config
Self-signed certificate rejected
self.signed certificate|DEPTH_ZERO_SELF_SIGNED_CERT|unable to verify the first certificate
Fixes
- 1.Replace with a certificate from a trusted CA (Let's Encrypt is free)
- 2.For internal services, add the self-signed CA to the client's trust store
- 3.Include the full certificate chain (intermediate certs) in the server's certificate file
sslself-signedtrust
Related Errors
config3 fixes
Nginx 502 Bad Gateway - upstream unavailable
502 Bad Gateway|upstream prematurely closed connection
- •Verify the upstream server is running and listening on the expected address/port
- •Increase proxy_read_timeout and proxy_connect_timeout for slow backends
config3 fixes
Nginx 504 Gateway Timeout
504 Gateway Time-?out|upstream timed out.*reading response
- •Increase proxy_read_timeout (default 60s): proxy_read_timeout 300s
- •Optimize the backend endpoint that's taking too long to respond
config3 fixes
Nginx redirect loop
rewrite or internal redirection cycle|return 301.*too many redirects
- •Check for conflicting rewrite rules that redirect back and forth (HTTP→HTTPS→HTTP)
- •Use 'return 301' instead of 'rewrite' for simple redirects to avoid rule interaction