teratail header banner
teratail header banner
質問するログイン新規登録

質問編集履歴

1

情報の追加

2020/10/09 06:26

投稿

GenkiSugiyama
GenkiSugiyama

スコア86

title CHANGED
File without changes
body CHANGED
@@ -5,9 +5,142 @@
5
5
  ## 行なったこと
6
6
  [こちら](https://blog.apar.jp/linux/3555/#toc5)の記事のHTTPSの設定箇所にならって設定を行いました。
7
7
 
8
- ```gitlab.rb```の記述も変更し、`gitlab-ctl reconfigure`と`sudo gitlab-ctl restart nginx`で設定の反映、nginxの再起動を行いましたが、上記のエラーでブラウザに表示されません。
8
+ `gitlab.rb`の記述も変更し、`gitlab-ctl reconfigure`と`sudo gitlab-ctl restart nginx`で設定の反映、nginxの再起動を行いましたが、上記のエラーでブラウザに表示されません。
9
9
 
10
10
 
11
11
  解決にお力を貸していただけると大変助かります。
12
12
 
13
- お願いいたします。
13
+ お願いいたします。
14
+
15
+ 【firewall設定】
16
+ ```
17
+ [root@localhost ~]# firewall-cmd --list-all
18
+ public (active)
19
+ target: default
20
+ icmp-block-inversion: no
21
+ interfaces: eth0
22
+ sources:
23
+ services: dhcpv6-client http https ssh
24
+ ports: 443/tcp
25
+ protocols:
26
+ masquerade: no
27
+ forward-ports:
28
+ source-ports:
29
+ icmp-blocks:
30
+ rich rules:
31
+ ```
32
+
33
+ 【iptables】
34
+ ```
35
+ [root@localhost ~]# iptables -nL
36
+ Chain INPUT (policy ACCEPT)
37
+ target prot opt source destination
38
+ ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
39
+ ACCEPT all -- anywhere anywhere
40
+ INPUT_direct all -- anywhere anywhere
41
+ INPUT_ZONES_SOURCE all -- anywhere anywhere
42
+ INPUT_ZONES all -- anywhere anywhere
43
+ DROP all -- anywhere anywhere ctstate INVALID
44
+ REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
45
+
46
+ Chain FORWARD (policy ACCEPT)
47
+ target prot opt source destination
48
+ ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
49
+ ACCEPT all -- anywhere anywhere
50
+ FORWARD_direct all -- anywhere anywhere
51
+ FORWARD_IN_ZONES_SOURCE all -- anywhere anywhere
52
+ FORWARD_IN_ZONES all -- anywhere anywhere
53
+ FORWARD_OUT_ZONES_SOURCE all -- anywhere anywhere
54
+ FORWARD_OUT_ZONES all -- anywhere anywhere
55
+ DROP all -- anywhere anywhere ctstate INVALID
56
+ REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
57
+
58
+ Chain OUTPUT (policy ACCEPT)
59
+ target prot opt source destination
60
+ ACCEPT all -- anywhere anywhere
61
+ OUTPUT_direct all -- anywhere anywhere
62
+
63
+ Chain FORWARD_IN_ZONES (1 references)
64
+ target prot opt source destination
65
+ FWDI_public all -- anywhere anywhere [goto]
66
+ FWDI_public all -- anywhere anywhere [goto]
67
+
68
+ Chain FORWARD_IN_ZONES_SOURCE (1 references)
69
+ target prot opt source destination
70
+
71
+ Chain FORWARD_OUT_ZONES (1 references)
72
+ target prot opt source destination
73
+ FWDO_public all -- anywhere anywhere [goto]
74
+ FWDO_public all -- anywhere anywhere [goto]
75
+
76
+ Chain FORWARD_OUT_ZONES_SOURCE (1 references)
77
+ target prot opt source destination
78
+
79
+ Chain FORWARD_direct (1 references)
80
+ target prot opt source destination
81
+
82
+ Chain FWDI_public (2 references)
83
+ target prot opt source destination
84
+ FWDI_public_log all -- anywhere anywhere
85
+ FWDI_public_deny all -- anywhere anywhere
86
+ FWDI_public_allow all -- anywhere anywhere
87
+ ACCEPT icmp -- anywhere anywhere
88
+
89
+ Chain FWDI_public_allow (1 references)
90
+ target prot opt source destination
91
+
92
+ Chain FWDI_public_deny (1 references)
93
+ target prot opt source destination
94
+
95
+ Chain FWDI_public_log (1 references)
96
+ target prot opt source destination
97
+
98
+ Chain FWDO_public (2 references)
99
+ target prot opt source destination
100
+ FWDO_public_log all -- anywhere anywhere
101
+ FWDO_public_deny all -- anywhere anywhere
102
+ FWDO_public_allow all -- anywhere anywhere
103
+
104
+ Chain FWDO_public_allow (1 references)
105
+ target prot opt source destination
106
+
107
+ Chain FWDO_public_deny (1 references)
108
+ target prot opt source destination
109
+
110
+ Chain FWDO_public_log (1 references)
111
+ target prot opt source destination
112
+
113
+ Chain INPUT_ZONES (1 references)
114
+ target prot opt source destination
115
+ IN_public all -- anywhere anywhere [goto]
116
+ IN_public all -- anywhere anywhere [goto]
117
+
118
+ Chain INPUT_ZONES_SOURCE (1 references)
119
+ target prot opt source destination
120
+
121
+ Chain INPUT_direct (1 references)
122
+ target prot opt source destination
123
+
124
+ Chain IN_public (2 references)
125
+ target prot opt source destination
126
+ IN_public_log all -- anywhere anywhere
127
+ IN_public_deny all -- anywhere anywhere
128
+ IN_public_allow all -- anywhere anywhere
129
+ ACCEPT icmp -- anywhere anywhere
130
+
131
+ Chain IN_public_allow (1 references)
132
+ target prot opt source destination
133
+ ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ctstate NEW,UNTRACKED
134
+ ACCEPT tcp -- anywhere anywhere tcp dpt:http ctstateNEW,UNTRACKED
135
+ ACCEPT tcp -- anywhere anywhere tcp dpt:https ctstate NEW,UNTRACKED
136
+ ACCEPT tcp -- anywhere anywhere tcp dpt:https ctstate NEW,UNTRACKED
137
+
138
+ Chain IN_public_deny (1 references)
139
+ target prot opt source destination
140
+
141
+ Chain IN_public_log (1 references)
142
+ target prot opt source destination
143
+
144
+ Chain OUTPUT_direct (1 references)
145
+ target prot opt source destination
146
+ ```