我想知道如何正确配置Redbird代理的安全域。基本info有点令人困惑,因为示例略有碎片。我认为应该可以自动letsencrypt(如此处所声明的那样)。
我试过了:
var proxy = require('redbird')({
port:80,
ssl: {
port: 3000,
letsencrypt: {
path: '../SSL-certs',
}
}
});
proxy.register('secure-web.net', 'http://xx.xx.xxx.xxx:8080',{
ssl: {
letsencrypt: {
email: 'my@mail.com'
}
}
});
proxy.register('insecure-web.net', 'http://xx.xxx.xx.xxx:6881');
终端抛出(当我尝试访问该页面时):
{"name":"redbird","hostname":"honza-kvm","pid":3089,"level":50,"err":{"message":"140009434470272:error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher:../deps/openssl/openssl/ssl/s3_srvr.c:1418:\n","name":"Error","stack":"Error: 140009434470272:error:1408A0C1:SSL routines:ssl3_get_client_hello:no shared cipher:../deps/openssl/openssl/ssl/s3_srvr.c:1418:\n"},"msg":"HTTPS Client Error","time":"2016-11-08T13:03:37.979Z","v":0}
Firefox抛出:
Error code: SSL_ERROR_NO_CYPHER_OVERLAP
目录SSL-certs故意为空(似乎应该是根据手册页)但是我可能需要一些关于通过Redbird使用letsencrypt的重要信息。
答案 0 :(得分:2)
此示例为我现有的localhost:8080启用了http和https。
all the objects whose booleanproperty is set to true此外,当从production:false切换到production:true时,我发现证书颁发者仍然是
假LE中级X1
我完全删除了certs目录的内容,并重新启动了代理以查找
让我们加密权限X3