重大改版
 鱼翔空 2016-09-28 linux|   0 685 
文章评分 90 次,平均分 5.0

购买了阿里云的免费版SSL证书,配置了一下审核通过拿到了*.pem和*.key的文件。

在将文件上传到服务器上。

基本上和普通的80端口配置差不多,复制一份将端口改为443即可,具体如下。

#user  nobody;
worker_processes  1;

#error_log  logs/error.log;
#error_log  logs/error.log  notice;
#error_log  logs/error.log  info;

pid        /home/www/pid/nginx.pid;


events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;
    charset gbk;
    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    #                  '$status $body_bytes_sent "$http_referer" '
    #                  '"$http_user_agent" "$http_x_forwarded_for"';

    #access_log  logs/access.log  main;

    sendfile        on;
    #tcp_nopush     on;

    #keepalive_timeout  0;
    keepalive_timeout  65;

    gzip  on;
    gzip_min_length 1k;
    gzip_buffers 4 16k;
    gzip_http_version 1.0;
    gzip_comp_level 2;
    gzip_types text/plain application/x-javascript text/css application/xml;
   

    server {
        listen       80;
        server_name  127.0.0.1;
        access_log /home/www/log/access.log;
        error_log /home/www/log/error.log;
        charset utf-8;
        index index.html index.htm;
        root /home/www/html/;
        
        location /upload/{
            alias /home/www/html/upload/;
        }
        location /demo/{
            alias /home/www/html/demo/;
        }
        location / {
            rewrite ^/(\d+)$ /article/$1.html redirect;
            rewrite ^/(\d+).(.*)$ /article/$1.html redirect;
            add_header Access-Control-Allow-Origin *;
            proxy_pass http://127.0.0.1:8080;  
            proxy_redirect off;  
            proxy_set_header Host $host;  
            proxy_set_header X-Real-IP $remote_addr;  
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;  
            client_max_body_size 10m;  
            client_body_buffer_size 128k;  
            proxy_connect_timeout 90;  
    	    proxy_send_timeout 60;  
    	    proxy_read_timeout 60;  
    	    proxy_buffer_size 4k;  
    	    proxy_buffers 4 32k;  
    	    proxy_busy_buffers_size 64k;  
            proxy_temp_file_write_size 64k; 
        }

        error_page  404              /home/www/html/404.html;

        # redirect server error pages to the static page /50x.html
        #
        error_page   500 502 503 504  /50x.html;
        location = /50x.html {
            root   html;
        }

        # proxy the PHP scripts to Apache listening on 127.0.0.1:80
        #
        #location ~ \.php$ {
        #    proxy_pass   http://127.0.0.1;
        #}

        # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
        #
        #location ~ \.php$ {
        #    root           html;
        #    fastcgi_pass   127.0.0.1:9000;
        #    fastcgi_index  index.php;
        #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
        #    include        fastcgi_params;
        #}

        # deny access to .htaccess files, if Apache's document root
        # concurs with nginx's one
        #
        #location ~ /\.ht {
        #    deny  all;
        #}
        include vhost/*.conf;
    }


    # another virtual host using mix of IP-, name-, and port-based configuration
    #
    #server {
    #    listen       8000;
    #    listen       somename:8080;
    #    server_name  somename  alias  another.alias;

    #    location / {
    #        root   html;
    #        index  index.html index.htm;
    #    }
    #}


    # HTTPS server
    # 
    server {
        listen       443;
        server_name  www.5ycode.com;
        ssl on;
        ssl_certificate      /usr/local/nginx/cert/www.5ycode.com.pem;
        ssl_certificate_key  /usr/local/nginx/cert/www.5ycode.com.key;

        ssl_session_timeout  5m;
        ssl_protocols       SSLv3 TLSv1 TLSv1.1 TLSv1.2;
        ssl_ciphers         HIGH:!aNULL:!MD5;
		
        access_log /home/www/log/access.log;
        error_log /home/www/log/error.log;
        charset utf-8;
        index index.html index.htm;
        root /home/www/html/;
        
        location /upload/{
            alias /home/www/html/upload/;
        }
        location /demo/{
            alias /home/www/html/demo/;
        }
        location / {
            rewrite ^/(\d+)$ /article/$1.html redirect;
            rewrite ^/(\d+).(.*)$ /article/$1.html redirect;
            add_header Access-Control-Allow-Origin *;
            proxy_pass http://127.0.0.1:8080;  
            proxy_redirect off;  
            proxy_set_header Host $host;  
            proxy_set_header X-Real-IP $remote_addr;  
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;  
            client_max_body_size 10m;  
            client_body_buffer_size 128k;  
            proxy_connect_timeout 90;  
    	    proxy_send_timeout 60;  
    	    proxy_read_timeout 60;  
    	    proxy_buffer_size 4k;  
    	    proxy_buffers 4 32k;  
    	    proxy_busy_buffers_size 64k;  
            proxy_temp_file_write_size 64k; 
        }

        error_page  404              /home/www/html/404.html;
    }

}


 

除特别注明外,本站所有文章均为我要编程原创,转载请注明出处来自http://5ycode.com/article/565.html

关于
该用户很懒!
切换注册

登录

忘记密码 ?

切换登录

注册

扫一扫二维码分享