skeith22
1 year ago
167
7
Servers

Let's Encrypt ERR_SSL_VERSION_OR_CIPHER_MISMATCH

Posted 1 year ago by skeith22

Digital Ocean

Ubuntu 16.04.04 LTS NGINX 1.14.0 MYSQL 8.0+ PHP 7.2+

I have 2 domains

1. test.domain.com
2. admin.test.domain.com

my test.domain.com is working fine after creating a certification but admin.test.domain.com is not.

Have anyone encountered this before after newly creating a certification?

here is my server block in NGINX

test.domain.com IS WORKING FINE.

server {
    root "/var/www/beta/latest/public";
    server_name test.domain.com;

    index index.php;

    access_log /var/log/nginx/beta_access_log;
    error_log /var/log/nginx/beta_error_log;

    client_max_body_size 2M;

    location / {
        try_files $uri $uri/ /index.php?$query_string;
    }

    location ~ \.php$ {
        include /etc/nginx/fastcgi.conf;
        fastcgi_pass unix:/run/php/php7.2-fpm.sock;
    }

    location ~ /\.ht {
        deny all;
    }

    listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/test.domain.com/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/test.domain.com/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}

server {
    if ($host = test.domain.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


    listen 80;
    server_name test.domain.com;
    return 404; # managed by Certbot
}

Here is for admin.test.domain.com is not working

**NOTE HTTP is working fine. HTTPS is not.

This site can’t provide a secure connection

admin.test.domain.com uses an unsupported protocol.

ERR_SSL_VERSION_OR_CIPHER_MISMATCH

server {
    root "/var/www/beta/latest/public";
    server_name admin.test.domain.com;

    index index.php;

    access_log /var/log/nginx/admin.test_access_log;
    error_log /var/log/nginx/admin.test_error_log;

    client_max_body_size 2M;

    location / {
        try_files $uri $uri/ /index.php?$query_string;
    }

    location ~ \.php$ {
        include /etc/nginx/fastcgi.conf;
        fastcgi_pass unix:/run/php/php7.2-fpm.sock;
    }

    location ~ /\.ht {
        deny all;
    }

    # managed by Certbot
    listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/admin.test.domain.com/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/admin.test.domain.com/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}

server {
    if ($host = admin.test.domain.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot

    server_name admin.test.domain.com;
    listen 80;
    return 404; # managed by Certbot
}

removing the SSL Cert and returning to HTTP is working fine.

Please sign in or create an account to participate in this conversation.