teratail
回答率
85.69%
質問するログイン新規登録
トップに関する質問GitLabへhttps通信ができない(「接続が拒否されました」と表示される)

編集履歴

質問編集履歴

1

情報の追加

2020/10/09 06:26

投稿

GenkiSugiyama
GenkiSugiyama

スコア86

test CHANGED
File without changes
test CHANGED
@@ -12,7 +12,7 @@
12
12
 
13
13
 
14
14
 
15
- ```gitlab.rb```の記述も変更し、`gitlab-ctl reconfigure`と`sudo gitlab-ctl restart nginx`で設定の反映、nginxの再起動を行いましたが、上記のエラーでブラウザに表示されません。
15
+ `gitlab.rb`の記述も変更し、`gitlab-ctl reconfigure`と`sudo gitlab-ctl restart nginx`で設定の反映、nginxの再起動を行いましたが、上記のエラーでブラウザに表示されません。
16
16
 
17
17
 
18
18
 
@@ -23,3 +23,269 @@
23
23
 
24
24
 
25
25
  お願いいたします。
26
+
27
+
28
+
29
+ 【firewall設定】
30
+
31
+ ```
32
+
33
+ [root@localhost ~]# firewall-cmd --list-all
34
+
35
+ public (active)
36
+
37
+ target: default
38
+
39
+ icmp-block-inversion: no
40
+
41
+ interfaces: eth0
42
+
43
+ sources:
44
+
45
+ services: dhcpv6-client http https ssh
46
+
47
+ ports: 443/tcp
48
+
49
+ protocols:
50
+
51
+ masquerade: no
52
+
53
+ forward-ports:
54
+
55
+ source-ports:
56
+
57
+ icmp-blocks:
58
+
59
+ rich rules:
60
+
61
+ ```
62
+
63
+
64
+
65
+ 【iptables】
66
+
67
+ ```
68
+
69
+ [root@localhost ~]# iptables -nL
70
+
71
+ Chain INPUT (policy ACCEPT)
72
+
73
+ target prot opt source destination
74
+
75
+ ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
76
+
77
+ ACCEPT all -- anywhere anywhere
78
+
79
+ INPUT_direct all -- anywhere anywhere
80
+
81
+ INPUT_ZONES_SOURCE all -- anywhere anywhere
82
+
83
+ INPUT_ZONES all -- anywhere anywhere
84
+
85
+ DROP all -- anywhere anywhere ctstate INVALID
86
+
87
+ REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
88
+
89
+
90
+
91
+ Chain FORWARD (policy ACCEPT)
92
+
93
+ target prot opt source destination
94
+
95
+ ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
96
+
97
+ ACCEPT all -- anywhere anywhere
98
+
99
+ FORWARD_direct all -- anywhere anywhere
100
+
101
+ FORWARD_IN_ZONES_SOURCE all -- anywhere anywhere
102
+
103
+ FORWARD_IN_ZONES all -- anywhere anywhere
104
+
105
+ FORWARD_OUT_ZONES_SOURCE all -- anywhere anywhere
106
+
107
+ FORWARD_OUT_ZONES all -- anywhere anywhere
108
+
109
+ DROP all -- anywhere anywhere ctstate INVALID
110
+
111
+ REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
112
+
113
+
114
+
115
+ Chain OUTPUT (policy ACCEPT)
116
+
117
+ target prot opt source destination
118
+
119
+ ACCEPT all -- anywhere anywhere
120
+
121
+ OUTPUT_direct all -- anywhere anywhere
122
+
123
+
124
+
125
+ Chain FORWARD_IN_ZONES (1 references)
126
+
127
+ target prot opt source destination
128
+
129
+ FWDI_public all -- anywhere anywhere [goto]
130
+
131
+ FWDI_public all -- anywhere anywhere [goto]
132
+
133
+
134
+
135
+ Chain FORWARD_IN_ZONES_SOURCE (1 references)
136
+
137
+ target prot opt source destination
138
+
139
+
140
+
141
+ Chain FORWARD_OUT_ZONES (1 references)
142
+
143
+ target prot opt source destination
144
+
145
+ FWDO_public all -- anywhere anywhere [goto]
146
+
147
+ FWDO_public all -- anywhere anywhere [goto]
