Hello, This kind of question has been asked several times, and no solution found for me. I have installed apache2 on a raspberry pi, everything is working (mail, php,mysql, phpbb) exept port 443 : it is closed : sudo nmap 192.168.2.91 -> cannot see port 443 telnet 127.0.0.1 443 on my server : telnet: Unable to connect to remote host: Connection refused openssl s_client -connect localhost:443 Connexion refused errno=111 I did : generate certificates with openssl edit 000-default-ssl.conf and default-ssl.conf to adapt my conf. sudo a2enmod ssl sudo service apache2 restart In /etc/apache2/ports.conf, I can read Listen 80 <IfModule ssl_module.c> Listen 443 </IfModule> I cannot understand why my 443 port is closed !
I cannot read my message I wrote : Hello, This kind of question has been asked several times, and no solution found for me. I have installed apache2 on a raspberry pi, everything is working (mail, php,mysql, phpbb) exept port 443 : it is closed : sudo nmap 192.168.2.91 -> cannot see port 443 telnet 127.0.0.1 443 on my server : telnet: Unable to connect to remote host: Connection refused openssl s_client -connect localhost:443 Connexion refused errno=111 I did : generate certificates with openssl edit 000-default-ssl.conf and default-ssl.conf to adapt my conf. sudo a2enmod ssl sudo service apache2 restart In /etc/apache2/ports.conf, I can read Listen 80 <IfModule ssl_module.c> Listen 443 </IfModule> I cannot understand why my 443 port is closed !
Have you opened it in your firewall? http://simonthepiman.com/how_to_setup_your_pi_for_the_internet.php https://blog.onetwentyseven001.com/iptables-security-part-ii/#.WZddTygjFaQ could help, but not knowing what you have already tried in regards to ports themselves ..
Thank you Blank for helping. I cannot check everything explained in your above links : sudo vi /etc/network/interfaces gives no answer, no error sudo iptables-save does not give what I wrote in /etc/network/iptables ( I did sudo iptables-restore /etc/network/iptables) It's like other config files are used. In my box, ports 443 and 80 are opened and redirected to the raspberrypi. I can reach the raspberry from Tor browser and my noip domain name. Error with https locally or from the internet ! What I did : back up files and database format sd card and install Raspbian Stretch Lite image update / upgrade Add a user and delete pi user install apache2 and telnet (openssl is installed with apache2) install and configure proftpd install and configure php7.1 install and configure mariadb install and configure exim4 install and configure phpmy admin create my database and restore the backup upload files via filezilla check my phpbb forum is Ok create certificates with help of https://the-bionic-cyclist.co.uk/2017/03/22/setup-ssl-on-a-raspberry-pi-in-2-minutes/ follow your link : http://simonthepiman.com/how_to_setup_your_pi_for_the_internet.php Same problem : https : //192.168.2. myraspberryip /index.html : error / unsecure connexion or, with Tor browser : https:// mydomain.fr /index.html : error / unsecure connexion (I've added spaces in above links because this forum rejects those lines ... and I cannot post my reply) sudo vi /etc/network/interfaces gives no answer, no error sudo iptables-save does not give what I wrote in /etc/network/iptables ( I did sudo iptables-restore /etc/network/iptables) So, what I did before answering today : install apache2, php7.1, mariadb phpmyadmim, exim4, proftpd, and setup ssl on my Archlinux system. Then iptables Same problem : https :// localhost / index.html : error / unsecure connexion Can I check https locally or is it only working from the outside (I can simulate "outside" with Tor Browser) I'm missing something somewhere : are the pages I used outdated today or are they more probably not complete (missing informations)
I can answer first question : yes, https can work locally. I try to generate a new local certificate and configure apache for it ... About iptables : right now, iptables are not really important as my raspberry is not in the DMZ of my internet box. Only ports 80 and 443 are redirected to my pi3 ! Am I wrong about this ?
Ok, it does work locally after accepting my own certificate. i'll try from the outside next week end.