Skip to content
This repository has been archived by the owner on Nov 13, 2024. It is now read-only.

x-ui 安装证书后面板可以访问 配置的节点访问不了 #565

Open
5 tasks done
rovoskarl opened this issue Jun 20, 2024 · 1 comment
Open
5 tasks done

Comments

@rovoskarl
Copy link

Welcome

  • Yes, I'm using the latest major release. Only such installations are supported.
  • Yes, I'm using the supported system. Only such systems are supported.
  • Yes, I have read all WIKI document,nothing can help me in my problem.
  • Yes, I've searched similar issues on GitHub and didn't find any.
  • Yes, I've included all information below (version, config, log, etc).

Description of the problem,screencshot would be good

x-ui 安装证书后面板可以访问 配置的节点访问不了 证书使用 x-ui 一键申请的 cloudflare 的 dns

Version of x-ui

$ x-ui version
xray 状态: running 1.4.2 x-ui 最新

x-ui log or xray log

ror from 38.207.136.179:58982: remote error: tls: unknown certificate
Jun 20 03:26:08 vultr x-ui[31753]: 2024/06/20 03:26:08 http: TLS handshake error from 38.207.136.179:58970: remote error: tls: unknown certificate
Jun 20 03:46:22 vultr x-ui[31753]: 2024/06/20 03:46:22 http: TLS handshake error from 164.52.25.199:48803: read tcp 45.77.127.78:8443->164.52.25.199:48803: read: connection reset by peer
Jun 20 03:46:25 vultr x-ui[31753]: 2024/06/20 03:46:25 http: TLS handshake error from 164.52.25.199:45861: read tcp 45.77.127.78:8443->164.52.25.199:45861: use of closed network connection
Jun 20 03:46:25 vultr x-ui[31753]: 2024/06/20 03:46:25 http: TLS handshake error from 164.52.25.199:46079: read tcp 45.77.127.78:8443->164.52.25.199:46079: use of closed network connection
Jun 20 03:46:37 vultr x-ui[31753]: 2024/06/20 03:46:37 http: TLS handshake error from 164.52.25.199:49647: read tcp 45.77.127.78:8443->164.52.25.199:49647: read: connection reset by peer
Jun 20 03:46:37 vultr x-ui[31753]: 2024/06/20 03:46:37 http: TLS handshake error from 164.52.25.199:52433: read tcp 45.77.127.78:8443->164.52.25.199:52433: read: connection reset by peer
Jun 20 03:46:37 vultr x-ui[31753]: 2024/06/20 03:46:37 http: TLS handshake error from 164.52.25.199:37357: read tcp 45.77.127.78:8443->164.52.25.199:37357: read: connection reset by peer
Jun 20 03:46:40 vultr x-ui[31753]: 2024/06/20 03:46:40 http: TLS handshake error from 164.52.25.199:35785: EOF
Jun 20 03:46:40 vultr x-ui[31753]: 2024/06/20 03:46:40 http: TLS handshake error from 164.52.25.199:45315: read tcp 45.77.127.78:8443->164.52.25.199:45315: read: connection reset by peer
Jun 20 03:47:14 vultr x-ui[31753]: 2024/06/20 03:47:14 http: TLS handshake error from 164.52.25.199:45995: read tcp 45.77.127.78:8443->164.52.25.199:45995: read: connection reset by peer
Jun 20 03:47:19 vultr x-ui[31753]: 2024/06/20 03:47:19 http: TLS handshake error from 164.52.25.199:36975: read tcp 45.77.127.78:8443->164.52.25.199:36975: use of closed network connection
Jun 20 03:47:19 vultr x-ui[31753]: 2024/06/20 03:47:19 http: TLS handshake error from 164.52.25.199:58371: read tcp 45.77.127.78:8443->164.52.25.199:58371: use of closed network connection
