本文详细描述了Nginx服务器的配置,包括监听443和80端口、SSL安全设置、重定向HTTP到HTTPS、以及处理错误页面和代理到不同后端服务的路径规则。
server {
listen 443;
listen 80;
server_name www.xxx.com;
#if ($scheme = http ) {return 301 https://$host$request_uri;}
ssl on;
ssl_certificate /usr/local/nginx/cert/xxx.com.pem;
ssl_certificate_key /usr/local/nginx/cert/xxx.com.key;
ssl_session_timeout 5m;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
proxy_intercept_errors on;
error_page 497 https://$host$request_uri;
error_page 502 /50x.html;
location ~* /css502 {
root /usr/local/nginx/html/502;
}
location ~* /*/images502 {
root /usr/local/nginx/html/502;
}
location = /50x.html {
root /usr/local/nginx/html/502;
}
location ^~ /path1{
proxy_pass http://xxx.xxx.xxx.xxx:8087;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Real-Port $remote_port;
proxy_set_header X-Forwarded-For $forwarded;
proxy_set_header X-Forwarded-Proto $scheme;
}
location ^~ /path2{
proxy_pass http://xxx.xxx.xxx.xxx:8088;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Real-Port $remote_port;
proxy_set_header X-Forwarded-For $forwarded;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
错误页面:
扫一扫
890
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
