Yes - He is right; everything is revolves around DNS and even my error is
with DNS resolving as it was not able to resolve the ocsp.godaddy.com hence
please troubelshoot from DNS perspetive.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295945,295964#msg-295964
Yes - He is right; everything is revolves around DNS and even my error is
with DNS resolving as it was not able to resolve the ocsp.godaddy.com hence
please troubelshoot from DNS perspetive.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295945,295963#msg-295963
Hi,
Did you check error log or syslog? Is that spitting out any errors? Do you
have SSL_OCSP settings configured and it might not be able to reach to the
protocol?
I mean I had 45 portals and was facing a same issue. Later when I done the
debug I found that ocsp.godaddy.com was not reachable
I see - that;s a nice suggestion. Let me see how this goes.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295928,295939#msg-295939
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
Well this is particularly I noticed for https vhost config. The CSP headers
are properly being displayed for http but not https.
Here is my config
more /etc/nginx/conf.d/sec-headers.conf
add_header Content-Security-Policy "default-src 'self'; font-src *;img-src *
data:; script-src *; style-src
Hi All,
I am trying to set a CSP headers in my nginx reverse proxy and those are not
appearing even after multiple attempts. Any idea what is wrong or why the
header is not getting added?
TIA
Blason R
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295928,295928#msg-295928
Yes - with Proxy_pass you can and if not use Iptables to port forward the
traffic.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295923,295924#msg-295924
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to
a simple
webserver on nginx but no luck.
Can someone please help me about building an CSP report only server on
nginx?
TIA
Blason R
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295921,295921#msg-295921
___
nginx mailing list -- nginx
Nothing interesting as such however below is the curl output from nginx
server
curl -I https://xxx..xxx:8081/neutrino-sso-web
HTTP/1.1 302 Found
Date: Thu, 17 Nov 2022 17:57:10 GMT
Server: JBoss-EAP/7
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Powered-By:
ays;
}
}
Am I doing anything wroing?
TIA
Blason R
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295782,295782#msg-295782
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
Thanks appreciate it. Will have to check and confirm.
By the way which one would you confirm is preferable method rewrite or
return?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295715,295725#msg-295725
___
nginx mailing list --
Hi Team,
I am trying to write a below rewrite rule but somehow this is not working
and I would really appreicate if someone can help me on this?
I have a website http://web1.example.local/web1
Instead I need a rewrite so that if user enters http://web1.example.local it
will be diverted to
Any specific card or hardware device that you can suggest for the setup?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,294862,294871#msg-294871
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
Thanks a lot for your input
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,294862,294870#msg-294870
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
Hi Team,
I wanted to know the possibilities with Nginx SSL offloading to separate
CPU card or any other hardware? How do I achieve better performance with
Nginx SSL offloading? Do I need to go with more CPU cores? or dedicated card
or any other mechanism?
Can someone please suggest?
TIA
This is fine - I need a part from Nginx to client. And thanks for clarifying
about nginx compressing the request which are only in responses.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,294276,294305#msg-294305
___
nginx mailing list --
Thanks for input; much appreciated.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,294275,294294#msg-294294
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
Thanks for the reply. Let me try doing that.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,294276,294293#msg-294293
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
see only
html/text files can be gzipped and if any specific other data needs to be
gzipped then needs to be defined.
Can someone please tell me if json data can be achieved with gzip on?
TIA
Blason R
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,294276,294276#msg-294276
me in
achieving Active-Passive setup of nginx reverse proxies?
TIA
Blason R
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,294275,294275#msg-294275
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le
Right - And that helped a lot. Thanks for the quick help
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,293801,293829#msg-293829
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
Hi Team,
I have Ubuntu 20.04 and Nginx 1.20.1 installed from Official Nginx
repository. I already have made the server_tokens to off however wondering
if customer header can be added without recompiling it? With any modules or
packages on ubuntu 20.04?
