nginx配置反向代理,报错:
2021/05/26 11:38:25 [error] 14030#14030: *5287204 SSL_do_handshake() failed (SSL: error:1408F10B:SSL routines:ssl3_get_record:wrong version number) while SSL handshaking to upstream, client: 120.229.43.34, server: xx.oo.com, request: "GET /wp-content/uploads/wallpaper/2020/03/08/bg_35-1024x546.jpg HTTP/1.1", upstream: "https://1.2.3.4:443/wp-content/uploads/wallpaper/2020/03/08/bg_35-1024x546.jpg", host: "xx.oo.com"
从 log 看应该是SSL的问题,最终修改配置如下:
location @remote {
proxy_cache_valid 200 1y;
add_header Nginx-Cache "$upstream_cache_status";
proxy_cache remote_cache;
proxy_pass https://remote.example.com;
proxy_ssl_session_reuse off;
proxy_ssl_server_name on;
proxy_ssl_name remote.example.com;
proxy_ssl_protocols TLSv1.2;
proxy_set_header X-Real-IP $remote_addr;
}
关键是 proxy_ssl_protocols 和 proxy_ssl_session_reuse