#user nobody;
worker_processes 1;
#error_log logs/error.log;
#error_log logs/error.log notice;
#error_log logs/error.log info;
events {
worker_connections 1024;
}
http {
include mime.types;
default_type application/octet-stream;
#log_format main '$remote_addr - $remote_user [$time_local] "$request" '
# '$status $body_bytes_sent "$http_referer" '
# '"$http_user_agent" "$http_x_forwarded_for"';
#access_log logs/access.log main;
sendfile on;
#tcp_nopush on;
#keepalive_timeout 0;
keepalive_timeout 65;
#gzip on;
map $http_upgrade $connection_upgrade {
default upgrade;
'' close;
}
 
upstream websocket {
server 192.168.9.201:8667;
}
server {
listen 80;
server_name 192.168.9.201;
rewrite ^(.*) https://$server_name$1 permanent; #强制http 跳转到https地址
#charset koi8-r;
#access_log logs/host.access.log main;
location / {
        index index.html;
    root /opt/nginx-web/iphm/;
            autoindex on;
        #rewrite ^(.*)$ https://$host$1 permanent;
}
#error_page 404 /404.html;
# redirect server error pages to the static page /50x.html
#
error_page 500 502 503 504 /50x.html;
location /config {
         index index.html;
root /opt/nginx-web/config/;
autoindex on;
}
 
     location ^~ /websocket/alarm {
     proxy_pass http://websocket;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $connection_upgrade;
}       
}
# another virtual host using mix of IP-, name-, and port-based configuration
#
    server {
listen 8888;
        server_name 192.168.9.201;
rewrite ^(.*) https://$server_name:888$1 permanent;
location / {
         index index.html;
root /opt/nginx-web/config/;
autoindex on;
}
}
server {
listen 8889;
        server_name localhost;
location / {
         index index.html;
root /opt/nginx-web/diagnostic/;
autoindex on;
}
}
#HTTPS server
 
    server {
        listen 3001;
        server_name localhost;
        location / {
            #index index.html;
            #root /opt/nginx-web/iphm/;
            proxy_pass http://192.168.9.10:8102;
        }
    }
    # HTTPS server
#
server {
listen 443 ssl;
server_name 192.168.9.201;
ssl on;
ssl_certificate /usr/local/webserver/nginx/keys/server.crt;
ssl_certificate_key /usr/local/webserver/nginx/keys/server.key;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
# location /saml {
# proxy_pass http://192.168.70.34:8104;
# }
# location /sso {
# proxy_pass http://192.168.70.34:8104;
# }
location / {
root /opt/nginx-web/iphm;
index index.html;
autoindex on;
}
location /grafana {
rewrite ^(/grafana)(.*)$ $2 break;
proxy_pass http://192.168.9.201:3000;
}
location /zuul {
rewrite ^(/zuul)(.*)$ $2 break;
proxy_pass http://192.168.9.10:8102;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
location ^~ /websocket/alarm {
     proxy_pass http://websocket;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $connection_upgrade;
}
        error_log logs/error_8889.log error;
}
server {
listen 888 ssl;
server_name 192.168.9.201;
ssl on;
ssl_certificate /usr/local/webserver/nginx/keys/server.crt;
ssl_certificate_key /usr/local/webserver/nginx/keys/server.key;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
# location /saml {
# proxy_pass http://192.168.70.34:8104;
# }
# location /sso {
# proxy_pass http://192.168.70.34:8104;
# }
location / {
root /opt/nginx-web/config;
index index.html;
autoindex on;
}
        error_log logs/error_888.log error;
}
server {
listen 300 ssl;
server_name 192.168.9.201;
ssl on;
ssl_certificate /usr/local/webserver/nginx/keys/server.crt;
ssl_certificate_key /usr/local/webserver/nginx/keys/server.key;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
# location /saml {
# proxy_pass http://192.168.70.34:8104;
# }
# location /sso {
# proxy_pass http://192.168.70.34:8104;
# }
location / {
proxy_pass http://192.168.9.201:3000$request_uri;
}
location ^~/pubilc/ {
proxy_pass http://192.168.9.201:3000$request_uri;
}
        error_log logs/error_300.log error;
}
}

nginx 配置 HTTPS 及http 强制跳转https.的更多相关文章

  1. windwos下nginx 配置https并http强制跳转https

    windwos下nginx  配置https并http强制跳转https 一.首先配置证书文件 申请证书文件,这里就不做详细过程了,直接看证书文件结果. 这是两个证书的关键文件 打开ngxin下con ...

