# 强制重定向
server {
listen 80; # 监听80端口
server_name domain; # 自己的域名
#把http的域名请求转成https
return 301 https://$host$request_uri;
}
server {
listen 443 ssl;
server_name domain; # 自己的域名
# 配置 ssl
ssl_certificate /etc/nginx/ssl/cf.pem; # pem文件的路径
ssl_certificate_key /etc/nginx/ssl/cf.key; # key文件的路径
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
ssl_prefer_server_ciphers on;
client_max_body_size 1024m;
location / {
proxy_set_header HOST $host;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass http://your IP:8090/; # 这里改为自己服务器ip
}
}
评论区