nginx https ssl 配置
2017-03-06 22:44
483 查看
#设置https 访问
server {
listen 443;
server_name www.xxx.com;
access_log xxx/xxx/xxx.log combined;
index index.html index.htm index.php;
include /etc/nginx/default.d/*.conf;
root /xxx/xxx/xxx/www.xxx.com;
ssl on;
ssl_certificate /usr/local/nginx/conf/ssl/server.pem;
ssl_certificate_key /usr/local/nginx/conf/ssl/server.key;
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ECDH:AESGCM:HIGH:!RC4:!DH:!MD5:!aNULL:!eNULL;
ssl_prefer_server_ciphers on;
location ~ [^/]\.php(/|$) {
#fastcgi_pass remote_php_ip:9000;
fastcgi_pass unix:/dev/shm/php-cgi.sock;
fastcgi_index index.php;
include fastcgi.conf;
}
location ~ .*\.(gif|jpg|jpeg|png|bmp|swf|flv|ico)$ {
expires 30d;
access_log off;
}
location ~ .*\.(js|css)?$ {
expires 7d;
access_log off;
}
}将http请求强制转换为https
server {
listen 80;
server_name www.xxx.com;
access_log xxx/xxx/xxx.log combined;
index index.html index.htm index.php;
include /etc/nginx/default.d/*.conf;
rewrite ^(.*) https://$server_name$1 permanent;
location ~ [^/]\.php(/|$) {
#fastcgi_pass remote_php_ip:9000;
fastcgi_pass unix:/dev/shm/php-cgi.sock;
fastcgi_index index.php;
include fastcgi.conf;
}
location ~ .*\.(gif|jpg|jpeg|png|bmp|swf|flv|ico)$ {
expires 30d;
access_log off;
}
location ~ .*\.(js|css)?$ {
expires 7d;
access_log off;
}
}证书需要购买,淘宝便宜;
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- 【安全】 详解 Nginx + Tomcat HTTPS/SSL 配置
- nginx配置ssl双向验证 nginx https ssl证书配
- Nginx + Tomcat + HTTPS 配置原来不需要在 Tomcat 上启用 SSL 支持
- Nginx+Tomcat SSL配置指南|Nginx+Tomcat实现https安全链接
- nginx使用ssl模块配置HTTPS支持
- 阿里云Center OS 6.2 Nginx 配置 SSL/TLS HTTPS配置
- Nginx 配置 SSL 证书 + HTTPS 站点
- nginx使用ssl模块配置HTTPS支持
- Nginx 配置 SSL 证书 + HTTPS 站点小记
- nginx配置ssl加密(单双向认证、部分https)
- 详解 Nginx + Tomcat HTTPS/SSL 配置方法
- Nginx下配置HTTPS(SSL)安全站点
- nginx使用ssl模块配置HTTPS支持
- nginx配置ssl双向验证 nginx https ssl证书配置
- 详解 Nginx + Tomcat HTTPS/SSL 配置方法
- StartSSL免费的HTTPS证书颁发机构及nginx 的ssl配置
- Nginx配置SSL并强制http跳转到https
- nginx使用ssl模块配置HTTPS支持
- nginx 配置 ssl 模块支持 https
- 详解 Nginx + Tomcat HTTPS/SSL 配置