|
|
@@ -1,5 +1,8 @@
|
|
|
worker_processes 1;
|
|
|
|
|
|
+error_log /var/log/nginx/error.log warn;
|
|
|
+pid /var/run/nginx.pid;
|
|
|
+
|
|
|
events {
|
|
|
worker_connections 1024;
|
|
|
}
|
|
|
@@ -9,6 +12,14 @@ http {
|
|
|
default_type application/octet-stream;
|
|
|
sendfile on;
|
|
|
keepalive_timeout 65;
|
|
|
+ # 限制body大小
|
|
|
+ client_max_body_size 100m;
|
|
|
+
|
|
|
+ log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
|
+ '$status $body_bytes_sent "$http_referer" '
|
|
|
+ '"$http_user_agent" "$http_x_forwarded_for"';
|
|
|
+
|
|
|
+ access_log /var/log/nginx/access.log main;
|
|
|
|
|
|
upstream server {
|
|
|
server 172.30.0.60:8080;
|
|
|
@@ -19,6 +30,19 @@ http {
|
|
|
listen 80;
|
|
|
server_name localhost;
|
|
|
|
|
|
+ # https配置参考 start
|
|
|
+ #listen 443 ssl;
|
|
|
+
|
|
|
+ # 证书直接存放 /docker/nginx/cert/ 目录下即可 更改证书名称即可 无需更改证书路径
|
|
|
+ #ssl on;
|
|
|
+ #ssl_certificate /etc/nginx/cert/xxx.local.crt; # /etc/nginx/cert/ 为docker映射路径 不允许更改
|
|
|
+ #ssl_certificate_key /etc/nginx/cert/xxx.local.key; # /etc/nginx/cert/ 为docker映射路径 不允许更改
|
|
|
+ #ssl_session_timeout 5m;
|
|
|
+ #ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
|
|
|
+ #ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
|
|
|
+ #ssl_prefer_server_ciphers on;
|
|
|
+ # https配置参考 end
|
|
|
+
|
|
|
location / {
|
|
|
root /usr/share/nginx/html;
|
|
|
try_files $uri $uri/ /index.html;
|
疯狂的狮子li