zoukankan      html  css  js  c++  java

  • nginx tomcat https配置方案

    nginx目录下配置:

          ssl目录下 添加 证书和密码,如图

          

        /etc/nginx/conf.d  下修改配置文件

           

    HTTP域名的配置:      

    ## Basic reverse proxy server ##
    ## Apache backend for www.yuming.com ##
    upstream yuming{
    server 127.0.0.1:8080; #Apache
    }

    ## Start www.yuming.cn ##
    server {
    listen 80;
    server_name yuming.com www.yuming.com;
    return 301 https://yuming.com$request_uri;
    access_log logs/yuming.access.log main;
    error_log logs/yuming.error.log;
    root html;
    index index.html index.htm index.php;

    ## send request back to apache ##
    location / {
    proxy_pass http://yuming;

    #Proxy Settings
    proxy_redirect off;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
    proxy_max_temp_file_size 0;
    proxy_connect_timeout 90;
    proxy_send_timeout 90;
    proxy_read_timeout 90;
    proxy_buffer_size 4k;
    proxy_buffers 4 32k;
    proxy_busy_buffers_size 64k;
    proxy_temp_file_write_size 64k;
    }
    }

     HTTPS的配置 conf

    ## Basic reverse proxy server ##
    ## Apache backend for www.yuming.com ##
    upstream zjydjf1 {
    server 127.0.0.1:6443; #Apache   与 tomcat里配置的相同 端口
    }

    server {
    listen 443;
    server_name yuming.com;
    ssl on;
    ssl_certificate ssl/p2p.pem;
    ssl_certificate_key ssl/p2p.key;

    ssl_session_timeout 5m;

    ssl_protocols SSLv2 SSLv3 TLSv1;
    ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
    ssl_prefer_server_ciphers on;
    access_log logs/yuming.access.log main;
    error_log logs/yuming.error.log;
    root html;
    index index.html index.htm index.php;

    ## send request back to apache ##
    location / {
    proxy_pass https://zjydjf1;

    #Proxy Settings
    proxy_redirect off;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
    proxy_max_temp_file_size 0;
    proxy_connect_timeout 90;
    proxy_send_timeout 90;
    proxy_read_timeout 90;
    proxy_buffer_size 4k;
    proxy_buffers 4 32k;
    proxy_busy_buffers_size 64k;
    proxy_temp_file_write_size 64k;
    }

    }

    tomcat配置:

    配置server.xml

     仅供参考
  • 相关阅读:
    推荐谷歌浏览器12款常用的扩展
    推荐谷歌浏览器12款常用的扩展
    推荐VSCode12个比较实用的插件
    推荐VSCode12个比较实用的插件
    Linux中Shell循环结构for用法笔记
    django之上传图片
    django之中间件设置
    django之admin站点
    django之管理静态文件
    django之设置分页
  • 原文地址:https://www.cnblogs.com/hutuchong/p/5742804.html
Copyright © 2011-2022 走看看