SSL证书安装失败,SSL目录下有对应的证书文件。
添加新站点过程中 ,选择了安装SSL证书。server
{
listen 80;
#listen [::]:80;
server_name www.lnmp.org lnmp.org;
index index.html index.htm index.php default.html default.htm default.php;
root/home/wwwroot/lnmp.org;
include rewrite/wordpress.conf;
#error_page 404 /404.html;
# Deny access to PHP files in specific directory
#location ~ /(wp-content|uploads|wp-includes|images)/.*\.php$ { deny all; }
include enable-php.conf;
location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$
{
expires 30d;
}
location ~ .*\.(js|css)?$
{
expires 12h;
}
location ~ /.well-known {
allow all;
}
location ~ /\.
{
deny all;
}
access_log/home/wwwlogs/lnmp.org.log;
}
/usr/local/nginx/conf/vhost/ 对应域名配置文件内容如上
/usr/local/nginx/conf/ssl/ 对应域名的SSL文件 lnmp.org.csr 和lnmp.org.key
手动建立了一个index.html 静态文件进行访问测试
前台测试 访问http 正常,访问https无法打开页面。
问题中以lnmp.org代替标识我的域名
lnmp.org:Verify error:69.165.78.55: Fet ching http://lnmp.org/.well-known/acme-challenge/gWmmvMi9E6xmlExzOPSWW -8DrpGMAUIGf5pWRqrvoD8: Timeout during connect (likely firewall problem)
Please check log file for more details: /usr/loca l/acme.sh/acme.sh.log
Generate SSL Certificate failed!
Thu Nov2 15:46:42 CST 2023] Running cmd: issue
_main_domain='www.cndigitalclock.com'
_alt_domains='cndigitalclock.com'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
DOMAIN_PATH='/usr/local/nginx/conf/ssl/www.cndigitalclock.com'
Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
_init api for server: https://acme-v02.api.letsencrypt.org/directory
GET
url='https://acme-v02.api.letsencrypt.org/directory'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
ACME_NEW_AUTHZ
ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf'
ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
Using CA: https://acme-v02.api.letsencrypt.org/directory
_on_before_issue
_chk_main_domain='www.cndigitalclock.com'
_chk_alt_domains='cndigitalclock.com'
Le_LocalAddress
d='www.cndigitalclock.com'
Check for domain='www.cndigitalclock.com'
_currentRoot='/home/wwwroot/www.cndigitalclock.com'
d='cndigitalclock.com'
Check for domain='cndigitalclock.com'
_currentRoot='/home/wwwroot/www.cndigitalclock.com'
d
config file is empty, can not read CA_KEY_HASH
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
_init api for server: https://acme-v02.api.letsencrypt.org/directory
/usr/local/acme.sh/acme.sh.log
错误日志 如上代码
日志只有一部分,缺失了最重要的部分
页:
[1]