nginx 每个域名多一个server, 把里面的ip改一下,ssh证书地址密码改一下即可
server {
listen 80;
listen 443 ssl;
ssl off;
server_name sh.aaa.com www.aaa.com;
ssl_certificate /mydata/ssl/sh/6785428_sh.aaa.com.key;
ssl_certificate_key /mydata/ssl/sh/6785428_sh.aaa.com.pem;
client_max_body_size 10M;
#charset koi8-r;
location / {
proxy_pass http://localhost:8080;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
location ^~ /static/ {
alias /mydata/nginx/html/;
#try_files $uri $uri/ index.html;
index index.html index.htm;
}
#access_log logs/host.access.log main;
#location / {
# root html;
# index index.html index.htm;
#}
#error_page 404 /404.html;
# redirect server error pages to the static page /50x.html
#
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
}
2 tomcat 配置。 修改server.xml
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
maxThreads="150" SSLEnabled="true" defaultSSLHostConfigName="www.sh.aaa.com" >
<SSLHostConfig hostName="www.sh.aaa.com">
<Certificate certificateKeystoreFile="/mydata/ssl/sh/6785428_sh.aaa.com.pfx"
certificateKeystorePassword="wmTOSP5c"
certificateKeystoreType="PKCS12" />
</SSLHostConfig>
<SSLHostConfig hostName="www.lb.bbbb.com">
<Certificate certificateKeystoreFile="/mydata/ssl/hc/6663490_lb.aaa.com.pfx"
certificateKeystorePassword="d4KW4ylh"
certificateKeystoreType="PKCS12" />
</SSLHostConfig>
</Connector>