Linux中Nginx配置https

最新推荐文章于 2023-10-28 11:54:04 发布

Shine_180418

最新推荐文章于 2023-10-28 11:54:04 发布

阅读量301

点赞数

分类专栏： java开发笔记

本文链接：https://blog.csdn.net/monica1_1/article/details/109705116

版权

java开发笔记专栏收录该内容

84 篇文章 1 订阅

订阅专栏

目录：/usr/local/nginx/conf/nginx.conf

user www www;
worker_processes auto;

error_log /data/wwwlogs/error_nginx.log crit;
pid /var/run/nginx.pid;
worker_rlimit_nofile 51200;

events {
  use epoll;
  worker_connections 51200;
  multi_accept on;
}

http {
  include mime.types;
  default_type application/octet-stream;
  server_names_hash_bucket_size 128;
  client_header_buffer_size 32k;
  large_client_header_buffers 4 32k;
  client_max_body_size 1024m;
  client_body_buffer_size 10m;
  sendfile on;
  tcp_nopush on;
  keepalive_timeout 120;
  server_tokens off;
  tcp_nodelay on;

  fastcgi_connect_timeout 300;
  fastcgi_send_timeout 300;
  fastcgi_read_timeout 300;
  fastcgi_buffer_size 64k;
  fastcgi_buffers 4 64k;
  fastcgi_busy_buffers_size 128k;
  fastcgi_temp_file_write_size 128k;
  fastcgi_intercept_errors on;

  #Gzip Compression
  gzip on;
  gzip_buffers 16 8k;
  gzip_comp_level 6;
  gzip_http_version 1.1;
  gzip_min_length 256;
  gzip_proxied any;
  gzip_vary on;
  gzip_types
    text/xml application/xml application/atom+xml application/rss+xml application/xhtml+xml image/svg+xml
    text/javascript application/javascript application/x-javascript
    text/x-json application/json application/x-web-app-manifest+json
    text/css text/plain text/x-component
    font/opentype application/x-font-ttf application/vnd.ms-fontobject
    image/x-icon;
  gzip_disable "MSIE [1-6]\.(?!.*SV1)";

  ##Brotli Compression
  #brotli on;
  #brotli_comp_level 6;
  #brotli_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript application/javascript image/svg+xml;

  ##If you have a lot of static files to serve through Nginx then caching of the files' metadata (not the actual files' contents) can save some latency.
  #open_file_cache max=1000 inactive=20s;
  #open_file_cache_valid 30s;
  #open_file_cache_min_uses 2;
  #open_file_cache_errors on;
######################## 重定向############################
server {
    listen 443 ssl http2;
    #listen 80;
    server_name shine.ink;
    ssl on;
    ssl_certificate /usr/etc/ssl/Nginx/1_shine.ink_bundle.crt;
    ssl_certificate_key /usr/etc/ssl/Nginx/2_shine.ink.key;
    ssl_session_timeout 5m;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
    ssl_prefer_server_ciphers on;
    access_log /data/wwwlogs/access_nginx.log combined;
    root /data/wwwroot/default;
    index index.html index.htm index.jsp;
    #error_page 404 /404.html;
    #error_page 502 /502.html;
        location /asset/ {
        alias   /usr/share/nginx/asset/;
        index  pages/book/book;
    }
   # location /v6/web {
   # 	proxy_pass https://shine.ink:8006/wx/kb;
#		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 #       proxy_set_header Host $http_host;
 #       proxy_set_header Upgrade $http_upgrade;
 #       proxy_set_header Connection "upgrade";
 #       proxy_set_header X-Real-IP $remote_addr;
 #       proxy_set_header X-NginX-Proxy true;
 #   }
    location /nginx_status {
      stub_status on;
      access_log off;
      allow 127.0.0.1;
      deny all;
    }
    location ~ .*\.(gif|jpg|jpeg|png|bmp|swf|flv|mp4|ico)$ {
      expires 30d;
      access_log off;
    }
    location ~ .*\.(js|css)?$ {
      expires 7d;
      access_log off;
    }
    location / {
      #proxy_pass http://127.0.0.1:8006;
	proxy_pass http://127.0.0.1:8899;
      include proxy.conf;
    }
    location ~ ^/(\.user.ini|\.ht|\.git|\.svn|\.project|LICENSE|README.md) {
      deny all;
    }
  }

######################## default ############################
  #server {
  #listen 80;
  #  server_name shine.ink;
  #  access_log /data/wwwlogs/access_nginx.log combined;
  #  root /data/wwwroot/default;
  #  index index.html index.htm index.jsp;
    #error_page 404 /404.html;
    #error_page 502 /502.html;
 #   location /nginx_status {
  #    stub_status on;
  #    access_log off;
  #    allow 127.0.0.1;
   #   deny all;
  #  }
  #  location ~ .*\.(gif|jpg|jpeg|png|bmp|swf|flv|mp4|ico)$ {
  #    expires 30d;
   #   access_log off;
 #   }
  #  location ~ .*\.(js|css)?$ {
   #   expires 7d;
  #    access_log off;
 #   }
  #  location ~ {
  #    proxy_pass http://127.0.0.1:8899;
  #    include proxy.conf;
  #  }
  #  location ~ ^/(\.user.ini|\.ht|\.git|\.svn|\.project|LICENSE|README.md) {
  #    deny all;
   # }
 # }
########################## vhost #############################
  include vhost/*.conf;
}

你是技术宅么？那就加入我们吧~本博主不一定长期在线，可以进群大家一起解决问题~

商务合作@群主，谢谢！

欢迎加入 CSDN技术交流群一起学习交流~

Shine_180418

关注

0
点赞
踩
1

收藏

觉得还不错? 一键收藏
0
评论
Linux中Nginx配置https

目录：/usr/local/nginx/conf/nginx.confuser www www;worker_processes auto;error_log /data/wwwlogs/error_nginx.log crit;pid /var/run/nginx.pid;worker_rlimit_nofile 51200;events { use epoll; worker_connections 51200; multi_accept on;}http { .
复制链接

扫一扫

专栏目录