TIA
Blason R
Posted at Nginx Forum:
https
Thanks team for your help but I had to find an alternative and instead I
hosted the site on Nginx server itself. Which currently is working fine.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,293780,293795#msg-293795
___
nginx mailing list
user www-data;
worker_processes auto;
pid /run/nginx.pid;
include /etc/nginx/modules-enabled/*.conf;
load_module modules/ngx_http_modsecurity_module.so;
events {
worker_connections 768;
# multi_accept on;
}
http {
map $http_upgrade $connection_upgrade {
default
Here is Apache config
ServerAdmin webmas...@example.com
DocumentRoot /var/www/fs/
ServerName fs.example.com
ServerAlias fs.example.com
ErrorLog /var/log/apache2/fs/error.log
CustomLog /var/log/apache2/fs/access.log combined
LogFormat
Here are the debug logs - If that would help
https://pastebin.com/K3521Cnk
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,293780,293781#msg-293781
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to
Hi Team,
My portal name is lets say fs.example.com and it is configured on apache
server which is then proxied to internet using Nginx reverse proxy. However
I tried everything I was aware of and I am consistently getting below error
whenever this URL is accessed. I am running out of ideas about
Thanks for message. Let me test that and revert.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,292505,292512#msg-292512
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hi Team,
I am trying to build a reverse proxy as well as load balancer using below
link. Can someone please confirm if below scenario can be achieved?
I would really appreciate if someone can go through the links and wanted to
understand if sticky or persistence connection can be possible with
Hi Team,
Here is one more issue I am facing. I have portal running on
http://test.example.com:8080/AppWise and http://test.example.com/WebAdmin
Now I diverted that portal through Nginx reverse proxy
here is my config
**
server {
listen 8080;
listen 80;
server_name
Bummer!! I am not that pro - but would really appreciate if you can give me
certain reference links or configuration? Please
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,292420,292447#msg-292447
___
nginx mailing list
nginx@nginx.org
Well - I tried that as well
location /SNX/ {
proxy_pass https://websocket;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $connection_upgrade;
proxy_set_header Connection "Upgrade";
My bad - Just a typo with this topic.
I want to add Nginx reverse proxy in front of my checkpoint mobile access
portal not behind
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,292420,292421#msg-292421
___
nginx mailing list
Hi Team,
I am trying to add nginx reverse proxy behind Check Point Mobile access
portal which is a SSL VPN portal. Somehow this not working and when I
captured and analyzed the har file I observed that the portal is accepting
websocket calls. I tried implementing the same with nginx but I am
Hi Team,
Looks like my issue is resolved by adding this line after proxy_pass
proxy_ssl_server_name on;
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,292405,292419#msg-292419
___
nginx mailing list
nginx@nginx.org
Well actually while doing a curl request site is being moved and here is I
am getting
curl -vk https://xx.xx.xx/TestPage/
Object moved
Object moved to here.
* Connection #0 to host xx.xx.xx left intact
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,292405,292418#msg-292418
Sure I'll note that. and I feed something is not right at remote end
server.
Thanks for your help.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,292405,292417#msg-292417
___
nginx mailing list
nginx@nginx.org
Oh my bad those xxx. and sss consider those are single url. I just typed
while creating this post randomly
Here are my error.log -
2021/09/17 11:23:09 [error] 9429#9429: *1814357 peer closed connection in
SSL handshake (104: Connection reset by peer) while SSL handshaking to
upstream, client:
Hi Team,
I have server whose URL is https://xx.xx.xx.xx/TestPage/ which gets
generated as
https://.xxx.xxx/TestPage/(S(0inoxzi14rxqq1uix1tiyp1t))/index.aspx
Now I have implemented nginx reverse proxy in front this server and then I
have done the config proxy_pass as
proxy_pass
Hi Team,
Wondering if anyone has deployed Citrix server behind nginx reverse proxy
server? Or if anyone has success about implementing Check Point Mobile
Access VPN portal behind nginx reverse proxy? I am still wondering if such
encryption technology can work with Nginx reverse proxy?
