OPNsense Forum

Archive => 21.1 Legacy Series => Topic started by: ruggerio on January 20, 2021, 11:21:44 pm

Title: NGINX problem with https server
Post by: ruggerio on January 20, 2021, 11:21:44 pm: Since the upgrade to 21.1-rc...my https-reverse-proxy does no longer start.

Logs say:
SSL_CTX_load_verify_locations("/usr/local/etc/nginx/key/trust_upstream_4fa78829-e9c2-4d1b-b07d-3223d324f828.pem") failed (SSL: error:0B084088:x509 certificate routines:X509_load_cert_crl_file:no certificate or crl found)

in the mentionned path, i can find a pem. This error holds nginx from start. if i remove TLS-support from the server, the services starts again.

Somebody with a good idea?
Title: Re: NGINX problem with https server
Post by: Tubs on January 25, 2021, 02:15:03 pm: Quote from: ruggerio on January 20, 2021, 11:21:44 pm
Since the upgrade to 21.1-rc...my https-reverse-proxy does no longer start.
[...]
Somebody with a good idea?

Yes, have a look here in 20.7. Same for 20.7.8
https://forum.opnsense.org/index.php?topic=20989.0
Title: Re: NGINX problem with https server
Post by: ruggerio on January 27, 2021, 07:24:41 am: OK - i'll stay here, even if it's the same as on 20.7.8

It's only working, if TLS certificate check under upstream is disabled.

Thx,
Roger

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy