Hi, sorry for creating another topic on this subject but i am going a little crazy. I am fairly new to Grafana and can’t start it with ssl. I followed the official documentation on configuring ssl: Docs
I am using Debian GNU/Linux 11 (bullseye) with grafana 9.5.2. And i have my own certificates created for FQDN “my.domain.eu”
I tried configuring it according to documentation and this is what I ended up with:
;instance_name = my.domain.eu
[server]
# Protocol (http, https, h2, socket)
;protocol = https
# The ip address to bind to, empty will bind to all interfaces
;http_addr =
# The http port to use
;http_port = 3000
;domain = my.domain.eu
;enforce_domain = false
;root_url = https://my.domain.eu:3000/
;serve_from_sub_path = false
;router_logging = false
;static_root_path = public
;enable_gzip = false
;cert_file = /etc/grafana/grafana.crt
;cert_key = /etc/grafana/grafana.key
And nothing. Works on http but does not work on https. I always get “Unable to connect”. Using curl gets me “error:1408F10B:SSL routines:ssl3_get_record:wrong version number”. There is no error in grafana.log and the service is running but serving on http.
The certificate permissions are for grafana:grafana and it has 777 permissions (Just for testing).
SO! I tried using nginx reverse proxy and this topic:
So I installed ngnix and in available sites I added my.domain.eu file with the following configuration:
server {
server_name my.domain.eu;
listen 443 ssl http2;
listen [::]:443 ssl http2;
ssl on;
ssl_certificate /etc/nginx/grafana.crt;
ssl_certificate_key /etc/nginx/grafana.key;
index index.html index.htm;
location / {
proxy_pass http://grafana.staged-by-discourse.com/;
proxy_set_header Host $http_host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto "https";
}
}
I copied certificates to /etc/nginx and still nothing. No error in error.log and no access in access.log.
Any help? Thank you in advance