Cloudflare Tunnel 内网穿透搭建mastodon如何配置SSL (httpS)

qiancsf · 发表于 2023-12-7 18:02:28

本帖最后由 qiancsf 于 2023-12-7 22:20 编辑

不能打开443端口,看了下域名重定向5次后失败
如果是443是自动的话，哪就是nginx配置问题？

Cloudflare Tunnel config.yml配置:

tunnel: 75cssss2-cac1-41bb-b59a-def83ea17e3d
credentials-file: /root/.cloudflared/75cssss2-cac1-41bb-b59a-def83ea17e3d.json
#protocol: h2mux
protocol: http2
#protocol: quic
originRequest:
  connectTimeout: 30s
  noTLSVerify: false
ingress:
  - hostname: XXX.com
service: h*ttp://localhost:80
originRequest:
   disableChunkedEncoding: false
   noTLSVerify: false
  - service: http_status:404

这是mastodon的nginx配置：
===============================================
map $http_upgrade $connection_upgrade {
  default upgrade;
  ''    close;
}

upstream backend {
server 127.0.0.1:3000 fail_timeout=0;
}

upstream streaming {
least_conn;
server 127.0.0.1:4000 fail_timeout=0;
}

proxy_cache_path /var/cache/nginx levels=1:2 keys_zone=CACHE:10m inactive=7d max_size=1g;

server {
  listen 80;
  listen [::]:80;
  server_name XXX.com;
  root /home/mastodon/live/public;
  location /.well-known/acme-challenge/ { allow all; }
  location / { return 301 h*ttps://$host$request_uri; }

}

server {
  listen 443 ssl http2;
  listen [::]:443 ssl http2;
  server_name XXX.com;

  ssl_protocols TLSv1.2 TLSv1.3;
..........

920 · 发表于 2023-12-7 18:13:13

443 记得是自动配置的，

红白菜 · 发表于 2023-12-7 18:26:07

自动的

qiancsf · 发表于 2023-12-7 19:14:42

是mastodon的nginx配置问题吗？

qiancsf · 发表于 2023-12-7 22:00:12

本帖最后由 qiancsf 于 2023-12-7 22:33 编辑

再试试

qiancsf · 发表于 2023-12-7 22:01:52

本帖最后由 qiancsf 于 2023-12-7 22:12 编辑

想了想,应该nginx配置成
server_name localhost
而不是
server_name XXX.com;

hcyme · 发表于 2023-12-7 22:03:03

再抽一根

qiancsf · 发表于 2023-12-7 22:08:08

本帖最后由 qiancsf 于 2023-12-7 22:11 编辑

明天再看看

		自动登录	找回密码
密码			注册