Телеграмм чат группы nginx

Size: a a a

nginx_ru

1696 membersпожаловаться на группу

2019 December 26

M Dan in nginx_ru

на http падает 414

источник

16:28пожаловаться #1

Alexander V in nginx_ru

CApath: /etc/ssl/certs
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
* ALPN, server accepted to use http/1.1

источник

16:28пожаловаться #2

Alexander V in nginx_ru

kvaps

Странно, у меня почти такаяже

может детальнее курл ?

источник

16:29пожаловаться #3

Alexander V in nginx_ru

curl -vv

источник

16:29пожаловаться #4

M Dan in nginx_ru

client_header_buffer_size 16k; поставил

источник

16:30пожаловаться #5

M Dan in nginx_ru

и ответило

источник

16:30пожаловаться #6

M Dan in nginx_ru

https все равно разваливается

HTTP/1.1
> Host: apache.garbagee
> User-Agent: curl/7.58.0
> Accept: */*
>
< HTTP/1.1 200 OK
< Server: nginx/1.16.1
< Date: Thu, 26 Dec 2019 13:31:10 GMT
< Content-Type: text/html
< Content-Length: 4859
< Last-Modified: Wed, 25 Dec 2019 16:14:07 GMT
< Connection: keep-alive
< Vary: Accept-Encoding
< ETag: "5e038acf-12fb"

источник

16:31пожаловаться #7

kvaps in nginx_ru

*   Trying 10.36.1.99:443...
* TCP_NODELAY set
* Connected to victoriametrics.example.org (10.36.1.99) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: none
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [106 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [4236 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [556 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [37 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: C=CZ; CN=*.example.org; emailAddress=domains@example.com
*  start date: Feb 27 12:25:50 2017 GMT
*  expire date: Feb 27 12:25:50 2020 GMT
*  subjectAltName: host "victoriametrics.example.org" matched cert's "*.example.org"
*  issuer: C=PL; O=Unizeto Technologies S.A.; OU=Certum Certification Authority; CN=Certum Domain Validation CA SHA2
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
} [5 bytes data]
* Using Stream ID: 1 (easy handle 0x557c761d2dd0)
} [5 bytes data]
> GET /aaaaaaa HTTP/2
> Host: victoriametrics.example.org
> user-agent: curl/7.67.0
> accept: */*
> 
{ [5 bytes data]
* Connection state changed (MAX_CONCURRENT_STREAMS == 128)!
} [5 bytes data]
* TLSv1.2 (IN), TLS alert, close notify (256):
{ [2 bytes data]
* Empty reply from server
* Closing connection 0
} [5 bytes data]
* TLSv1.2 (OUT), TLS alert, close notify (256):
} [2 bytes data]