504 SSL_do_handshake() failed
Max
nginxyz at mail.ru
Thu Feb 9 01:48:11 UTC 2012
09 февраля 2012, 05:06 от "zealot83" <nginx-forum at nginx.us>:
> A similar problem to below case occurred in mine.
> http://forum.nginx.org/read.php?2,144108,222098#msg-222098
>
> Following is the ssl server configuration.
> At first I used AJP.
> But after I could not find a corresponding directive to
> proxy_ssl_session_reuse, I changed to proxy.
>
> upstream loadbalancer {
> server 127.0.0.1:8080;
>
> keepalive 100;
> }
>
> server {
> listen 443 default ssl;
> ssl on;
>
> ......
>
> location / {
> #access_log off;
> #ajp_pass loadbalancer;
> proxy_pass http://loadbalancer;
> proxy_ssl_session_reuse off;
> }
> }
>
> Here's the error log:
> 2012/02/08 15:03:49 [info] 13273#0: *1 SSL_do_handshake() failed (SSL:
> error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate
> unknown) while SSL handshaking,
You're probably using a self-signed certificate?
First sync the time on all the servers and clients
using NTP, then try using different browsers
(other than Firefox and IE) and curl.
If the problem persists, sync the time on the
server again and regenerate the certificate.
If that doesn't help, post your complete nginx.conf,
the output of "nginx -V" and "uname -a", and the
the version of OpenSSL on the server where you
compiled nginx.
Max
More information about the nginx
mailing list