Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- events {}
- http {
- sendfile on;
- tcp_nopush on;
- tcp_nodelay on;
- keepalive_timeout 15;
- types_hash_max_size 2048;
- server_tokens off;
- include /etc/nginx/mime.types;
- default_type text/javascript;
- access_log off;
- error_log /var/log/nginx/error.log;
- gzip on;
- gzip_min_length 100;
- gzip_http_version 1.1;
- gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
- client_max_body_size 8M;
- server {
- listen 80;
- server_tokens off;
- location /.well-known/acme-challenge/ {
- root /var/www/certbot;
- }
- location / {
- return 301 https://$host$request_uri;
- }
- }
- server {
- listen 443 ssl;
- rewrite_log on;
- ssl_certificate /etc/letsencrypt/live/ac-mpr.ru/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/ac-mpr.ru/privkey.pem;
- include /etc/letsencrypt/options-ssl-nginx.conf;
- ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
- add_header Strict-Transport-Security 'max-age=604800';
- location / {
- proxy_pass https://10.77.2.171:443;
- proxy_redirect off;
- #proxy_redirect default;
- client_max_body_size 5m;
- proxy_connect_timeout 600;
- proxy_send_timeout 600;
- proxy_read_timeout 600;
- proxy_pass_request_headers on;
- proxy_set_header Host $host;
- proxy_set_header X-URI $uri;
- proxy_set_header X-ARGS $args;
- proxy_set_header Refer $http_refer;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header X-Forwarded-Proto $scheme;
- }
- }
- }
Add Comment
Please, Sign In to add comment