Home Explore Help
Register Sign In
caner
/
systemctl-emp
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
systemctl-emp
/
conf.d
/
https-caner.conf

https-caner.conf 652 B
Permalink History Raw

1234567891011121314151617181920 
  1. # frpHTTPS
    2. 

  2. server {
    3. 

  3.     #SSL 访问端口号为 443
    4. 

  4.     listen 443 ssl; 
    5. 

  5.    #填写绑定证书的域名
    6. 

  6.     server_name caner.top; 
    7. 

  7.    #目录
    8. 

  8.     root /var/www/web/;
    9. 

  9.    #证书文件名称
    10. 

  10.     ssl_certificate "/var/www/pki/caner.top_bundle.crt"; 
    11. 

  11.    #私钥文件名称
    12. 

  12.     ssl_certificate_key "/var/www/pki/caner.top.key"; 
    13. 

  13.     ssl_session_timeout 5m;
    14. 

  14.    #请按照以下协议配置
    15. 

  15.     ssl_protocols TLSv1 TLSv1.1 TLSv1.2; 
    16. 

  16.    #请按照以下套件配置,配置加密套件,写法遵循 openssl 标准。
    17. 

  17.     ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE; 
    18. 

  18.     ssl_prefer_server_ciphers on;
    19. 

  19.     server_tokens off;      
    20. 

  20. }
    21.