30 lines
717 B
Plaintext
30 lines
717 B
Plaintext
server {
|
|
set $forward_scheme <<PROXY_SCHEME>>;
|
|
set $server "<<PROXY_IP>>";
|
|
set $port <<PROXY_PORT>>;
|
|
|
|
listen 80;
|
|
listen 443 ssl http2;
|
|
|
|
server_name <<HOSTNAME>>;
|
|
|
|
include conf.d/include/letsencrypt-acme-challenge.conf;
|
|
include conf.d/include/ssl-ciphers.conf;
|
|
ssl_certificate /opt/lb-data/letsencrypt/live/<<HOSTNAME>>/fullchain.pem;
|
|
ssl_certificate_key /opt/lb-data/letsencrypt/live/<<HOSTNAME>>/privkey.pem;
|
|
|
|
access_log /var/log/nginx/<<HOSTNAME>>.proxy.log proxy;
|
|
error_log /var/log/nginx/<<HOSTNAME>>.error.log warn;
|
|
|
|
<<EXPLOITS>>
|
|
<<WEBSOCKET>>
|
|
<<HSTS>>
|
|
|
|
location / {
|
|
<<WEBSOCKET>>
|
|
<<HSTS>>
|
|
include conf.d/include/force-ssl.conf;
|
|
include conf.d/include/proxy.conf;
|
|
}
|
|
}
|