通过 letsecrypt 生成一些证书,
然后 tomcat 里配置 如下
<Connector port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8433" />
<Connector port="8449" protocol="org.apache.coyote.http11.Http11Protocol"
maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
keystoreFile="/root/tmp/letsTemp/MyDSKeyStore.jks" keystorePass="11111111"
clientAuth="false" sslProtocol="TLS" />
https://域名:8449 无法访问,8080 的 http 访问正常。。8449 端口可以连通,,这个问题咋排查,
参考的链接:
https://www.centos.bz/2016/10/install-lets-encrypt-to-create-ssl-certificates/ https://my.oschina.net/chaon/blog/717902