Jun 20 03:47:28 vultr x-ui[31753]: 2024/06/20 03:47:28 http: TLS handshake error from 164.52.25.199:49017: read tcp 45.77.127.78:8443->164.52.25.199:49017: read: connection reset by peer
Jun 20 03:47:31 vultr x-ui[31753]: 2024/06/20 03:47:31 http: TLS handshake error from 164.52.25.199:50035: read tcp 45.77.127.78:8443->164.52.25.199:50035: read: connection reset by peer
Jun 20 03:59:47 vultr x-ui[31753]: 2024/06/20 03:59:47 http: TLS handshake error from 38.207.142.19:60946: remote error: tls: unknown certificate
Jun 20 03:59:50 vultr x-ui[31753]: 2024/06/20 03:59:50 http: TLS handshake error from 38.207.142.19:60962: remote error: tls: unknown certificate
Jun 20 03:59:51 vultr x-ui[31753]: 2024/06/20 03:59:51 http: TLS handshake error from 38.207.142.19:60986: remote error: tls: unknown certificate
Jun 20 03:59:52 vultr x-ui[31753]: 2024/06/20 03:59:52 http: TLS handshake error from 38.207.142.19:60998: remote error: tls: unknown certificate
Jun 20 03:59:52 vultr x-ui[31753]: 2024/06/20 03:59:52 http: TLS handshake error from 38.207.142.19:61000: remote error: tls: unknown certificate
Jun 20 03:59:52 vultr x-ui[31753]: 2024/06/20 03:59:52 http: TLS handshake error from 38.207.142.19:61008: remote error: tls: unknown certificate
Jun 20 03:59:52 vultr x-ui[31753]: 2024/06/20 03:59:52 http: TLS handshake error from 38.207.142.19:61010: remote error: tls: unknown certificate
Jun 20 03:59:52 vultr x-ui[31753]: 2024/06/20 03:59:52 http: TLS handshake error from 38.207.142.19:61020: remote error: tls: unknown certificate
Jun 20 04:00:46 vultr x-ui[31753]: 2024/06/20 04:00:46 http: TLS handshake error from 38.207.136.179:40524: remote error: tls: unknown certificate
Jun 20 04:00:51 vultr x-ui[31753]: 2024/06/20 04:00:51 http: TLS handshake error from 38.207.136.179:40536: remote error: tls: unknown certificate
Jun 20 04:00:52 vultr x-ui[31753]: 2024/06/20 04:00:52 http: TLS handshake error from 38.207.136.179:40566: remote error: tls: unknown certificate
Jun 20 04:00:52 vultr x-ui[31753]: 2024/06/20 04:00:52 http: TLS handshake error from 38.207.136.179:40560: remote error: tls: unknown certificate
Jun 20 04:01:03 vultr x-ui[31753]: 2024/06/20 04:01:03 http: TLS handshake error from 38.207.136.179:44142: remote error: tls: unknown certificate
Jun 20 04:01:03 vultr x-ui[31753]: 2024/06/20 04:01:03 http: TLS handshake error from 38.207.136.179:44156: remote error: tls: unknown certificate
Jun 20 04:01:03 vultr x-ui[31753]: 2024/06/20 04:01:03 http: TLS handshake error from 38.207.136.179:44166: remote error: tls: unknown certificate
Jun 20 04:01:03 vultr x-ui[31753]: 2024/06/20 04:01:03 http: TLS handshake error from 38.207.136.179:44170: remote error: tls: unknown certificate
Jun 20 04:01:03 vultr x-ui[31753]: 2024/06/20 04:01:03 http: TLS handshake error from 38.207.136.179:44174: remote error: tls: unknown certificate
Jun 20 04:01:03 vultr x-ui[31753]: 2024/06/20 04:01:03 http: TLS handshake error from 38.207.136.179:44190: remote error: tls: unknown certificate
Jun 20 04:01:03 vultr x-ui[31753]: 2024/06/20 04:01:03 http: TLS handshake error from 38.207.136.179:44200: remote error: tls: unknown certificate