TIA
Blason
Thanks appreciated your response.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,291069,291077#msg-291077
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Oh Ok -
Thanks for the pointer and if my understanding is clear then define
map $geoip_country_code $allowed_country_A
map $geoip_country_code $allowed_country_B
map $geoip_country_code $allowed_country_C
under http section in /etc/nginx/nginx.conf
and then use
if ($allowed_country_A = no) in
Hi Team,
This is nginx 1.19.5
I have reverse proxy server where I am hosting around 20 sites behind nginx
reverse proxy server. This reverse proxy server only used for reverse proxy
purpose and no local web server is running on it.
I need to implement geoip blocking but what I understood from
Well - That was not the nginx issue and was an apache2 issue. I had virtual
hosts defined on apache2 server and apache2 was not finding a match even
through config was there. Hence I added the entry in hosts file and it
worked. Plus moved my vshost config file to apache2.conf file.
Posted at
Hi Team,
I am stuck in this weird issue. I have nginx as my reverse proxy set in
front of Apache web server Some how my proxy_pass is not working as expected
and getting 404 not found error while retrieving page. Can someone pls
help?
Reve Proxy IP - 10.122.0.4
Apache 10.122.0.3
On my Rev Proxy
Hi Folks,
I was referring lot of other articles on internet and seems that jwt
authentication is only possible with Nginx plus version; wondering if this
is possible with Nginx Open source version as well?
TIA
Blason R
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,285190,285190#msg
Hi Folks,
Really no solution for this? Can someone please help?
Now I am seeing beloe error in access.log and my file is like this
11.22.33.44 - - [05/Aug/2019:14:50:58 +0530] "POST /connect/token HTTP/1.1"
404 191 "https://test.example.net/; "Mozilla/5.0 (Windows NT 10.0; Win64;
x64)
Hi Folks,
Really no solution for this? Can someone please help?
Now I am seeing beloe error in access.log and my file is like this
11.22.33.44 - - [05/Aug/2019:14:50:58 +0530] "POST /connect/token HTTP/1.1"
404 191 "https://test.example.net/; "Mozilla/5.0 (Windows NT 10.0; Win64;
x64)
yeah that's a good point and let me try out that.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,284983,285078#msg-285078
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Here are the error messages I am seeing in access.log
1.2.3.4 - - [31/Jul/2019:10:07:58 +0530] "POST /connect/token HTTP/1.1" 400
80 "https://test.example.net/; "Mozilla/5.0 (Windows NT 10.0; Win64; x64)
AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36"
1.2.3.4 - -
blason Wrote:
---
> Hi Folks,
>
> I am trying to setup a reverse proxy on nginx with server at backend
> and from HAR file I understand it uses Oauth-Token-2.0 with POST
> method.
>
> However I am unable to set the stuff
Hi Folks,
I am trying to setup a reverse proxy on nginx with server at backend and
from HAR file I understand it uses Oauth-Token-2.0 with POST method.
However I am unable to set the stuff and seeking help here.
My original server here is assuming
https://test.example.net:9084
And for Outh
Hi,
I have nginx with version 1.10.1 and have below scenario which I am not able
to figure it out.
My reverse proxy set it up as www.example.com and location / is set it as
location / {
proxy_pass https://www.example.com:8084;
Now URL is getting opened properly when I login it again
://xyz.example.com:8443/PortalLgin/action.do?portal=a8550fd2-24bb-11e6-a111
But no luck
Tried listen Directive 8443 still no luck
Can someone please suggest?
Thanks and Regards,
Blason R
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,282809,282809#msg-282809
Hello,
Do you mean I need to mention in each and every reverse proxy stanza or in
default config?
Is this right?
[root@xx conf.d]# vi default.conf
server {
listen 80 default_server;
#server_name "";
server_name _;
return 444;
ssl_protocols TLSv1.2;
#charset
Hi Team,
I have deployed nginx in reverse proxy mode and trying to disable TLS1
and1.1 in configuation file but somehow it still shows when site is scanned
by SSLlabs.
Any idea why?
nginx version: nginx/1.10.1
ssl_prefer_server_ciphers On;
ssl_protocols TLSv1.2;
Hi Nginx Team,
I am unable to use bcrypt function on CentOS 7.4 with nginx version 1.12.2.
