修改配置文件
vi /etc/nginx/conf.d/default.conf
改为如下内容
# The default server
#server {
# listen 80 default_server;
# listen [::]:80 default_server;
# server_name _;
# root /usr/share/nginx/html;
# # Load configuration files for the default server block.
# include /etc/nginx/default.d/*.conf;
# location / {
# }
# error_page 404 /404.html;
# location = /40x.html {
# }
# error_page 500 502 503 504 /50x.html;
# location = /50x.html {
# }
server {
listen 443;
server_name xxx.xxx.cn;
ssl on;
ssl_certificate 1_xxx.xxx.cn_bundle.crt;
ssl_certificate_key 2_xxx.xxx.cn.key;
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
ssl_prefer_server_ciphers on;
location / {
proxy_next_upstream http_502 http_504 error timeout invalid_header;
proxy_pass http://; #反向代理的目标
proxy_redirect off;
proxy_set_header Host xxx.xxx.cn;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-proto https;
index index.htm index.html index.php;
}
}
重启nginx
service nginx restart
反向代理成功