Jun 20 05:05:13 vultr x-ui[31753]: 2024/06/20 05:05:13 http: TLS handshake error from 38.207.142.19:38280: remote error: tls: unknown certificate
Jun 20 05:05:14 vultr x-ui[31753]: 2024/06/20 05:05:14 http: TLS handshake error from 38.207.142.19:38302: remote error: tls: unknown certificate
Jun 20 05:05:15 vultr x-ui[31753]: 2024/06/20 05:05:15 http: TLS handshake error from 38.207.142.19:38324: remote error: tls: unknown certificate
Jun 20 05:05:15 vultr x-ui[31753]: 2024/06/20 05:05:15 http: TLS handshake error from 38.207.142.19:38316: remote error: tls: unknown certificate
Jun 20 05:05:15 vultr x-ui[31753]: 2024/06/20 05:05:15 http: TLS handshake error from 38.207.142.19:38326: remote error: tls: unknown certificate
Jun 20 05:05:15 vultr x-ui[31753]: 2024/06/20 05:05:15 http: TLS handshake error from 38.207.142.19:38336: remote error: tls: unknown certificate
Jun 20 05:05:15 vultr x-ui[31753]: 2024/06/20 05:05:15 http: TLS handshake error from 38.207.142.19:38342: remote error: tls: unknown certificate
Jun 20 05:07:44 vultr systemd[1]: Stopping x-ui.service - x-ui Service...
Jun 20 05:07:44 vultr systemd[1]: x-ui.service: Deactivated successfully.
Jun 20 05:07:44 vultr systemd[1]: Stopped x-ui.service - x-ui Service.
Jun 20 05:07:44 vultr systemd[1]: x-ui.service: Consumed 5.964s CPU time, 26.2M memory peak, 0B memory swap peak.
Jun 20 05:12:54 vultr systemd[1]: Started x-ui.service - x-ui Service.
Jun 20 05:12:54 vultr x-ui[35852]: 2024/06/20 05:12:54 x-ui 0.3.2
Jun 20 05:12:54 vultr x-ui[35852]: 2024/06/20 05:12:54 INFO - web server run http on [::]:8443
Jun 20 05:14:06 vultr x-ui[35852]: 2024/06/20 05:14:06 [sessions] ERROR! securecookie: the value is not valid
Jun 20 05:14:13 vultr x-ui[35852]: 2024/06/20 05:14:13 [sessions] ERROR! securecookie: the value is not valid
Jun 20 05:14:13 vultr x-ui[35852]: 2024/06/20 05:14:13 INFO - user 1 login success
Jun 20 05:19:45 vultr x-ui[35852]: 2024/06/20 05:19:45 WARNING - stop server err: multierr: context canceled | close tcp [::]:8443: use of closed network connection |
Jun 20 05:19:45 vultr x-ui[35852]: 2024/06/20 05:19:45 INFO - web server run https on [::]:8443
Jun 20 05:19:47 vultr x-ui[35852]: 2024/06/20 05:19:47 http: TLS handshake error from 38.207.142.19:10936: read tcp 45.77.127.78:8443->38.207.142.19:10936: use of closed network connection
Jun 20 05:19:48 vultr x-ui[35852]: 2024/06/20 05:19:48 http: TLS handshake error from 38.207.142.19:10942: remote error: tls: unknown certificate
Jun 20 05:19:53 vultr x-ui[35852]: 2024/06/20 05:19:53 [sessions] ERROR! securecookie: the value is not valid
Jun 20 05:19:54 vultr x-ui[35852]: 2024/06/20 05:19:54 [sessions] ERROR! securecookie: the value is not valid
Jun 20 05:20:00 vultr x-ui[35852]: 2024/06/20 05:20:00 [sessions] ERROR! securecookie: the value is not valid
Jun 20 05:20:00 vultr x-ui[35852]: 2024/06/20 05:20:00 INFO - user 1 login success
Jun 20 05:26:11 vultr x-ui[35852]: 2024/06/20 05:26:11 http: TLS handshake error from 117.29.36.185:14577: EOF
Jun 20 05:30:10 vultr x-ui[35852]: 2024/06/20 05:30:10 http: TLS handshake error from 117.29.36.185:37856: EOF
@rovoskarl
Copy link
Author

