NGINX NGINX Trac 3rd Party Modules Security Advisories CHANGES OpenResty ngx_lua Tengine 在线学习资源 NGINX 开发从入门到精通 NGINX Modules ngx_echo
这是一个创建于 4193 天前的主题,其中的信息可能已经有所发展或是发生改变。
我用的是 http://blog.linuxeye.com/31.html 这个 “LNMP、LAMP、LANMP一键安装脚本” 的默认配置,网站是 example.com,主页是 http://example.com/index.php。
nginx 配置是
# ....../nginx/conf/vhost/example.com.conf
server {
listen 80;
server_name example.com;
access_log off;
index index.html index.htm index.jsp index.php;
root /home/wwwroot/example.com;
location / {
try_files $uri @apache;
}
location @apache {
internal;
proxy_pass http://127.0.0.1:8080;
}
location ~ .*\.(php|php5)?$ {
proxy_pass http://127.0.0.1:8080;
}
}
apache 配置是
# ......apache/conf/vhost/example.com.conf
<VirtualHost *:8080>
ServerAdmin [email protected]
DocumentRoot "/home/wwwroot/example.com"
ServerName example.com
<Directory "/home/wwwroot/example.com">
SetOutputFilter DEFLATE
Options FollowSymLinks
AllowOverride All
Order allow,deny
Allow from all
DirectoryIndex index.html index.php
</Directory>
</VirtualHost>
生成了 example.com.csr 和 example.com.key ,给钱买了个证书 example.com.crt 。
我应该怎样添加配置?比如说添加删除 apache nginx 的功能和写虚拟主机设置等等?使得又可以访问 http://example.com 又可以访问 https://example.com ?
谢谢各位!
nginx 配置是
# ....../nginx/conf/vhost/example.com.conf
server {
listen 80;
server_name example.com;
access_log off;
index index.html index.htm index.jsp index.php;
root /home/wwwroot/example.com;
location / {
try_files $uri @apache;
}
location @apache {
internal;
proxy_pass http://127.0.0.1:8080;
}
location ~ .*\.(php|php5)?$ {
proxy_pass http://127.0.0.1:8080;
}
}
apache 配置是
# ......apache/conf/vhost/example.com.conf
<VirtualHost *:8080>
ServerAdmin [email protected]
DocumentRoot "/home/wwwroot/example.com"
ServerName example.com
<Directory "/home/wwwroot/example.com">
SetOutputFilter DEFLATE
Options FollowSymLinks
AllowOverride All
Order allow,deny
Allow from all
DirectoryIndex index.html index.php
</Directory>
</VirtualHost>
生成了 example.com.csr 和 example.com.key ,给钱买了个证书 example.com.crt 。
我应该怎样添加配置?比如说添加删除 apache nginx 的功能和写虚拟主机设置等等?使得又可以访问 http://example.com 又可以访问 https://example.com ?
谢谢各位!
 | 1 Livid MOD PRO  1 理论上你只需要给 Nginx 加上 SSL 就可以了。Nginx 和后端的 Apache 通讯时还是继续用 http。 |
 | 2 yangzh OP @Livid 我也是这样想的。最坑爹的是居!然!不!成!功!访问 https 没有响应。。。 我是在 80 那个 server 下添加这么一个 server 的,但是我重启 nginx (成功重启)之后访问 https 没有响应的样子 server{ listen 443; ssl on; server_name example.com; ssl_certificate /secret/example.com.crt; ssl_certificate_key /secret/example.com.key; #以下都是全抄 80 的设置 access_log off; index index.html index.htm index.jsp index.php; root /home/wwwroot/example.com; location / { try_files $uri @apache; } location @apache { internal; proxy_pass http://127.0.0.1:8080; } location ~ .*\.(php|php5)?$ { proxy_pass http://127.0.0.1:8080; } } |
| 3 Livid MOD PRO 1 |
| 4 yangzh OP @Livid 我觉得我很接近你这个官方指南了呀。。 刚才,根据官方指南,我把 listen 443; ssl on; 改成了 listen 443 ssl; 添加了以下三行,还是不行。。。 ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on; 访问 https://example.com/, chrome 显示 Google Chrome could not load the webpage because example.com took too long to respond. any ideas ? |
Select Language