nginx ipv6

Alarig Le Lay alarig at swordarmor.fr
Mon Jan 16 13:46:45 UTC 2017


Hi,

On Mon Jan 16 14:31:49 2017, basti wrote:
> server {
> #    listen        443 http2 reuseport;
>     listen   443; ## listen for ipv4
>     listen   [::]:443 ipv6only=on; ## listen for ipv6
> 
>     server_name ssl.example.com;
> 
>     access_log /var/log/nginx/https.access.log;
>     error_log  /var/log/nginx/https.error.log warn;
> 
>     ssl on;
>     ssl_certificate
> /var/lib/letsencrypt.sh/certs/ssl.example.com/fullchain.pem;
>     ssl_certificate_key
> /var/lib/letsencrypt.sh/certs/ssl.example.com/privkey.pem;
> 
> Error:
> 
> SSL_ERROR_RX_RECORD_TOO_LONG
> [ipv6ip] - - [16/Jan/2017:14:25:58 +0100]
> "\x16\x03\x01\x00\xE2\x01\x00\x00\xDE\x03\x03\xD2m8" 400 173 "-" "-"
> 
> Want's wrong here?
> Thanks for any help.

You have to add the ssl keyword in your listen directive, like "listen
443 ssl; listen [::]:443 ssl;"

-- 
alarig
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: not available
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20170116/87444403/attachment.bin>


More information about the nginx mailing list