server {
listen 8001 ssl;
client_max_body_size 100M;
#指定根目录
root html;
ssl_certificate cert/xxxxxxx.crt;#
ssl_certificate_key cert/xxxxxx.key;#
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ECDH:AESGCM:HIGH:!RC4:!DH:!MD5:!aNULL:!eNULL;
ssl_prefer_server_ciphers on;
#ssl证书申请文件校验
#alias vitural dir replace location path
location ^~ /.well-known/pki-validation/ {
alias html/well-known/;
}
location /sk001 {
return 302 https://ip:port/#/?$request_id;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header REMOTE-HOST $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-For $remote_addr;
}
}
浙公网安备 33010602011771号