server { listen 443 ssl; #Configure the default access port of HTTPS to 443. #If the default access port of HTTPS is not configured here, it may cause Nginx to fail to start. #If you use Nginx 1.15.0 and above, please use listen 443 ssl instead of listen 443 and ssl on. server_name xinzkjnxrecheqiserver.xzkjnx.com; root html; index index.html index.htm; ssl_certificate rcq-cert/xinzkjnxrecheqiserver.xzkjnx.com.pem; x.com.key ; ssl_session_timeout 5m; ssl_ciphers ECDHE- RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; #Indicates the type of encryption suite used. ssl_protocols TLSv1.1 TLSv1.2; #Indicates the type of TLS protocol used, you need to evaluate whether to configure TLSv1.1 protocol by yourself.
ssl_prefer_server_ciphers on;
location / {
proxy_pass http://39.98.194.121:80;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
location /websocket {
proxy_pass http://39.98.194.121:80/websocket;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "Upgrade";
proxy_set_header X-Real-IP $remote_addr;
}
}