首先下载.pem,.key文件,并在Nginx目录下创建cert文件夹,将这两个文件放在cert文件夹下,
然后在nginx.conf文件里添加这段内容,root,ssl_certificate,ssl_certificate_key,server_name都要写自己的:
server {
listen 443;
root /www/web/jincn/public_html;
ssl on;
ssl_certificate cert/*****.pem;
ssl_certificate_key cert/*****.key;
ssl_prefer_server_ciphers on;
ssl_session_timeout 10m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
server_name ji*****t.cn;
index index.html index.php index.htm;
error_page 400 /errpage/400.html;
error_page 403 /errpage/403.html;
error_page 404 /errpage/404.html;
error_page 503 /errpage/503.html;
location ~ \.php$ {
proxy_pass http://127.0.0.1:88;
include naproxy.conf;
}
location ~ /\.ht {
deny all;
}
location / {
try_files $uri @apache;
}
location @apache {
internal;
proxy_pass http://127.0.0.1:88;
include naproxy.conf;
}
}