我刚刚在我的 Windows Azure 托管的 Ubuntu 12.04 Apache 服务器上配置了站点以使用 SSL,这些站点正在正常工作并正确重定向。这是我的虚拟主机配置:
<VirtualHost *:80>
ServerName site1.company.com
Redirect permanent / https://site1.company.com/
</VirtualHost>
<VirtualHost *:443>
DocumentRoot /var/www/site1
ServerName site1.company.com
Options -Indexes
DirectoryIndex login.php
SSLEngine on
SSLCertificateFile /etc/apache2/certs/company.com.crt
SSLCertificateKeyFile /etc/apache2/certs/server1.key
SSLCertificateChainFile /etc/apache2/certs/gd_bundle.crt
</VirtualHost>
所有虚拟主机的配置几乎相同。但是,我在 Apache 的错误日志中看到很多条目让我担心生产过程中的性能/问题。
[debug] ssl_engine_kernel.c(1866): OpenSSL: Handshake: start
[debug] ssl_engine_kernel.c(1874): OpenSSL: Loop: before/accept initialization
[debug] ssl_engine_io.c(1908): OpenSSL: I/O error, 11 bytes expected to read on BIO#7f8f746c6ae0 [mem: 7f8f746cc0d0]
[debug] ssl_engine_kernel.c(1903): OpenSSL: Exit: error in unknown state
[info] [client x.x.x.x] (70014)End of file found: SSL handshake interrupted by system [Hint: Stop button pressed in browser?!]
[info] [client x.x.x.x.] Connection closed to child 5 with abortive shutdown (server site1.company.com:443)
[info] [client x.x.x.x] Connection to child 0 established (server site1.company.com:443)
[info] Seeding PRNG with 656 bytes of entropy
此循环每 15 秒重复一次。我是否配置错误?所有站点都可以正常工作,没有错误。
这里的谜团已经解开了,它是 Azure 的负载均衡器探测。我不知道为什么IP地址报告为在香港注册,但现在很有意义。我必须删除并重新创建端点才能更新端点状态并纠正问题。
这一切都记录在http://social.msdn.microsoft.com/Forums/silverlight/en-US/04589d2d-4acb-4f86-a2d0-957dc2a73a4f/endpoints-not-working-dns-scans-them
如果 168.63.129.16 没有在香港注册(那是访问我服务器的 ip),这将更容易弄清楚