通过SSL无法访问网站 [英] Can not access the website via SSL

问题描述

我们已经部署了我们的网站，实时Web服务器，在Windows Server，IIS 7.5。网站asp.net，.NET 4.5
我已经配置的网站绑定，以便本网站的HTTPS请求。结果
要求托管服务提供商开辟了443端口。

We have deployed our website to the live webserver, Windows Server, IIS 7.5. Website asp.net, .NET 4.5 I have configured the website bindings to allow https requests for this website.
Asked the hosting provider to open up the port 443.

我可以在全国各地的互联网访问该网站通过端口80，没有问题。 （ http://mysite.com ）
但我无法通过HTTPS访问，（ https://mysite.com ）。
但是我可以通过从服务器本身，这意味着SSL配置都很好SSL访问该站点（HTTPS - 本地主机）。

I can access the website over internet with port 80, no issues at all. (http://mysite.com) But I can not access via https, (https://mysite.com). But I can access the site via SSL from the server itself, that means SSL configurations are fine.(https - localhost)

不过，我可以远程登录（远程登录mysite.com 443），它响应GET通过telnet请求。
我已经重新检查证书并将其改为自签名的证书，问题依然存在。

But I can telnet (telnet mysite.com 443), it responds to GET request via telnet. I have rechecked the certificate and changed it to a self-signed certificate, issue is still there.

这些在IIS中没有被追踪请求记录为好，好像请求没有到达IIS。希望出了差错到达服务器之前。

These requests not being tracked in IIS logs as well, seems like the request is not reaching IIS. Hopefully something goes wrong before it reaches the server.

但是，当我访问该网站的 http://mysite.com:443 ，它的工作原理。

But, when I access the website as http://mysite.com:443, it works.

我米，这种行为有点糊涂了。显然，443端口是由托管公司开放。但事情是错的通过HTTPS，这是应该发送到端口443的请求请帮助的请求。

I m bit confused with this behaviour. Obviously the port 443 is open by the hosting company. But something is wrong with requests over HTTPS, which is supposed to send a request to port 443. Please help.

推荐答案

我终于找到了解决办法。问题是在托管服务提供商的负载均衡器的设置。我已要求从他们的问题，他们已经想通了这个问题。反正这对我来说是一个很好的学习曲线。而这方面的知识是要帮助别人。

Finally I found the solution. Issue was a setting in the load balancer of the hosting provider. I have asked the question from them and they have figured out the issue. Anyways it was a good learning curve for me. And this knowledge is going to help others.

防火墙已经允许两个HTTP / HTTPS，这就是为什么我们可以通过Telnet和运行一个GET /并且仍然从404页的IP地址的下拉内容。

The firewall was already allowing both HTTP/HTTPS, which is why we could telnet through and run a GET / and still pull down content from the 404 page of the IP address.

这似乎有适用于负载平衡器这将仅适用于HTTP工作HTTPS配置有一定的空间，让他们有残疾的。
当他们设置此为HTTP和HTTPS他们没有能够测试HTTPS，因为这样做将需要在IIS中的SSL证书 - 这看起来我们已经提供了

It appears there was a certain profile applied to the HTTPS configuration in the load balancer which would only work for HTTP, so they have disabled that. When they set this up for HTTP and HTTPS they were not able to test HTTPS, because to do so would require an SSL certificate in IIS - which it appears we have already provided.

谢谢大家对您对此有所帮助！

Thanks everyone for your help on this!

这篇关于通过SSL无法访问网站的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！