MENU

几个常用Nginx规则

December 2, 2017 • Read: 2570 • 笔记阅读设置

本人常用的几个 Nginx 规则,笔记笔记。

  • # 防止tpl inc cfg文件被下载
  • location ~* \.(tpl|inc|cfg)$ {
  • deny all;
  • }
  • # 套用CDN的情况返回真实IP
  • add_header X-Real-IP $http_x_real_ip;
  • set_real_ip_from 0.0.0.0/0;
  • real_ip_header X-Real-IP;
  • real_ip_recursive on;
  • # SSL反代
  • server
  • {
  • listen 443;
  • server_name www.ccav.me ccav.me;
  • #rewrite ^/(.*) https://$server_name$1 permanent;
  • ssl on;
  • ssl_certificate /root/#PEM/CRT;
  • ssl_certificate_key /root/#KEY;
  • # ssl_protocols SSLv2 SSLv3 TLSv1;
  • # ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
  • # ssl_prefer_server_ciphers on;
  • #listen 80;
  • location / {
  • proxy_redirect www.B.com /;
  • proxy_pass https://www.B.com;
  • proxy_set_header Accept-Encoding "";
  • proxy_set_header User-Agent $http_user_agent;
  • proxy_set_header Accept-Language "zh-CN";
  • proxy_set_header X-Real-IP $remote_addr;
  • }
  • }
  • server
  • {
  • listen 80;
  • server_name www.ccav.me ccav.me;
  • rewrite ^(.*) https://$server_name$1 permanent;
  • }
  • #根据指定来访IP跳转
  • if ($remote_addr ~* "192.168.1.2|192.168.1.3|103.118.40.232192.168.1.4") {
  • rewrite ^/(.*) https://ccav.me;
  • }
Last Modified: July 29, 2020
Archives QR Code
QR Code for this page
Tipping QR Code
Leave a Comment