/usr/local/nginx/conf下创建cert目录 存放证书
server {
listen 443 ssl;
server_name aaa.com;
index index.php index.php default.html default.htm default.php;
root /home/www/yii_rongzi56/lamianFrontend/web;
ssl_certificate cert/3418266_niuaimian.com.pem;
ssl_certificate_key cert/3418266_niuaimian.com.key;
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 5m;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
location / {
try_files $uri $uri/ /index.php$is_args$args;
index index.html index.php;
}
location ~ [^/]\.php(/|$)
{
try_files $uri =404;
fastcgi_index index.php;
fastcgi_pass unix:/tmp/php-cgi.sock;
include fastcgi.conf;
}
}
重启nginx /usr/local/nginx/sbin/nginx -s reload
netstat -anp| grep 443
发现nginx监听的443端口进程存在证明搭建成功
仍然不能访问?防火墙的问题:
firewall-cmd --zone=public --add-port=443/tcp --permanent
firewall-cmd --reload