zoukankan      html  css  js  c++  java

  • nginx tomcat https配置方案

    nginx目录下配置:

          ssl目录下 添加 证书和密码,如图

          

        /etc/nginx/conf.d  下修改配置文件

           

    HTTP域名的配置:      

    ## Basic reverse proxy server ##
    ## Apache backend for www.yuming.com ##
    upstream yuming{
    server 127.0.0.1:8080; #Apache
    }

    ## Start www.yuming.cn ##
    server {
    listen 80;
    server_name yuming.com www.yuming.com;
    return 301 https://yuming.com$request_uri;
    access_log logs/yuming.access.log main;
    error_log logs/yuming.error.log;
    root html;
    index index.html index.htm index.php;

    ## send request back to apache ##
    location / {
    proxy_pass http://yuming;

    #Proxy Settings
    proxy_redirect off;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
    proxy_max_temp_file_size 0;
    proxy_connect_timeout 90;
    proxy_send_timeout 90;
    proxy_read_timeout 90;
    proxy_buffer_size 4k;
    proxy_buffers 4 32k;
    proxy_busy_buffers_size 64k;
    proxy_temp_file_write_size 64k;
    }
    }

     HTTPS的配置 conf

    ## Basic reverse proxy server ##
    ## Apache backend for www.yuming.com ##
    upstream zjydjf1 {
    server 127.0.0.1:6443; #Apache   与 tomcat里配置的相同 端口
    }

    server {
    listen 443;
    server_name yuming.com;
    ssl on;
    ssl_certificate ssl/p2p.pem;
    ssl_certificate_key ssl/p2p.key;

    ssl_session_timeout 5m;

    ssl_protocols SSLv2 SSLv3 TLSv1;
    ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
    ssl_prefer_server_ciphers on;
    access_log logs/yuming.access.log main;
    error_log logs/yuming.error.log;
    root html;
    index index.html index.htm index.php;

    ## send request back to apache ##
    location / {
    proxy_pass https://zjydjf1;

    #Proxy Settings
    proxy_redirect off;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
    proxy_max_temp_file_size 0;
    proxy_connect_timeout 90;
    proxy_send_timeout 90;
    proxy_read_timeout 90;
    proxy_buffer_size 4k;
    proxy_buffers 4 32k;
    proxy_busy_buffers_size 64k;
    proxy_temp_file_write_size 64k;
    }

    }

    tomcat配置:

    配置server.xml

     仅供参考
  • 相关阅读:
    Pycharm中导入Python包的方法
    关于SOA架构设计的案例分析
    浅谈12306核心模型设计思路和架构设计
    美图数据统计分析平台架构演进
    有赞搜索系统的架构演进
    美团云的网络架构演进之路
    数据蜂巢架构演进之路
    1号店电商峰值与流式计算
    京东B2B业务架构演变
    饿了么:业务井喷时订单系统架构的演进
  • 原文地址:https://www.cnblogs.com/hutuchong/p/5742804.html
Copyright © 2011-2022 走看看