反向代理及证书配置

worker_processes 1;
pid /usr/local/nginx/conf/nginx.pid;
events {
worker_connections 1024;
}

http {
include mime.types;
default_type application/octet-stream;
sendfile on;
keepalive_timeout 65;
#请求数限制
limit_conn_log_level error;
limit_conn_status 503;
client_max_body_size 50m;
limit_conn_zone $binary_remote_addr zone=one:20m;
limit_req_zone $binary_remote_addr zone=allips:20m rate=20r/s;
log_format access '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /var/log/nginx/access.log access;

include server/*.conf;
upstream www.dmg.com {
server 172.17.10.158:443;
}

server {
listen 80;
server_name www.dmg.com dmg.com;
rewrite ^(.*) https://www.dmgcf.com$1 permanent;
}
server {
listen 443;
server_name www.dmg.com dmg.com;
#access_log logs/dmg_access.log;
#error_log logs/dmg_error.log;
#并发限制
limit_conn one 500;

ssl on;
ssl_certificate /usr/local/nginx/conf/ssl/2019/server.cer;
ssl_certificate_key /usr/local/nginx/conf/ssl/2019/server.key;
ssl_session_timeout 5m;
ssl_session_cache shared:SSL:1m;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;

include /usr/local/nginx/conf/fangwd.conf;
location / {
proxy_pass https://www.dmg.com;
index index.php index.html index.htm;
}

location ~ /\.ht {
deny all;
}
}
}