本文连接:https://blog.csdn.net/MDWJJ/article/details/105520193
https密钥以及自签名证书创建方式参考:https://blog.csdn.net/MDWJJ/article/details/105527494
在Nginx.config的配置文件中增加如下配置
http {
include mime.types;
default_type application/octet-stream;
server {
server_name localhost;
listen 443 ssl;
ssl_certificate /nginx/conf/crt/server.crt;
ssl_certificate_key /nginx/conf/crt/server.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
location /demo {
proxy_pass http://101.100.100.100:8080;
proxy_redirect off;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}
}
https请求默认监听443端口,可以看到,如果端口数443,域名后面的端口不显示。
ssl_certificate和ssl_certificate_key配置https密钥和证书路径。
ssl_protocols为协议。
location配置需要转发的服务信息。