环境: nginx/1.18.0
www_aaa_com.zip(证书文件)
|— Nginx
|—— www_aaa_com_integrated.crt
|—— private.key
如果配置完之后无法访问,一般是端口问题,服务器开启 443 端口即可。
支持一个ip上绑定多个 https 域名,下面配置拷贝多份即可。(该版本OK)
# 以下配置测试通过并已用于生产
server {
listen 80;
server_name www.aaa.com;
charset utf-8;
rewrite ^(.*)$ https://${server_name}$1 permanent;
}
server {
listen 443 ssl;
server_name www.aaa.com;
ssl_certificate /cert/path/www_aaa_com_integrated.crt;
ssl_certificate_key /cert/path/private.key;
ssl_session_timeout 5m;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
location /match1 {
....
}
location /match2 {
....
}
}