upstream www.gworg.com { server 127.0.0.1:8080; server 127.0.0.1:8021; } server { listen 80; server_name www.gworg.com; accessess_log /data/logs/nginx/scm_access.log; error_log /data/logs/nginx/error.log; location / { proxy_pass http://www.gworg.com; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } } server { listen 443; server_name www.gworg.com; ssl on; ssl_certificate /usr/local/ssl/ssl.crt; ssl_certificate_key /usr/local/ssl/ssl.key; location / { proxy_pass http://www.gworg.com; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } }
配置方法二参考
upstream adminsvr { server 127.0.0.1:8013; server 127.0.0.1:8014 down; } server { listen 80; server_name 127.0.0.1; #自动跳转到HTTPS (可选) if ($server_port = 80) { rewrite ^(.*)$ https://$host$1 permanent; } #自动跳转到HTTPS结束 location / { proxy_pass http://127.0.0.1:8013; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } } # Settings for a TLS enabled server. # server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name 127.0.0.1; ssl_certificate "/usr/local/nginx/conf/cert.crt"; ssl_certificate_key "/usr/local/nginx/conf/cert.key"; ssl_session_cache shared:SSL:1m; ssl_session_timeout 10m; ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on; location /{ proxy_pass http://127.0.0.1:8013; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } } }