質問編集履歴
1
情報の追加
title
CHANGED
File without changes
|
body
CHANGED
@@ -5,9 +5,142 @@
|
|
5
5
|
## 行なったこと
|
6
6
|
[こちら](https://blog.apar.jp/linux/3555/#toc5)の記事のHTTPSの設定箇所にならって設定を行いました。
|
7
7
|
|
8
|
-
`
|
8
|
+
`gitlab.rb`の記述も変更し、`gitlab-ctl reconfigure`と`sudo gitlab-ctl restart nginx`で設定の反映、nginxの再起動を行いましたが、上記のエラーでブラウザに表示されません。
|
9
9
|
|
10
10
|
|
11
11
|
解決にお力を貸していただけると大変助かります。
|
12
12
|
|
13
|
-
お願いいたします。
|
13
|
+
お願いいたします。
|
14
|
+
|
15
|
+
【firewall設定】
|
16
|
+
```
|
17
|
+
[root@localhost ~]# firewall-cmd --list-all
|
18
|
+
public (active)
|
19
|
+
target: default
|
20
|
+
icmp-block-inversion: no
|
21
|
+
interfaces: eth0
|
22
|
+
sources:
|
23
|
+
services: dhcpv6-client http https ssh
|
24
|
+
ports: 443/tcp
|
25
|
+
protocols:
|
26
|
+
masquerade: no
|
27
|
+
forward-ports:
|
28
|
+
source-ports:
|
29
|
+
icmp-blocks:
|
30
|
+
rich rules:
|
31
|
+
```
|
32
|
+
|
33
|
+
【iptables】
|
34
|
+
```
|
35
|
+
[root@localhost ~]# iptables -nL
|
36
|
+
Chain INPUT (policy ACCEPT)
|
37
|
+
target prot opt source destination
|
38
|
+
ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
|
39
|
+
ACCEPT all -- anywhere anywhere
|
40
|
+
INPUT_direct all -- anywhere anywhere
|
41
|
+
INPUT_ZONES_SOURCE all -- anywhere anywhere
|
42
|
+
INPUT_ZONES all -- anywhere anywhere
|
43
|
+
DROP all -- anywhere anywhere ctstate INVALID
|
44
|
+
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
|
45
|
+
|
46
|
+
Chain FORWARD (policy ACCEPT)
|
47
|
+
target prot opt source destination
|
48
|
+
ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
|
49
|
+
ACCEPT all -- anywhere anywhere
|
50
|
+
FORWARD_direct all -- anywhere anywhere
|
51
|
+
FORWARD_IN_ZONES_SOURCE all -- anywhere anywhere
|
52
|
+
FORWARD_IN_ZONES all -- anywhere anywhere
|
53
|
+
FORWARD_OUT_ZONES_SOURCE all -- anywhere anywhere
|
54
|
+
FORWARD_OUT_ZONES all -- anywhere anywhere
|
55
|
+
DROP all -- anywhere anywhere ctstate INVALID
|
56
|
+
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
|
57
|
+
|
58
|
+
Chain OUTPUT (policy ACCEPT)
|
59
|
+
target prot opt source destination
|
60
|
+
ACCEPT all -- anywhere anywhere
|
61
|
+
OUTPUT_direct all -- anywhere anywhere
|
62
|
+
|
63
|
+
Chain FORWARD_IN_ZONES (1 references)
|
64
|
+
target prot opt source destination
|
65
|
+
FWDI_public all -- anywhere anywhere [goto]
|
66
|
+
FWDI_public all -- anywhere anywhere [goto]
|
67
|
+
|
68
|
+
Chain FORWARD_IN_ZONES_SOURCE (1 references)
|
69
|
+
target prot opt source destination
|
70
|
+
|
71
|
+
Chain FORWARD_OUT_ZONES (1 references)
|
72
|
+
target prot opt source destination
|
73
|
+
FWDO_public all -- anywhere anywhere [goto]
|
74
|
+
FWDO_public all -- anywhere anywhere [goto]
|
75
|
+
|
76
|
+
Chain FORWARD_OUT_ZONES_SOURCE (1 references)
|
77
|
+
target prot opt source destination
|
78
|
+
|
79
|
+
Chain FORWARD_direct (1 references)
|
80
|
+
target prot opt source destination
|
81
|
+
|
82
|
+
Chain FWDI_public (2 references)
|
83
|
+
target prot opt source destination
|
84
|
+
FWDI_public_log all -- anywhere anywhere
|
85
|
+
FWDI_public_deny all -- anywhere anywhere
|
86
|
+
FWDI_public_allow all -- anywhere anywhere
|
87
|
+
ACCEPT icmp -- anywhere anywhere
|
88
|
+
|
89
|
+
Chain FWDI_public_allow (1 references)
|
90
|
+
target prot opt source destination
|
91
|
+
|
92
|
+
Chain FWDI_public_deny (1 references)
|
93
|
+
target prot opt source destination
|
94
|
+
|
95
|
+
Chain FWDI_public_log (1 references)
|
96
|
+
target prot opt source destination
|
97
|
+
|
98
|
+
Chain FWDO_public (2 references)
|
99
|
+
target prot opt source destination
|
100
|
+
FWDO_public_log all -- anywhere anywhere
|
101
|
+
FWDO_public_deny all -- anywhere anywhere
|
102
|
+
FWDO_public_allow all -- anywhere anywhere
|
103
|
+
|
104
|
+
Chain FWDO_public_allow (1 references)
|
105
|
+
target prot opt source destination
|
106
|
+
|
107
|
+
Chain FWDO_public_deny (1 references)
|
108
|
+
target prot opt source destination
|
109
|
+
|
110
|
+
Chain FWDO_public_log (1 references)
|
111
|
+
target prot opt source destination
|
112
|
+
|
113
|
+
Chain INPUT_ZONES (1 references)
|
114
|
+
target prot opt source destination
|
115
|
+
IN_public all -- anywhere anywhere [goto]
|
116
|
+
IN_public all -- anywhere anywhere [goto]
|
117
|
+
|
118
|
+
Chain INPUT_ZONES_SOURCE (1 references)
|
119
|
+
target prot opt source destination
|
120
|
+
|
121
|
+
Chain INPUT_direct (1 references)
|
122
|
+
target prot opt source destination
|
123
|
+
|
124
|
+
Chain IN_public (2 references)
|
125
|
+
target prot opt source destination
|
126
|
+
IN_public_log all -- anywhere anywhere
|
127
|
+
IN_public_deny all -- anywhere anywhere
|
128
|
+
IN_public_allow all -- anywhere anywhere
|
129
|
+
ACCEPT icmp -- anywhere anywhere
|
130
|
+
|
131
|
+
Chain IN_public_allow (1 references)
|
132
|
+
target prot opt source destination
|
133
|
+
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ctstate NEW,UNTRACKED
|
134
|
+
ACCEPT tcp -- anywhere anywhere tcp dpt:http ctstateNEW,UNTRACKED
|
135
|
+
ACCEPT tcp -- anywhere anywhere tcp dpt:https ctstate NEW,UNTRACKED
|
136
|
+
ACCEPT tcp -- anywhere anywhere tcp dpt:https ctstate NEW,UNTRACKED
|
137
|
+
|
138
|
+
Chain IN_public_deny (1 references)
|
139
|
+
target prot opt source destination
|
140
|
+
|
141
|
+
Chain IN_public_log (1 references)
|
142
|
+
target prot opt source destination
|
143
|
+
|
144
|
+
Chain OUTPUT_direct (1 references)
|
145
|
+
target prot opt source destination
|
146
|
+
```
|