ssl - Safari fails to give response when using HTTP/2 -

-

i'm newcomer nginx (been using apache in past).

at moment i'm trying setup cache front apache backend, think (based on my, far, experience nginx) switch use nginx.

as turn on http2 safari cannot response. in error log there nothing indicates problem , if turn on access log , check there can see safari client many, many connections, it's keeps refreshing page.

i've tried numerous of nginx versions noticed there might problem latest stable. tried downgrading 1.9.14 upgrading 1.11.1, neither luck.

nginx compiled just:

./configure --with-http_ssl_module --with-http_v2_module

nginx -v output:

nginx version: nginx/1.11.1 built gcc 5.3.1 20160413 (ubuntu 5.3.1-14ubuntu2.1)  built openssl 1.0.2g-fips  1 mar 2016 tls sni support enabled configure arguments: --with-http_ssl_module --with-http_v2_module

my config looks (my sites-available conf):

upstream backend {     server 127.0.0.1:8088 weight=100; }  server {     listen 443 ssl http2 deferred;     server_name www.server.name;      ssl_protocols tlsv1 tlsv1.1 tlsv1.2;     ssl_ciphers "ecdhe-ecdsa-aes128-gcm-sha256:ecdhe-rsa-aes128-gcm-sha256:ecdhe-rsa-aes256-gcm-sha384:ecdhe-ecdsa-aes256-gcm-sha384:dhe-rsa-aes128-gcm-sha256:dhe-dss-aes128-gcm-sha256:kedh+aesgcm:ecdhe-rsa-aes128-sha256:ecdhe-ecdsa-aes128-sha256:ecdhe-rsa-aes128-sha:ecdhe-ecdsa-aes128-sha:ecdhe-rsa-aes256-sha384:ecdhe-ecdsa-aes256-sha384:ecdhe-rsa-aes256-sha:ecdhe-ecdsa-aes256-sha:dhe-rsa-aes128-sha256:dhe-rsa-aes128-sha:dhe-dss-aes128-sha256:dhe-rsa-aes256-sha256:dhe-dss-aes256-sha:dhe-rsa-aes256-sha:!anull:!enull:!export:!des:!rc4:!3des:!md5:!psk";     ssl_prefer_server_ciphers on;      ssl_certificate /path/to/cert.crt     ssl_certificate_key /path/to/cert_key.key      ssl_session_cache shared:ssl:10m;     ssl_session_timeout 10m;      add_header strict-transport-security "max-age=31536000; includesubdomains;";      location / {             proxy_redirect off;             proxy_set_header host $host;             proxy_set_header x-real-ip $remote_addr;             proxy_set_header x-forwarded_for $proxy_add_x_forwarded_for;              proxy_pass https://backend;     }  }

if remove http2 listen argument , restart works fine...

i've search find out if i'm doing wrong in config cannot find anything... however, if there improvements config please let me know. main problem whenever hit url (cached or not) safari keeps loading.

this how access log looks after request:

