Horas rompi\u00e9ndome la cabeza:
Que si Cloudflare, que si el SSL, que si el firewall, que si la IP p\u00fablica cambi\u00f3 m\u00e1gicamente, que si los puertos, que si los scripts, que si los servicios no responden…<\/p>\n\n\n\n
\u00a1TODO estaba bien ayer y de pronto, caos total!<\/strong><\/p>\n\n\n\n Y al final\u2026 \ud83d\udd0d Causa<\/strong>:<\/p>\n\n\n\n En la versi\u00f3n reciente de Apache, el equipo lanz\u00f3 correcciones de seguridad (CVE) que afectan la funcionalidad Apache + Nginx. \ud83d\udca1 Plesk est\u00e1 preparando un parche<\/strong> para versiones 18.0.70 y 18.0.71. \ud83d\udccc Mientras tanto, si te pasa, aqu\u00ed est\u00e1 el FIX que me salv\u00f3 el d\u00eda (y los nervios):<\/p>\n\n\n\n \ud83e\uddd8\u200d\u2642\ufe0f Y s\u00ed… despu\u00e9s de eso, todo volvi\u00f3 a la normalidad<\/strong>. Por ahora.<\/p>\n","protected":false},"excerpt":{"rendered":" Horas rompi\u00e9ndome la cabeza:Que si Cloudflare, que si el SSL, que si el firewall, que si la IP p\u00fablica cambi\u00f3 m\u00e1gicamente, que si los puertos,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"pgc_sgb_lightbox_settings":"","footnotes":""},"categories":[7,20],"tags":[32],"class_list":["post-1288","post","type-post","status-publish","format-standard","hentry","category-guias","category-notas-del-administrador","tag-notas-del-administrador"],"menu_order":0,"_links":{"self":[{"href":"https:\/\/on-us.net\/index.php?rest_route=\/wp\/v2\/posts\/1288","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/on-us.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/on-us.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/on-us.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/on-us.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1288"}],"version-history":[{"count":1,"href":"https:\/\/on-us.net\/index.php?rest_route=\/wp\/v2\/posts\/1288\/revisions"}],"predecessor-version":[{"id":1289,"href":"https:\/\/on-us.net\/index.php?rest_route=\/wp\/v2\/posts\/1288\/revisions\/1289"}],"wp:attachment":[{"href":"https:\/\/on-us.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1288"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/on-us.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1288"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/on-us.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1288"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\ud83d\udca3 Resulta que la \u00faltima actualizaci\u00f3n de Apache<\/strong> rompi\u00f3 el proxy con Nginx<\/strong>.<\/p>\n\n\n\n\n
Ahora Apache ya no acepta conexiones HTTPS desde Nginx si no se pasa el nombre del servidor v\u00eda SNI (Server Name Indication)<\/strong>\u2026
Y por defecto, Nginx no lo hace.<\/p>\n<\/blockquote>\n\n\n\n
Puedes hacer clic en \u201cSeguir\u201d en el art\u00edculo oficial de soporte para estar al tanto de los cambios.<\/p>\n\n\n\nsudo bash -c 'echo -e \"proxy_ssl_server_name on;\\nproxy_ssl_name \\$host;\\nproxy_ssl_session_reuse off;\" > \/etc\/nginx\/conf.d\/fixssl.conf && systemctl restart nginx'
<\/code><\/pre>\n\n\n\n