Any idea what could be the reason? This is working fine with MD5
nginx -v
nginx version: nginx/1.12.2
CentOS Linux release 7.4.1708 (Core)
nginx version: nginx/1.12.2
built by gcc 4.8.5 20150623 (Red Hat
Hi there,
I guess it was not an issue with NTLM where I am successfully able to
authenticate with sharepoint the front page loads successfully while
sub-site pages does not load up and I am not able to figure out the issue.
Will soon share the config and logs I would really appreciate if help
Can I DM you or send you to email address?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,278193,278197#msg-278197
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Wow man!! Thanks I am struggling with configuration as Subsites does not
show anything it shows blank page i.e only for blank page while Front page
gets open successfully.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,278193,278195#msg-278195
Hi Guys,
Keen to know if there was any success rate for implementing Nginx as a
reverse proxy for Sharepoint? I mean I did implement however I am finding
issues with Sub-sites and wanted to know if there is any solution for the
same?
Posted at Nginx Forum:
with sharepoint and
nginx as reverse proxy?
Thanks and Regards,
Blason
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,277165,277165#msg-277165
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hi Guys,
We have multiple webservers behind Nginx Reverse Proxy and at one of the
server we have discovered Content spoofing, the vulnerability is patched on
Apache but also needs to be patchef on Nginx server.
I googled a lot but unable to find a relevant information. Can someone
please
Unfortunately we do not have budget at this moment and we were unsure at the
time of purchasing that paid nginx option does not give source codes to
compile hence we are now struggling. Can someone please help us here?
Posted at Nginx Forum:
Hi All,
I just purchased nginx-plus and since it is delivered in binaries, since
this is a case I am unable to install Modsecurity with nginx-plus. I
followed various guides and able to compile dynamic_module However when I am
enabling the modesecurity in conf file the nginx worker process is
Hello Guys,
I have nginx running as a reverse proxy and this is been running find for
other 10 sites however this one site is causing me an issue.
I have URL like this.
http://abc.xyz.com/EasyPAY/view/LoginMain.aspx
And here is the my directive
###
server {
listen 80 ;
Hi Team,
Any update I am still failing to achieve the same? How do I rewrite the URLs
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264068,264120#msg-264120
___
nginx mailing list
nginx@nginx.org
Hi Guys,
I need a help on below topic and I wanted to achieve URL Rewrite like this
We want to redirect our domain pages from source to destination one
Source : Original Page
www..com/index.php?id=news
Destination :
www.x.com/news.html
Posted at Nginx Forum:
Hi Finalx,
you mean shall I create the .conf file by name default_server and add up
this there? Or would you please tell me where shoudl I add the above stanza?
Sorry I am being novice in nginx just would like to know more information
about this.
Posted at Nginx Forum:
Hi Guys,
I have my nginx box deployed as a reverse proxy serving almost more than 10
sites. But when I browse through 1 IP the first site configured gets
accessed. I dont want anyone to access the sites through IP, by using only
FQDN sites should be accesible.
So anyone trying to access the site
Hi Guys,
I do have couple of microsoft servers which are being accessed over the
internet using RDP. Would like to know if nginx can be used as a reverse
proxy for RDP servers without exposing my original servers?
Can someone guide me plss
Posted at Nginx Forum:
Thanks Max.
I am just trying that on my test server. Also this proxy I am gonna use for
MS Exchange OWA and thus would not want to publish /ActiveSync and
/offlineaddressbok urls through my reverse proxy.
How can I block certain urls or path in nginx so that those URLs would not
be accessible
Hi Guys,
I just setup nginx reverse proxy for my webservers which has port 80/443
opened from internet and have very restircted access on firewall to the
destination servers again those to particular servers on port 80 and 443.
What I see in the logs is
GET http://www.baidu.com/ HTTP/1.1 200
Hi Guys,
This is my first forum and I am pretty new to nginx. What I am going to do
here is planning to setup nginx as a reverse proxy for my certain websites
on suse enterprise linux and I do have certain questions about sizing hence
would appreciate if community can help me here?
1. How is
74 matches
Mail list logo