O Apache spdy está ligado, passou o spdycheck, mas o navegador ainda não pode usar o spdy

1

Depois de instalar o mod_spdy, mude para o modo ssl_with_npn e teste com o spdytest. Eu vejo que tudo está funcionando bem: link

Mas quando começamos com o firefox, os plugins de checagem de spam mostram que minha conexão não está usando spdy.

Quando usar o chrome, ele também não lista meu site na listagem http2.

Quando forçar o uso do chrome top spdy (execute o comando chrome --use-spdy = ssl), quando acessar o meu site ele informará o erro:

This webpage is not available
ERR_CONNECTION_CLOSED

The webpage at https://www.chuongduong.net/ might be temporarily down or it may have moved permanently to a new web address.

Estou usando o Apache / 2.4.12, Centos 6

A configuração do spdy é:

LoadModule spdy_module /etc/httpd/lib/libmod_spdy.so

SpdyEnabled on
SpdyMaxThreadsPerProcess 100
SpdyMaxStreamsPerConnection 100

O relatório do spdycheck:

Report Details Network Server on 443

Nice, this host has a network service listening on port 443! SPDY works over SSL/TLS which usually listens on port 443. TLS v1.2 Connection Detected

Good, this host is speaking SSL/TLS, specifically TLS v1.2. SPDY piggybacks on top of SSL/TLS, so a website needs SSL/TLS to use SPDY. Valid X.509 Certificate

This website is responding with a valid X.509 certificate. X.509 certificate errors can cause the browser to display warning messages and to stop speaking with the website, so using a valid certificate is an essential step to supporting SPDY. ServerHello Contains NPN Extension

Nice, this server including the NPN Extension during the SSL/TLS handshake. The NPN Extension is an additional part of the SSL/TLS ServerHello message which allows the web server to tell browser it supports additional protocols, like SPDY. Success! SPDY is Enabled!

Hurray, this website is using SPDY! The following protocols are supported:

spdy/3
spdy/2
http/1.1
x-mod-spdy/0.9.4.1-3c81dee

SPDY Protocol Support Update-To-Date

This website supports the latest version of SPDY, which is spdy/3. HTTP Fallback Detected

This website is using SPDY, but it also supports traditional HTTP over SSL. This ensures that older web browsers can still access this site using HTTP HTTP Redirects to SPDY

Pretty Sexy! Accessing this website via HTTP automatically redirects the user to access the website via SSL/TLS and SPDY. This means all of website's visitors that can browse the site with SPDY, do browse the site using SPDY.

Strict-Transport-Security Supported

Excellent! This website is using HSTS, also known as Strict Transport Security. This tells the browser to always use SSL when talking to this website, allows more of your visitors the opportunity to both be secure and to use SPDY. The server is sending the header Strict-Transport-Security: max-age=63072000; includeSubdomains; preload which tells the web browser to always use SSL to access this website for the next 730 days.

    
por DuongTC 25.06.2015 / 06:00

0 respostas