gost
gost copied to clipboard
ginuerzh
https代理,提示unknown certificate
服务端:gost -L=https://@:1080 客户端是chrome浏览器,用的SwitchyOmega,配置了https代理,但打不开网页,服务器端会提示未知证书,这个怎么办呢? 2023/02/10 11:26:46 http.go:99: [http] : remote error: tls: unknown certificate 2023/02/10 11:26:46 http.go:99: [http] : remote error: tls: unknown certificate 2023/02/10 11:26:47 http.go:99: [http] : remote error: tls: unknown certificate
请教,使用了受信任的证书,使用acme脚本签发,下面是服务器配置,但是依然有类似的error,服务器端配置如下:
- name: service-https
addr: ":8338"
handler:
type: http2
auth:
username: uid
password: pwd
metadata:
cert: /app/xxx.cer
key: /app/xxx.key
knock: www.google.com
probeResistance: file:/var/www/html/index.html
listener:
type: http2
metadata:
cert: /app/xxx.cer
key: /app/xxx.key
knock: www.google.com
probeResistance: file:/var/www/html/index.html
提示错误内容如下:
gost[50898]: 2023/xx/xx 23:xx:xx http: TLS handshake error from xx.xx.xx.230:58844: remote error: tls: unknown certificate
cert.pem和key.pem就行。你试试看
caFile: ca.pem 把这个删掉。
不是很明白,只用key.pem吗
服务器上依然提示r emote error: tls: unknown certificate
我试了用默认证书 试了用域名加上证书也是如此
证书设置有误:
gost -L "http2://:8338?certFile=xxx.crt&keyFile=xxx.key"
或
services:
- name: service-0
addr: :8338
handler:
type: http2
listener:
type: http2
tls:
certFile: xxx.crt
keyFile: xxx.key
@ginuerzh 大佬,我反馈的是使用默认证书(就是不加任何证书参数),client会报这个错误“http.go:99: [http] : remote error: tls: unknown certificate”
服务端: gost -L=https://@:1080
@PHCSJC switchyomega只接受可信证书,默认证书不能用。
有可信证书的情况下, 使用switchyomega的电脑需要安装证书吗?
你好,我本地 gost -L https://@:8080 -F https://xxxxx.com?auth=xxxx&certFile=xxx.pem&&keyFile=xxxx.key 报: main.go:90: listen tcp :8080: bind: Only one usage of each socket address (protocol/network address/port) is normally permitted. 我的需求是想把远程的https + auth 转成本地的https
