When an Xray instance/node is configured to go through an SSL proxy that uses a self-signed certificate, you may encounter the following issue when performing tasks such as an online database sync:
2021-07-20T14:47:47.500Z [33m[jfxr ][0m [1m[31m[ERROR][0m [c080f44e606d159 ] [samplers:91 ] [main ] Failed to read response from jxrayUrl. Error: Get "https://jxray.jfrog.io/api/v1/system/ping": x509: certificate signed by unknown authority
To overcome this issue, you need to import the Proxy certificate into each Xray instance/pod by placing it under the following path within the Xray machine/container/pods:
/etc/ssl/certs/
.Restart Xray.
The path shown above is the default directory used by Go applications (such as Xray) when importing SSL certificates.