>
'''<br>
<a class="moz-txt-link-abbreviated" href="mailto:root@biscotty-lt:/etc/nginx/conf.d#">root@biscotty-lt:/etc/nginx/conf.d#</a> curl -I
<a href="http://biscotty.dev" rel="noreferrer noreferrer
noreferrer" target="_blank" class="moz-txt-link-freetext">
http://biscotty.dev</a><br>
HTTP/1.1 301 Moved Permanently<br>
Server: nginx/1.23.1<br>
Date: Sun, 04 Sep 2022 21:05:01 GMT<br>
Content-Type: text/html<br>
Content-Length: 169<br>
Connection: keep-alive<br>
Location: <a href="https://www.biscotty.dev/" rel="noreferrer noreferrer noreferrer" target="_blank" class="moz-txt-link-freetext">
https://www.biscotty.dev/</a><br>
<br>
<a class="moz-txt-link-abbreviated" href="mailto:root@biscotty-lt:/etc/nginx/conf.d#">root@biscotty-lt:/etc/nginx/conf.d#</a> curl -I
<a href="https://biscotty.dev" rel="noreferrer noreferrer
noreferrer" target="_blank" class="moz-txt-link-freetext">
https://biscotty.dev</a><br>
^C<br>
```<br>
<br>
<br>
_______________________________________________<br>
nginx mailing list -- <a href="mailto:nginx@nginx.org" rel="noreferrer noreferrer" target="_blank" class="moz-txt-link-freetext">
nginx@nginx.org</a><br>
To unsubscribe send an email to <a href="mailto:nginx-leave@nginx.org" rel="noreferrer
noreferrer" target="_blank" class="moz-txt-link-freetext">
nginx-leave@nginx.org</a><br>
</blockquote>
</div>
</div>
</div>
<br>
<fieldset class="moz-mime-attachment-header"></fieldset>
<pre class="moz-quote-pre">_______________________________________________
nginx mailing list -- <a class="moz-txt-link-abbreviated" href="mailto:nginx@nginx.org">nginx@nginx.org</a>
To unsubscribe send an email to <a class="moz-txt-link-abbreviated" href="mailto:nginx-leave@nginx.org">nginx-leave@nginx.org</a>
</pre>
</blockquote>
</div>
</body>
</html>