openssl s_client -connect vs.kvmess.xyz:443 -msg -debug
CONNECTED(00000003)

TLS 1.0, RecordHeader [length 0005]
16 03 01 01 36
TLS 1.3, Handshake [length 0136], ClientHello
01 00 01 32 03 03 71 50 36 b0 6c 30 ab 52 c8 34
93 28 b4 78 46 e7 8b d2 ee 8e d8 d0 2f 07 8a e0
15 3f 9c a5 e3 87 20 ad d0 a0 13 c4 5c 57 16 86
f5 06 6b e2 6b 01 08 50 af b8 41 d3 d2 59 0c 0d
96 27 01 a1 be c9 b6 00 3e 13 02 13 03 13 01 c0
2c c0 30 00 9f cc a9 cc a8 cc aa c0 2b c0 2f 00
9e c0 24 c0 28 00 6b c0 23 c0 27 00 67 c0 0a c0
14 00 39 c0 09 c0 13 00 33 00 9d 00 9c 00 3d 00
3c 00 35 00 2f 00 ff 01 00 00 ab 00 00 00 12 00
10 00 00 0d 76 73 2e 6b 76 6d 65 73 73 2e 78 79
7a 00 0b 00 04 03 00 01 02 00 0a 00 16 00 14 00
1d 00 17 00 1e 00 19 00 18 01 00 01 01 01 02 01
03 01 04 00 23 00 00 00 16 00 00 00 17 00 00 00
0d 00 2a 00 28 04 03 05 03 06 03 08 07 08 08 08
09 08 0a 08 0b 08 04 08 05 08 06 04 01 05 01 06
01 03 03 03 01 03 02 04 02 05 02 06 02 00 2b 00
05 04 03 04 03 03 00 2d 00 02 01 01 00 33 00 26
00 24 00 1d 00 20 0e 5f f1 07 14 af 37 27 9c 2e
c3 8b 6b 73 67 06 b5 ed b3 06 57 7b 4d a7 b6 9c
4e 5b f9 c0 eb 4c
write to 0x60c50ae558d0 [0x60c50af416b0] (315 bytes => 315 (0x13B))
0000 - 16 03 01 01 36 01 00 01-32 03 03 71 50 36 b0 6c ....6...2..qP6.l
0010 - 30 ab 52 c8 34 93 28 b4-78 46 e7 8b d2 ee 8e d8 0.R.4.(.xF......
0020 - d0 2f 07 8a e0 15 3f 9c-a5 e3 87 20 ad d0 a0 13 ./....?.... ....
0030 - c4 5c 57 16 86 f5 06 6b-e2 6b 01 08 50 af b8 41 .\W....k.k..P..A
0040 - d3 d2 59 0c 0d 96 27 01-a1 be c9 b6 00 3e 13 02 ..Y...'......>..
0050 - 13 03 13 01 c0 2c c0 30-00 9f cc a9 cc a8 cc aa .....,.0........
0060 - c0 2b c0 2f 00 9e c0 24-c0 28 00 6b c0 23 c0 27 .+./...$.(.k.#.'
0070 - 00 67 c0 0a c0 14 00 39-c0 09 c0 13 00 33 00 9d .g.....9.....3..
0080 - 00 9c 00 3d 00 3c 00 35-00 2f 00 ff 01 00 00 ab ...=.<.5./......
0090 - 00 00 00 12 00 10 00 00-0d 76 73 2e 6b 76 6d 65 .........vs.kvme
00a0 - 73 73 2e 78 79 7a 00 0b-00 04 03 00 01 02 00 0a ss.xyz..........
00b0 - 00 16 00 14 00 1d 00 17-00 1e 00 19 00 18 01 00 ................
00c0 - 01 01 01 02 01 03 01 04-00 23 00 00 00 16 00 00 .........#......
00d0 - 00 17 00 00 00 0d 00 2a-00 28 04 03 05 03 06 03 .......*.(......
00e0 - 08 07 08 08 08 09 08 0a-08 0b 08 04 08 05 08 06 ................
00f0 - 04 01 05 01 06 01 03 03-03 01 03 02 04 02 05 02 ................
0100 - 06 02 00 2b 00 05 04 03-04 03 03 00 2d 00 02 01 ...+........-...
0110 - 01 00 33 00 26 00 24 00-1d 00 20 0e 5f f1 07 14 ..3.&.$... ._...
0120 - af 37 27 9c 2e c3 8b 6b-73 67 06 b5 ed b3 06 57 .7'....ksg.....W
0130 - 7b 4d a7 b6 9c 4e 5b f9-c0 eb 4c {M...N[...L
read from 0x60c50ae558d0 [0x60c50af39493] (5 bytes => 5 (0x5))
0000 - 48 54 54 50 2f HTTP/
<<< Not TLS data or unknown version (version=21588, content_type=256) [length 0005]
48 54 54 50 2f
40C727527C7A0000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../ssl/record/ssl3_record.c:354:


no peer certificate available

No client certificate CA names sent

SSL handshake has read 5 bytes and written 315 bytes
Verification: OK

New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)

read from 0x60c50ae558d0 [0x60c50ae11300] (8192 bytes => 98 (0x62))
0000 - 31 2e 31 20 34 30 30 20-42 61 64 20 52 65 71 75 1.1 400 Bad Requ
0010 - 65 73 74 0d 0a 43 6f 6e-74 65 6e 74 2d 54 79 70 est..Content-Typ
0020 - 65 3a 20 74 65 78 74 2f-70 6c 61 69 6e 3b 20 63 e: text/plain; c
0030 - 68 61 72 73 65 74 3d 75-74 66 2d 38 0d 0a 43 6f harset=utf-8..Co
0040 - 6e 6e 65 63 74 69 6f 6e-3a 20 63 6c 6f 73 65 0d nnection: close.
0050 - 0a 0d 0a 34 30 30 20 42-61 64 20 52 65 71 75 65 ...400 Bad Reque
0060 - 73 74 st
read from 0x60c50ae558d0 [0x60c50ae11300] (8192 bytes => 0)

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant