-
Notifications
You must be signed in to change notification settings - Fork 41
Server Serve
Pierre-Alain TORET edited this page Jan 15, 2020
·
2 revisions
up.example.com {
proxy / 127.0.0.1:8002 {
transparent
}
gzip
}
<VirtualHost *:80>
ServerName up.example.com
DocumentRoot /data/goploader-server
<Directory /data/goploader-server>
Require all granted
</Directory>
ProxyPass / "http://localhost:8080/"
ProxyPassReverse / "http://localhost:8080/"
LogLevel warn
ErrorLog /data/logs/apache2/goploader.log
CustomLog /var/log/apache2/goploader.log combined
</VirtualHost>server {
listen youripv4:80;
listen [youripv6]:80;
server_name yourdomain.tld;
return 301 https://$server_name$request_uri;
access_log /var/log/nginx/yourdomain.access.log main;
error_log /var/log/nginx/yourdomain.error.log;
}
server {
listen youripv4:443 ssl http2;
listen [youripv6]:443 ssl http2;
server_name yourdomain.told;
access_log /var/log/nginx/yourdomain.access.log main;
error_log /var/log/nginx/yourdomain.error.log;
ssl_certificate "/etc/letsencrypt/live/yourdomain.tld/fullchain.pem";
ssl_certificate_key "/etc/letsencrypt/live/yourdomain.tld/privkey.pem";
ssl_session_cache shared:SSL:50m;
ssl_session_timeout 1d;
ssl_session_tickets off;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ecdh_curve secp384r1;
ssl_ciphers EECDH+AESGCM:EECDH+CHACHA20:EECDH+AES;
ssl_prefer_server_ciphers on;
add_header Strict-Transport-Security "max-age=15552000; preload";
ssl_dhparam /etc/nginx/conf.d/dhparam4096.pem;
ssl_stapling on;
ssl_stapling_verify on;
ssl_trusted_certificate /etc/letsencrypt/live/yourdomain.tld/chain.pem;
client_max_body_size 0;
location / {
proxy_pass http://127.0.0.1:8080/;
proxy_set_header Host $host;
proxy_http_version 1.1;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_read_timeout 3600;
}
}