1.4 域名添加ssl失败
Create Virtul Host directory......set permissions of Virtual Host directory......
You select the exist rewrite rule:/usr/local/nginx/conf/wordpress.conf
Test Nginx configure file......
nginx: the configuration file /usr/local/nginx/conf/nginx.conf syntax is ok
nginx: configuration file /usr/local/nginx/conf/nginx.conf test is successful
Reload Nginx......
Gracefully shutting down php-fpm . done
Starting php-fpmdone
You select the exist rewrite rule:/usr/local/nginx/conf/wordpress.conf
Test Nginx configure file......
nginx: the configuration file /usr/local/nginx/conf/nginx.conf syntax is ok
nginx: configuration file /usr/local/nginx/conf/nginx.conf test is successful
Reload Nginx......
/bin/certbot
index-url=http://mirrors.aliyun.com/pypi/simple/
pip.conf exist.
Starting create SSL Certificate use Let's Encrypt...
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for wwo.cn
http-01 challenge for www.wwo.cn
Using the webroot path /home/wwwroot/wwo.cn for all unmatched domains.
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. www.wwo.cn (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Could not connect to www.wwo.cn
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: www.wwo.cn
Type: connection
Detail: Could not connect to www.wwo.cn
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
Let's Encrypt SSL Certificate create failed!
================================================
Virtualhost infomation:
Your domain: wwo.cn
Home Directory: /home/wwwroot/wwo.cn
Rewrite: wordpress
Enable log: yes
Create database: no
Create ftp account: no
Enable SSL: yes
=>Let's Encrypt
已自行搞定!
原因是:
因为之前的1.3版本默认LNMP的虚拟主机里是禁止 . 开头的隐藏文件及目录的,所以访问http://abc.com/.well-known/acme-challenge/**** 这个链接的话返回403错误,所以必须要将对应虚拟主机配置文件里的
location ~ /\.
{
deny all;
}
这段配置删掉或注释掉或在这段配置前面加上
location ~ /.well-known {
allow all;
}
修改保存后重启nginx。
[ 本帖最后由 xiaoxue 于 2017-6-4 17:11 编辑 ] 按错误信息连接不到你服务器上说明解析还没生效或有其他问题
页:
[1]