nginx https ssl 配置
2017-03-06 22:44
483 查看
#设置https 访问 server { listen 443; server_name www.xxx.com; access_log xxx/xxx/xxx.log combined; index index.html index.htm index.php; include /etc/nginx/default.d/*.conf; root /xxx/xxx/xxx/www.xxx.com; ssl on; ssl_certificate /usr/local/nginx/conf/ssl/server.pem; ssl_certificate_key /usr/local/nginx/conf/ssl/server.key; ssl_session_timeout 5m; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers ECDH:AESGCM:HIGH:!RC4:!DH:!MD5:!aNULL:!eNULL; ssl_prefer_server_ciphers on; location ~ [^/]\.php(/|$) { #fastcgi_pass remote_php_ip:9000; fastcgi_pass unix:/dev/shm/php-cgi.sock; fastcgi_index index.php; include fastcgi.conf; } location ~ .*\.(gif|jpg|jpeg|png|bmp|swf|flv|ico)$ { expires 30d; access_log off; } location ~ .*\.(js|css)?$ { expires 7d; access_log off; } }
将http请求强制转换为https
server { listen 80; server_name www.xxx.com; access_log xxx/xxx/xxx.log combined; index index.html index.htm index.php; include /etc/nginx/default.d/*.conf; rewrite ^(.*) https://$server_name$1 permanent; location ~ [^/]\.php(/|$) { #fastcgi_pass remote_php_ip:9000; fastcgi_pass unix:/dev/shm/php-cgi.sock; fastcgi_index index.php; include fastcgi.conf; } location ~ .*\.(gif|jpg|jpeg|png|bmp|swf|flv|ico)$ { expires 30d; access_log off; } location ~ .*\.(js|css)?$ { expires 7d; access_log off; } }
证书需要购买,淘宝便宜;
相关文章推荐
- 【安全】 详解 Nginx + Tomcat HTTPS/SSL 配置
- nginx配置ssl双向验证 nginx https ssl证书配
- Nginx + Tomcat + HTTPS 配置原来不需要在 Tomcat 上启用 SSL 支持
- Nginx+Tomcat SSL配置指南|Nginx+Tomcat实现https安全链接
- nginx使用ssl模块配置HTTPS支持
- 阿里云Center OS 6.2 Nginx 配置 SSL/TLS HTTPS配置
- Nginx 配置 SSL 证书 + HTTPS 站点
- nginx使用ssl模块配置HTTPS支持
- Nginx 配置 SSL 证书 + HTTPS 站点小记
- nginx配置ssl加密(单双向认证、部分https)
- 详解 Nginx + Tomcat HTTPS/SSL 配置方法
- Nginx下配置HTTPS(SSL)安全站点
- nginx使用ssl模块配置HTTPS支持
- nginx配置ssl双向验证 nginx https ssl证书配置
- 详解 Nginx + Tomcat HTTPS/SSL 配置方法
- StartSSL免费的HTTPS证书颁发机构及nginx 的ssl配置
- Nginx配置SSL并强制http跳转到https
- nginx使用ssl模块配置HTTPS支持
- nginx 配置 ssl 模块支持 https
- 详解 Nginx + Tomcat HTTPS/SSL 配置