1、安装nginx
sudo apt update
sudo apt install nginx
sudo systemctl status nginx
2、配置HTTPS域名,域名需解析到服务并开启80端口
https://letsencrypt.org/zh-cn/docs/client-options/
有一步骤安装输入命令需要输入域名
3、SSL配置秘钥
目录:/etc/letsencrypt/renewal
秘钥:cat 域名.conf
4、修改nginx.conf
vi /etc/nginx/nginx.conf
#include /etc/nginx/conf.d/*.conf; ##需注释
5、配置conf
cd /etc/nginx/conf.d
静态页面
server {
listen 80;
server_name www.xxx.xyz;
rewrite ^(.*)$ https://$host$1 permanent;
}
server {
listen 443 ssl;
server_name www.xxx.xyz;
ssl_certificate /etc/letsencrypt/live/www.xxx.xyz/fullchain.pem; #pem证书路径
ssl_certificate_key /etc/letsencrypt/live/www.xxx.xyz/privkey.pem; #pem证书key路径
ssl_session_timeout 5m; #会话超时时间
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; #加密算法
ssl_protocols TLSv1 TLSv1.1 TLSv1.2; #SSL协议
location / {
root /data/front-end/website/html;
try_files $uri $uri/ @router;
index index.html;
}
location @router {
rewrite ^.*$ /index.html last;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}