NGINX load balancing: upstream ssl name

nginx load-balancing

Solution 1:

According to nginx developers you need to share the same TLS certificate between all backend servers. See the following bug report https://trac.nginx.org/nginx/ticket/1307#comment:5

Solution 2:

ngx_http_proxy_module directive you need is proxy_ssl_name

You can fix that issue with several ways:

  1. Try set it proxy_ssl_name $proxy_host;

  2. Use wildcard ssl certificate.

  3. If it in internal network use http connection for upstream without excess double encryption and allow http connect on upstream side only from your reverse proxy server

  4. Place the same upstream certificate on each node and set it for one expected name proxy_ssl_name backend.example.com;

Related

HttpServletRequest - setCharacterEncoding seems to do nothing
DoubleTap in android [duplicate]
Why is ValueType.GetHashCode() implemented like it is?
Make cell readonly in Kendo Grid if condition is met
Where do I have to place the JDBC driver for Tomcat's connection pool?
Exporting a C++ class from a DLL
Swift protocol extension method is called instead of method implemented in subclass
Threads in PHP?
Prevent redirect after form is submitted
GCC C++ "Hello World" program -> .exe is 500kb big when compiled on Windows. How can I reduce its size?
python selenium, find out when a download has completed?
Javascript - Get Image height