  2. nginx开启HSTS让浏览器强制跳转HTTPS访问

    在上一篇文章中我们已经实现了本地node服务使用https访问了,看上一篇文章 效果可以看如下: 但是如果我们现在使用http来访问的话,访问不了.如下图所示: 因此我现在首先要做的是使用nginx配 ...

  3. tomcat配置https 和 http强制跳转https

    https是http+ssl的可进行加密传输,身份认证的网络协议,防止数据在传输过程中被窃取.因此,https将得到越来越广泛的应用,下面是如何配置tomcat服务器让http自动转到https的步骤 ...

  4. nginx配置http强制跳转https

    nginx配置http强制跳转https 网站添加了https证书后,当http方式访问网站时就会报404错误,所以需要做http到https的强制跳转设置. 一.采用nginx的rewrite方法 ...

  5. (转)Nginx的https配置记录以及http强制跳转到https的方法梳理

    Nginx的https配置记录以及http强制跳转到https的方法梳理 原文:http://www.cnblogs.com/kevingrace/p/6187072.html 一.Nginx安装(略 ...

  6. 解决:ngxin做http强制跳转https,接口的POST请求变成GET

    域名配置了http强制跳转htpps后发现app发起post请求会出现405错误. 所以怀疑是http强制跳转https出现了问题.修改nginx配置如下即可解决: server { listen ; ...

  7. ngxin做http强制跳转https,接口的POST请求变成GET

    http强制跳转https出现了问题.修改nginx配置如下即可解决: server { listen 80; server_name *.snsprj.cn; return 307 https:// ...

  8. 开启HSTS让浏览器强制跳转HTTPS访问

    开启HSTS让浏览器强制跳转HTTPS访问 来源 https://www.cnblogs.com/luckcs/articles/6944535.html 在网站全站HTTPS后,如果用户手动敲入网站 ...

  9. Nginx的https配置记录以及http强制跳转到https的方法梳理

    一.Nginx安装(略)安装的时候需要注意加上 --with-http_ssl_module,因为http_ssl_module不属于Nginx的基本模块.Nginx安装方法: 1 2 # ./con ...

随机推荐

  1. OO-第二单元总结

    一.三次作业的设计策略 (1). 第五次作业 第五次作业由于较为简单,在强测及互测中均没有出现BUG,但是并没有做优化.本次的设计有些不合理,所以在后面的作业中也做了重构.本次的作业主要有三个类,主函 ...

  2. web api 安全

    这方面的文章已经有很多了,我只是记录一下自己在项目中应用的具体实现 客户端 DateTime t = DateTime.Now; long timeStamp = SignHelper.Convert ...

  3. python学习之可视化tkinter基础

  4. JDK7动态代理源码分析

    IObject proxy = (IObject) Proxy.newProxyInstance(IObject.class.getClassLoader(), new Class[]{IObject ...

  5. Azure中block和Page的比较 Azure: Did You Know? Block vs Page Blobs

    Azure storage service supports two types of blobs (blob, or BLOB, stand for Binary Large OBject, i.e ...

  6. impdp导入dmp数据实例

    --创建表空间 create tablespace ALIX datafile 'F:\File\ALIX.ora' size 1000m; --创建数据库目录 create directory ex ...

  7. 爬虫(九)scrapy框架简介和基础应用

    概要 scrapy框架介绍 环境安装 基础使用 一.什么是Scrapy? Scrapy是一个为了爬取网站数据,提取结构性数据而编写的应用框架,非常出名,非常强悍.所谓的框架就是一个已经被集成了各种功能 ...

  8. c++中各类型数据所占字节数(二)

    转自:https://blog.csdn.net/allen_tony/article/details/76973906 https://blog.csdn.net/zzwdkxx/article/d ...

  9. unity中EventTrigger组件的应用

    using System; using System.Collections; using System.Collections.Generic; using UnityEngine; using D ...

  10. DCOMP——分散式计算

    新型网络DCOMP 据国外媒体2017年11月7日报道,曾经发明互联网的秘密机构“美国国防部高级研究计划局(DARPA)”如今正致力于研发能够完胜互联网的新网络,并且启动了一项链接物联网.智能手机.智 ...