Techy Things » nginx

Nginx on port 443 won't serve page

frank — Wed, 14 Apr 2021 17:34:24 +0000

Question: I am telling nginx to listen on port 443 and it doesn't work even though my config test is passing. What's wrong?

server {
listen 443;
server_name localhost;
server_tokens off;
# These are the same certs vfcp has been using.
ssl_certificate /etc/pki/tls/certs/localhost.crt;
ssl_certificate_key /etc/pki/tls/private/localhost.key;
ssl_session_timeout 5m;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.0;
ssl_ciphers EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH;
ssl_prefer_server_ciphers on;
(...)
}

Answer:

You are missing the "ssl on;" directive. You can either specify it with

A) Adding ssl after 443:
server {
listen 443 ssl;

B) add a new line insider server {} with ssl on;

server {
listen 443;
ssl on;

Note that only solution (B) is compatible with npm module nginx-conf 1.X (I didnt try 2.X).

The post Nginx on port 443 won't serve page appeared first on Techy Things.

Nginx responds Content-Type: application/octet-stream for images

frank — Fri, 07 Aug 2020 22:04:35 +0000

Content-Type: application/octet-stream

In nginx.conf you will have something like

http {

   ##
   # Basic Settings
   ##
   (...)

   include /etc/nginx/mime.types;
   default_type application/octet-stream;

   (...)
}

Possible Problem 1 : It is possible that nginx doesnt have access to /etc/nginx/mime.types

Possible Problem 2 : In my case I had an extra types {} block in my server {} config of my sites-available/mysite.conf that I had added for RTMP streaming which was overriding the default types.

server {

(...)
# this will mess up the whole site and images
types {
application/vnd.apple.mpegurl m3u8;
video/mp2t ts;
text/html html;
application/dash+xml mpd;
}

}

The post Nginx responds Content-Type: application/octet-stream for images appeared first on Techy Things.

readv() failed (104: Connection reset by peer) while reading upstream

frank — Mon, 04 Nov 2019 17:09:38 +0000

[error] 1528#1528: *599 readv() failed (104: Connection reset by peer) while reading upstream, client: 10.65.11.207, server: localhost, request: "POST /apis/v2/system/upgrade/upload HTTP/1.1", upstream: "http://127.0.0.1:8085/apis/v2/system/upgrade/upload", host: "10.65.11.219", referrer: "https://10.65.11.219/admin/update"

Understanding:

This message "(XXX: Connection reset by peer) while reading upstream" appears when the server backend initiates the disconnect. It is not the client that failed. Usually the server will have responded to the request with a more specific error message to help debug. In my case the response which could be viewed with Google Chrome Network Inspector was :

HTTP 400 Bad Request
"{"code":"BadRequest","message":"maxFileSize exceeded, received 209763252 bytes of file data"}"

Solution:

change
http_server.use(restify.plugins.bodyParser();
to
http_server.use(restify.plugins.bodyParser({maxFileSize: 5 * 1024 * 1024 * 1024})); // 5 GB

The post readv() failed (104: Connection reset by peer) while reading upstream appeared first on Techy Things.

Nginx rewrite rules to redirect specific files to https

frank — Fri, 04 Apr 2014 00:56:08 +0000

Solution :

server {
  listen 80;
  listen 443 ssl;
  server_name localhost;

  location / {
    (...)
    if ($server_port = 80) {
      rewrite ^/(login.*)$ https://$host/$1; 
    }
  }
  (...)
}

The post Nginx rewrite rules to redirect specific files to https appeared first on Techy Things.