123.123.123.123 - - [11/jun/2016:08:37:28 +0200] "get /example/url http/2.0" 200 15032 "-" "mozilla/5.0 (macintosh; intel mac os x 10_11_4) applewebkit/601.5.17 (khtml, gecko) version/9.1 safari/601.5.17" 123.123.123.123 - - [11/jun/2016:08:37:28 +0200] "get /example/url http/2.0" 200 15032 "-" "mozilla/5.0 (macintosh; intel mac os x 10_11_4) applewebkit/601.5.17 (khtml, gecko) version/9.1 safari/601.5.17" 123.123.123.123 - - [11/jun/2016:08:37:28 +0200] "get /example/url http/2.0" 200 15032 "-" "mozilla/5.0 (macintosh; intel mac os x 10_11_4) applewebkit/601.5.17 (khtml, gecko) version/9.1 safari/601.5.17" 123.123.123.123 - - [11/jun/2016:08:37:28 +0200] "get /example/url http/2.0" 200 15032 "-" "mozilla/5.0 (macintosh; intel mac os x 10_11_4) applewebkit/601.5.17 (khtml, gecko) version/9.1 safari/601.5.17" 123.123.123.123 - - [11/jun/2016:08:37:28 +0200] "get /example/url http/2.0" 200 15032 "-" "mozilla/5.0 (macintosh; intel mac os x 10_11_4) applewebkit/601.5.17 (khtml, gecko) version/9.1 safari/601.5.17" 123.123.123.123 - - [11/jun/2016:08:37:28 +0200] "get /example/url http/2.0" 200 15032 "-" "mozilla/5.0 (macintosh; intel mac os x 10_11_4) applewebkit/601.5.17 (khtml, gecko) version/9.1 safari/601.5.17" 123.123.123.123 - - [11/jun/2016:08:37:28 +0200] "get /example/url http/2.0" 200 15032 "-" "mozilla/5.0 (macintosh; intel mac os x 10_11_4) applewebkit/601.5.17 (khtml, gecko) version/9.1 safari/601.5.17"

thanks!

okey! after research , testing turned out needed hide upgrade header in config. proxy_hide_header upgrade;

read more here: https://trac.nginx.org/nginx/ticket/915


Comments

Post a Comment

Popular posts from this blog

wordpress - (T_ENDFOREACH) php error -

-
creating wordpress website , i'm getting following php error: parse error: syntax error, unexpected 'endforeach' (t_endforeach) in /home/soralmedia/public_html/wp-content/themes/soral media/woocommerce/myaccount/my-orders.php on line 98 here's code file: <?php /** * orders * * shows recent orders on account page. * * template can overridden copying yourtheme/woocommerce/myaccount/my-orders.php. * * however, on occasion woocommerce need update template files , (the theme developer). * need copy new files theme maintain compatibility. try this. * little possible, happen. when occurs version of template file will. * bumped , readme list important changes. * * @see http://docs.woothemes.com/document/template-structure/ * @author woothemes * @package woocommerce/templates * @version 2.5.0 */ if ( ! defined( 'abspath' ) ) { exit; } $my_orders_columns = apply_filters( 'woocommerce_my_account_my_orders_columns', array( ...
Read more

Export Excel workseet into txt file using vba - (text and numbers with formulas) -

-
i new vba have developed code use in excel move text/numbers txt file. issue have 3 functions need go same txt file. when run first function has set fs = createobject("scripting.filesystemobject") set = fs.createtextfile(module1.nys45uploadfilename, true) a.writeline (str) a.close. the other 2 functions had save. set fs = createobject("scripting.filesystemobject") set = fs.savetextfile(module1.nys45uploadfilename, true) a.writeline (str) a.close. the first function go txt file, other 2 error object doesn't support property or method. when changed 3 create last function goes txt file. can not figure out word use in order make other 2 functions follow txt file in order keyed. the entire code follows private sub addrecord_click() on error goto errhandler module1.nys45uploadfilename = application.getsaveasfilename(filefilter:="textfiles (*.txt), *.txt") if module1.nys45uploadfilename = "false" exit sub ...
Read more

Using django-mptt to get only the categories that have items -

-
sample structure: all uppercase: category mixed case: item root ├── books │   ├── fiction │   │   └── classics │   └── non-fiction ├── clothing └── electronics ├── laptops ├── phones │   ├── apple │   │   ├── iphone 6 │   │   ├── iphone 6 plus │   │   ├── iphone 6s │   │   └── iphone 6s plus │   ├── motorola │   │   ├── moto g4 │   │   ├── moto g4 play │   │   ├── moto g4 plus │   │   └── moto x │   └── samsung └── tablets └── apple i'm trying have index page show "electronics" category. "clothing" category shouldn't show since it's empty , "books" category shouldn't show either since, although has child categories, child categories don't have items. similarly, "electronics" page should show "phones" category. "laptops" category shouldn't show since it's empty , "tablets" category shouldn't show either since...
Read more