stackoom
  简体   繁体   中英

Setting up SSL on Nginx on AWS Ubuntu instance

 原文  2017-11-24 12:58:18       linux/ amazon-web-services/ ssl/ nginx

Question

I currently have a NodeJS (Koa.js) / Angular4+ application sat on an AWS instance running Linux that I need to configure to use SSL. I have followed a few tutorials online, generated the SSL cert and attempted to get this working and so far I have had no luck.

Let me run you through what I have done so far:

I have generated the SSL certificate and it is in a file called ssl-bundle.crt in the /home/ubuntu directory on the instance. I also have the key sat in the same directory.

I have configured my server block on Nginx for the application as follows (/etc/nginx/sites-available/dashboard.conf): 

server {
        listen 80;
        return 301 https://$host$request_uri;
}

server {
        listen 443;

        ssl_certificate /home/ubuntu/ssl-bundle.crt;
        ssl_certificate_key /home/ubuntu/dashboard.d*****d.key;

        ssl on;
        ssl_session_cache  builtin:1000  shared:SSL:10m;
        ssl_protocols  TLSv1 TLSv1.1 TLSv1.2;
        ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
        ssl_prefer_server_ciphers on;

        access_log            /var/log/nginx/d*****d.access.log;

        location / {
               proxy_set_header Host $host;
               proxy_set_header X-Real-IP $remote_addr;
               proxy_pass http://localhost:4000;
               proxy_set_header        X-Forwarded-Proto $scheme;
        }
}

The Node application is running on port 4000 so I have a proxy_pass to that address when someone access that url. When I don't use SSL the application runs fine when accessing that URL, but when I attempt to use the above server block code trying to access the URL causes a time out. Can anyone help me here or see what is wrong with my configuration?

Thanks

2 answers

solution1
 1  2017-11-24 15:39:41

Turns out this wasn't an Nginx issue but an issue with the AWS security group. I hadn't allowed 443 as an incoming port in the settings. Once I did this it worked fine. Hope this helps anyone in future using AWS.

solution2
 0  2017-11-24 13:56:05

We have used letsencrypt on several of our API servers and I have found it quite an easy setup. Please see this tutorial for a tested step by step .

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Setting up RTMP nginx server on ubuntu error setting up nginx provisioning on vagrant with virtualbox on Ubuntu Setting up Ant home in Ubuntu Connecting to a MySQL db created in an Ubuntu AWS instance AWS ubuntu instance can't reach the world Setting up SSL / Need to Setup Mail first Setting up Unix Socket with Nginx and Django Linux: Setting up node.js on nginx Setting up DVWA with XAMPP on virtual Ubuntu Trouble setting up logdna with AWS linux
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM