標籤:nginx 反向 Proxyhttps
Nginx 反向 Proxyhttps
一、代理nginx開啟80,443連接埠
############################################################################
# cat /etc/nginx/conf.d/nginx_http.conf
# 設定通過http網域名稱訪問的時候直接跳轉https
server {
listen 80;
server_name www.meteor-yu.com;
rewrite ^/(.*) https://$server_name/$1 permanent;
}
# 設定不允許IP訪問
server {
listen 80 default_server;
server_name _;
return 403;
}
# 設定通過http訪問頂級網域名稱meteor-yu.com自動跳轉https訪問www.meteor-yu.com這個網域名稱
server {
listen 80;
server_name meteor-yu.com;
return 301 https://www.meteor-yu.com$request_uri;
}
############################################################################
二、建立自我簽署憑證
# cat /etc/nginx/conf.d/nginx_https.conf
# 建立自我簽署憑證,並添加到配置中
server {
listen 443;
server_name www.meteor-yu.com;
ssl on;
ssl_certificate conf.d/server.crt;
ssl_certificate_key conf.d/server.key;
access_log /var/log/nginx/staff_assessing_system_access.log main;
error_log /var/log/nginx/staff_assessing_system_error.log;
location / {
proxy_next_upstream http_502 http_504 error timeout invalid_header;
proxy_ignore_client_abort on;
proxy_connect_timeout 60s;
proxy_read_timeout 5400s;
proxy_send_timeout 5400s;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass http://10.10.10.10:84; # 轉寄到背景web連接埠,這裡是後台web是84連接埠,後台訪問仍然是http
}
}
# 不允許https直接IP訪問
server {
listen 443 default_server;
server_name _;
ssl on;
ssl_certificate /etc/nginx_ssl/server.crt;
ssl_certificate_key /etc/nginx_ssl/server.key;
return 403;
}
# 設定通過https訪問頂級網域名稱meteor-yu.com自動跳轉到www.meteor-yu.com這個網域名稱
server {
listen 443;
ssl on;
ssl_certificate /etc/nginx_ssl/server.crt;
ssl_certificate_key /etc/nginx_ssl/server.key;
server_name meteor-yu.com;
return 301 https://www.meteor-yu.com$request_uri;
}
############################################################################
本文出自 “流星宇” 部落格,請務必保留此出處http://8789878.blog.51cto.com/8779878/1853752
Nginx 反向 Proxyhttps
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
