Post Friends My journal
tevga

nextcloud + nginx reverse proxy

Nov 22, 2020 10:22


server {
   listen 443 ssl http2;
   server_name xxx.com;
   client_max_body_size 10000M;
   location / {
        proxy_pass                       https://xxx.xxx.xxx.xxx/;
        proxy_http_version               1.1;
        proxy_set_header Host            $host;
        proxy_set_header X-Real-IP       $remote_addr;
        proxy_set_header X-Forwarded-For $remote_addr;
        proxy_ssl_session_reuse          on;
        proxy_socket_keepalive           on;
        proxy_hide_header                Upgrade;
        proxy_connect_timeout            6000;
        proxy_send_timeout               6000;
        proxy_read_timeout               6000;
        send_timeout                     6000;
   }
   location /.well-known/carddav {
        return 301 $scheme://$host/remote.php/dav;
   }
   location /.well-known/caldav {
        return 301 $scheme://$host/remote.php/dav;
   }
   ssl_stapling on;
   ssl_stapling_verify on;
   ssl_session_cache       shared:SSL:1m;
   ssl_certificate         /etc/letsencrypt/live/xxx.com/fullchain.pem;
   ssl_certificate_key     /etc/letsencrypt/live/xxx.com/privkey.pem;
   ssl_trusted_certificate /etc/letsencrypt/live/xxx.com/chain.pem;
   ssl_ciphers             EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
}
Leave a comment

Previous post Next post
Up
Homepage Read journal... Full version Help Русская версия
© 1999-2024 LiveJournal, Inc.