作者: aaaaaa 时间: 2013-01-21 19:52
1,https 在3.2以及后续版本里做了不少改进(改变),原https是有部分配置可以配置在records.config,新版里全部废掉放到ssl_multicert.config里了
2,CONFIG proxy.config.ssl.enabled INT 1;这个在反向代理里不是最关键的,而监听端口才是最重要的,你应该netstat看看是否已经监听443了,这个配置在3.0->3.2里也有很大变化,一定要看对应版本的records.config:如新版的里有这个:
# Deprecated.
# SSL ports should now be configured via proxy.config.http.server_ports
#CONFIG proxy.config.ssl.server_port INT 443
Jan 21 22:33:19 localhost traffic_server[7802]: NOTE: --- Server Starting ---
Jan 21 22:33:19 localhost traffic_server[7802]: NOTE: Server Version: Apache Traffic Server - traffic_server - 3.2.0 - (build # 0170 on Jan 17 2013 at 00:22:39)
Jan 21 22:33:19 localhost traffic_server[7802]: {0x4013e5b0} STATUS: opened /usr/local/var/log/trafficserver/diags.log
Jan 21 22:39:23 localhost traffic_manager[7792]: {0xb7f7e6e0} ERROR: [TrafficManager] ==> Cleaning up and reissuing signal #15
Jan 21 22:39:23 localhost traffic_manager[7792]: {0xb7f7e6e0} ERROR: (last system error 2: No such file or directory)
Jan 21 22:39:23 localhost traffic_manager[7792]: {0xb7f7e6e0} ERROR: [TrafficManager] ==> signal #15
Jan 21 22:39:23 localhost traffic_manager[7792]: {0xb7f7e6e0} ERROR: (last system error 2: No such file or directory)
Jan 21 22:39:28 localhost traffic_cop[8017]: --- Cop Starting [Version: Apache Traffic Server - traffic_cop - 3.2.0 - (build # 0170 on Jan 17 2013 at 00:23:19)] ---
Jan 21 22:39:28 localhost traffic_cop[8017]: traffic_manager not running, making sure traffic_server is dead
Jan 21 22:39:28 localhost traffic_cop[8017]: cop couldn't chown the file: '/usr/local/var/trafficserver/server.lock' for 'nobody' (99/99) : [2] No such file or directory
Jan 21 22:39:28 localhost traffic_cop[8017]: spawning traffic_manager
Jan 21 22:39:28 localhost traffic_manager[8019]: NOTE: --- Manager Starting ---
Jan 21 22:39:28 localhost traffic_manager[8019]: NOTE: Manager Version: Apache Traffic Server - traffic_manager - 3.2.0 - (build # 0170 on Jan 17 2013 at 00:20:59)
Jan 21 22:39:28 localhost traffic_manager[8019]: NOTE: RLIMIT_NOFILE(7):cur(30000),max(30000)
Jan 21 22:39:28 localhost traffic_manager[8019]: {0xb7fc06e0} STATUS: opened /usr/local/var/log/trafficserver/manager.log
Jan 21 22:39:30 localhost traffic_server[8028]: NOTE: --- Server Starting ---
Jan 21 22:39:30 localhost traffic_server[8028]: NOTE: Server Version: Apache Traffic Server - traffic_server - 3.2.0 - (build # 0170 on Jan 17 2013 at 00:22:39)
Jan 21 22:39:30 localhost traffic_server[8028]: {0x4013e5b0} STATUS: opened /usr/local/var/log/trafficserver/diags.log
后台/usr/local/var/log/trafficserver下的错误信息:
20130121.22h56m32s RESPONSE: sent 192.168.1.171 status 502 (Tunnel Connection Failed) for '202.101.172.22:443/'
20130121.23h45m26s RESPONSE: sent 192.168.1.171 status 502 (Tunnel Connection Failed) for '192.168.1.9:443/'
20130121.23h46m04s RESPONSE: sent 192.168.1.171 status 502 (Tunnel Connection Failed) for 'talk.google.com:443/'
20130121.23h46m04s RESPONSE: sent 192.168.1.171 status 403 (Tunnel Forbidden) for 'talkx.l.google.com:5222/'
20130121.23h46m11s RESPONSE: sent 192.168.1.171 status 403 (Tunnel Forbidden) for 'talkx.l.google.com:5222/'
20130121.23h46m32s RESPONSE: sent 192.168.1.171 status 502 (Tunnel Connection Failed) for 'talk.google.com:443/'
20130121.23h46m32s RESPONSE: sent 192.168.1.171 status 502 (Tunnel Connection Failed) for 'mail.google.com:443/'
20130121.23h46m32s RESPONSE: sent 192.168.1.171 status 502 (Tunnel Connection Failed) for 'mail.google.com:443/'