[EDIT] The root cause was the firewall behavior and rule. To skip tl;dr, read first few paragraphs down to Environment here and then skip to my last post on this thread . [end edit]
I can't get Apache to listen to port 443! I've been trying everything I could find online but can't identify the specific problem. I know this has been asked before and I've pored through the posts looking for a solution. They either don't change anything or break what is working. It's certainly possible that I've missed something.
I set up wamp64 3.3.5 on a Windows 10 box successfully (all green), including the default localhost and a virtual host called "test" with a basic hello world index.html file and nothing more. Then, I enabled ssl / https access, semi-successfully, meaning it works locally but not across the local net.
The problem is that I can't access the https: installs of either the localhost via IP or the virtual host "test" from an external computer! On the wamp server, I can successfully access [
localhost], [
localhost], [
test] and [
test] without issue. Same applies to [
192.168.1.10] as well as http from the SAME machine.
From another computer, I can only access [
192.168.1.10] (localhost) and [
test]. If I try to access the https versions, I get a timeout.
On the server, netstat shows the following:
netstat -aof | findstr 443
TCP 0.0.0.0:443 RF:0 LISTENING 11220
TCP [::]:443 RF:0 LISTENING 11220
Never does it show 192.168.1.10 listening on 443.
I believe that the certificate and key files are ok, since https works locally.
I don't know if I'm overlooking something, if something is competing with apache for 443, or what's happening. I assume that since nothing other than the 0 IPs are listening on 443, that nothing is competing for the port.
Environment and relevant config files follow. If I need to add, please let me know.
Windows 10
WAMP64 3.3.5 complete install using defaults except install dir.
Static IP address: 192.168.1.10
Firewall is off, also has rule to allow listen on 443.
WAMP64 status - all green, no errors showing on dashboard or in logs.
Skype is NOT installed, never has been.
WAMP64 install dir: d:\wamp64
localhost home dir: d:\wamp64\www (default dir)
localhost contents: default wampserver dashboard
test virtual host home dir: d:\www\test
"test" contents: index.html file only - a simple "hello world" html file.
httpd.conf
default file, with these required changes:
LoadModulessl_module modules/mod_ssl.so
Include conf/extra/httpd-ssl.conf
LoadModulesocache_shmcb_module modules/mod_socache_shmcb.so
php.ini
default. Note: Instructions say to uncomment extension=php_openssl.dll. However, extension=openssl exists in the file already and is uncommented. Replacing the latter with the former changes nothing.
httpd-vhosts.conf
# Virtual Hosts
#
<VirtualHost _default_:80>
ServerName localhost
ServerAlias localhost
DocumentRoot "${INSTALL_DIR}/www"
<Directory "${INSTALL_DIR}/www/">
Options +Indexes +Includes +FollowSymLinks +MultiViews
AllowOverride All
# Require local
Require all granted
</Directory>
</VirtualHost>
#
<VirtualHost *:80>
ServerName test
DocumentRoot "d:/www/test"
<Directory "d:/www/test/">
Options +Indexes +Includes +FollowSymLinks +MultiViews
AllowOverride All
# Require local
Require all granted
</Directory>
</VirtualHost>
#
httpd-ssl.conf (comments removed for clarity.)
Listen 0.0.0.0:443 https
Listen [::0]:443 https
SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
SSLProxyCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
SSLHonorCipherOrder on
SSLProtocol all -SSLv3
SSLProxyProtocol all -SSLv3
SSLPassPhraseDialog builtin
SSLSessionCache "shmcb:${SRVROOT}/logs/ssl_scache(512000)"
SSLSessionCacheTimeout 300
<VirtualHost _default_:443>
DocumentRoot "d:/wamp64/www"
ServerName localhost:443
ServerAdmin
admin@example.comErrorLog "${SRVROOT}/logs/error.log"
TransferLog "${SRVROOT}/logs/access.log"
SSLCertificateFile "${SRVROOT}/conf/key/certificate.crt"
SSLCertificateKeyFile "${SRVROOT}/conf/key/private.key"
SSLEngine on
SSLCertificateFile "${SRVROOT}/conf/key/certificate.crt"
SSLCertificateKeyFile "${SRVROOT}/conf/key/private.key"
<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory "${SRVROOT}/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
BrowserMatch "MSIE [2-5]" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog "${SRVROOT}/logs/ssl_request.log" \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
<VirtualHost _default_:443>
DocumentRoot "d:/www/test"
ServerName test:443
ServerAlias test
ServerAdmin
admin@example.comErrorLog "${SRVROOT}/logs/error.log"
TransferLog "${SRVROOT}/logs/access.log"
SSLEngine on
SSLCertificateFile "${SRVROOT}/conf/key/certificate.crt"
SSLCertificateKeyFile "${SRVROOT}/conf/key/private.key"
<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory "d:/www/test">
SSLOptions +StdEnvVars
Options +Indexes +Includes +FollowSymLinks +MultiViews
Require all granted
AllowOverride All
</Directory>
BrowserMatch "MSIE [2-5]" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog "${SRVROOT}/logs/ssl_request.log" \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
Edited 1 time(s). Last edit at 09/12/2024 11:26AM by cliffb.