148
+
149
+
150
+
151
+ Chain FORWARD_OUT_ZONES_SOURCE (1 references)
152
+
153
+ target prot opt source destination
154
+
155
+
156
+
157
+ Chain FORWARD_direct (1 references)
158
+
159
+ target prot opt source destination
160
+
161
+
162
+
163
+ Chain FWDI_public (2 references)
164
+
165
+ target prot opt source destination
166
+
167
+ FWDI_public_log all -- anywhere anywhere
168
+
169
+ FWDI_public_deny all -- anywhere anywhere
170
+
171
+ FWDI_public_allow all -- anywhere anywhere
172
+
173
+ ACCEPT icmp -- anywhere anywhere
174
+
175
+
176
+
177
+ Chain FWDI_public_allow (1 references)
178
+
179
+ target prot opt source destination
180
+
181
+
182
+
183
+ Chain FWDI_public_deny (1 references)
184
+
185
+ target prot opt source destination
186
+
187
+
188
+
189
+ Chain FWDI_public_log (1 references)
190
+
191
+ target prot opt source destination
192
+
193
+
194
+
195
+ Chain FWDO_public (2 references)
196
+
197
+ target prot opt source destination
198
+
199
+ FWDO_public_log all -- anywhere anywhere
200
+
201
+ FWDO_public_deny all -- anywhere anywhere
202
+
203
+ FWDO_public_allow all -- anywhere anywhere
204
+
205
+
206
+
207
+ Chain FWDO_public_allow (1 references)
208
+
209
+ target prot opt source destination
210
+
211
+
212
+
213
+ Chain FWDO_public_deny (1 references)
214
+
215
+ target prot opt source destination
216
+
217
+
218
+
219
+ Chain FWDO_public_log (1 references)
220
+
221
+ target prot opt source destination
222
+
223
+
224
+
225
+ Chain INPUT_ZONES (1 references)
226
+
227
+ target prot opt source destination
228
+
229
+ IN_public all -- anywhere anywhere [goto]
230
+
231
+ IN_public all -- anywhere anywhere [goto]
232
+
233
+
234
+
235
+ Chain INPUT_ZONES_SOURCE (1 references)
236
+
237
+ target prot opt source destination
238
+
239
+
240
+
241
+ Chain INPUT_direct (1 references)
242
+
243
+ target prot opt source destination
244
+
245
+
246
+
247
+ Chain IN_public (2 references)
248
+
249
+ target prot opt source destination
250
+
251
+ IN_public_log all -- anywhere anywhere
252
+
253
+ IN_public_deny all -- anywhere anywhere
254
+
255
+ IN_public_allow all -- anywhere anywhere
256
+
257
+ ACCEPT icmp -- anywhere anywhere
258
+
259
+
260
+
261
+ Chain IN_public_allow (1 references)
262
+
263
+ target prot opt source destination
264
+
265
+ ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ctstate NEW,UNTRACKED
266
+
267
+ ACCEPT tcp -- anywhere anywhere tcp dpt:http ctstateNEW,UNTRACKED
268
+
269
+ ACCEPT tcp -- anywhere anywhere tcp dpt:https ctstate NEW,UNTRACKED
270
+
271
+ ACCEPT tcp -- anywhere anywhere tcp dpt:https ctstate NEW,UNTRACKED
272
+
273
+
274
+
275
+ Chain IN_public_deny (1 references)
276
+
277
+ target prot opt source destination
278
+
279
+
280
+
281
+ Chain IN_public_log (1 references)
282
+
283
+ target prot opt source destination
284
+
285
+
286
+
287
+ Chain OUTPUT_direct (1 references)
288
+
289
+ target prot opt source destination
290
+
291
+ ```