I have 2 nginx servers load-balancing 3 backend graylog servers. When I login to the web from https://graylog.domain.com and I click System > Nodes, it just spins and doesn’t pull up the servers. Same with extractors. If I go to http://graylog.domain.com:9000, it works just fine no problem. Problem seems to be to do with use of tls cert. Any thoughts? I don’t see any errors in the graylog server logs or blocks in the nginx logs.
Nginx config:
upstream graylog_web {
ip_hash;
server node1.domain.com:9000;
server node2.domain.com:9000;
server node3.domain.com:9000;
}
server
{
listen 80;
server_name _;
return 301 https://graylog.domain.com;
}
server
{
listen 9000;
server_name graylog.domain.com;
location /
{
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Graylog-Server-URL http://$server_name:9000/;
proxy_pass http://graylog_web;
}
}
server
{
listen 443 ssl;
server_name graylog.domain.com;
ssl_certificate "/etc/pki/nginx/cert.crt";
ssl_certificate_key "/etc/pki/nginx/private/cert.key";
ssl_protocols TLSv1.1 TLSv1.2;
location /
{
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Graylog-Server-URL https://$server_name/;
proxy_pass http://graylog_web;
}
}