阿里云配置SSL证书使用https访问

最新推荐文章于 2024-04-27 23:04:19 发布

imissrc

最新推荐文章于 2024-04-27 23:04:19 发布

阅读量317

点赞数

分类专栏：环境配置文章标签： nginx https linux ssl

本文链接：https://blog.csdn.net/weixin_39359584/article/details/116792007

版权

环境配置专栏收录该内容

4 篇文章 0 订阅

订阅专栏

@阿里云配置SSL证书使用https访问

在阿里云上购买服务器、域名然后进行备案、申请免费的证书

此次过程略

nginx配置

在/etc/nginx/conf.d下创建域名.conf
http的配置

server {
        listen 80;
        server_name 域名;
        location / {
                proxy_pass http://127.0.0.1:8085/;
        }
}

https的配置

server{
	listen 80;
        server_name 域名n;
        rewrite ^(.*) https://$server_name$1;
}
server{
	#开启https支持
	listen 443 ssl;
	server_name 域名;
	root html;
	index index.html index.htm;
	ssl_certificate 绝对地址.pem;
	ssl_certificate_key 绝对地址.key;
	ssl_session_timeout 5m;
	ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
	ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
	ssl_prefer_server_ciphers on;
	location / {
		proxy_pass http://127.0.0.1:8085; #对应监听的接口,转发的地址
	}
}

nginx.conf文件配置

user www-data;
worker_processes auto;
pid /run/nginx.pid;
include /etc/nginx/modules-enabled/*.conf;

events {
	worker_connections 768;
	# multi_accept on;
}

http {

	##
	# Basic Settings
	##

	sendfile on;
	tcp_nopush on;
	tcp_nodelay on;
	keepalive_timeout 65;
	types_hash_max_size 2048;
	# server_tokens off;

	# server_names_hash_bucket_size 64;
	# server_name_in_redirect off;

	include /etc/nginx/mime.types;
	default_type application/octet-stream;

	##
	# SSL Settings
	##

	ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
	ssl_prefer_server_ciphers on;

	##
	# Logging Settings
	##

	access_log /var/log/nginx/access.log;
	error_log /var/log/nginx/error.log;

	##
	# Gzip Settings
	##

	gzip on;

	# gzip_vary on;
	# gzip_proxied any;
	# gzip_comp_level 6;
	# gzip_buffers 16 8k;
	# gzip_http_version 1.1;
	# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;

	##
	# Virtual Host Configs
	##

	include /etc/nginx/conf.d/*.conf;
	include /etc/nginx/sites-enabled/*;

}


#mail {
#	# See sample authentication script at:
#	# http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
# 
#	# auth_http localhost/auth.php;
#	# pop3_capabilities "TOP" "USER";
#	# imap_capabilities "IMAP4rev1" "UIDPLUS";
# 
#	server {
#		listen     localhost:110;
#		protocol   pop3;
#		proxy      on;
#	}
# 
#	server {
#		listen     localhost:143;
#		protocol   imap;
#		proxy      on;
#	}
#}

imissrc

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
阿里云配置SSL证书使用https访问

@阿里云配置SSL证书使用https访问在阿里云上购买服务器、域名然后进行备案、申请免费的证书此次过程略nginx配置在/etc/nginx/conf.d下创建域名.confhttp的配置server { listen 80; server_name 域名; location / { proxy_pass http://127.0.0.1:8085/; }}https的配置server{
复制链接

扫一扫