I mean, I can’t get the desired result from command line with openssl:
$ openssl s_client -connect luckstock.com:443 -tls1 -tlsextdebug -status
It always return “no response …” while the test ssllabs and digicert returns OCSP stapling: Yes.
Not sure if it’s working correctly, but I had to add to nginx server conf:
resolver 126.96.36.199 188.8.131.52 valid=86400s;
To get it showing Yes for OCSP stapling.
Could anyone check if my configuration is Ok?