server { listen 80; # 监听80端口 server_name example.com; # 域名 location / { proxy_pass http://localhost:8080; # 代理到本地8080端口 proxy_set_header Host $host; # 将原始请求头的Host字段传递到后端 proxy_set_header X-Real-IP $remote_addr; # 将客户端的真实IP地址传递到后端 proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; # 将原始请求的X-Forwarded-For字段传递到后端 proxy_set_header X-Forwarded-Proto $scheme; # 将请求的协议(http/https)传递到后端 } }server { listen 443 ssl; server_name example.com; ssl_certificate /etc/letsencrypt/live/yourdomain.com/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/yourdomain.com/privkey.pem; # managed by Certbot include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot location / { proxy_pass http://127.0.0.1:8080; # 将请求转发到运行在本地8080端口的服务器 proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; } }
