Created
March 29, 2019 03:32
-
-
Save codenuke/25cfa41b89c8e4132526d03952cdc922 to your computer and use it in GitHub Desktop.
Config from Domecloud Class
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| user root; | |
| worker_processes auto; | |
| worker_rlimit_nofile 100000; | |
| pid /run/nginx.pid; | |
| events { | |
| worker_connections 200000; | |
| multi_accept on; | |
| } | |
| http { | |
| sendfile on; | |
| tcp_nopush on; | |
| tcp_nodelay on; | |
| keepalive_timeout 30; | |
| types_hash_max_size 2048; | |
| server_tokens off; | |
| reset_timedout_connection on; | |
| add_header X-Powered-By "DomePress 1.0b"; | |
| add_header DomePress-Cache $upstream_cache_status; | |
| # Limit Request | |
| limit_req_status 403; | |
| limit_req_zone $binary_remote_addr zone=one:10m rate=1r/s; | |
| # Proxy Settings | |
| # set_real_ip_from proxy-server-ip; | |
| # real_ip_header X-Forwarded-For; | |
| fastcgi_read_timeout 300; | |
| client_max_body_size 500m; | |
| ## | |
| # SSL Settings | |
| ## | |
| ssl_session_cache shared:SSL:20m; | |
| ssl_session_timeout 10m; | |
| ssl_prefer_server_ciphers on; | |
| ssl_ciphers EXXHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AXES128-GCM-SHAX256:ECXDHE-RSA-AES256-GCM-SHAX384:ECDHE-ECXDSA-AESX256-GCM-SHA3X84:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-RSA-DES-CBC3-SHA:ECDHE-ECDSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA; | |
| ssl_protocols TLSv1 TLSv1.1 TLSv1.2; | |
| ## | |
| # Basic Settings | |
| ## | |
| # server_names_hash_bucket_size 64; | |
| # server_name_in_redirect off; | |
| include mime.types; | |
| default_type application/octet-stream; | |
| ## | |
| # Logging Settings | |
| ## | |
| access_log logs/access.log; | |
| error_log logs/error.log; | |
| # Log format Settings | |
| log_format rt_cache '$remote_addr $upstream_response_time $upstream_cache_status [$time_local] ' | |
| '$http_host "$request" $status $body_bytes_sent ' | |
| '"$http_referer" "$http_user_agent"'; | |
| log_format main '$http_x_forwarded_for - $remote_user [$time_local] "$host" "$subdomain" "$request" ' | |
| '$status $body_bytes_sent "$http_referer" ' | |
| '"$http_user_agent" $request_time'; | |
| ## | |
| # Gzip Settings | |
| ## | |
| gzip on; | |
| gzip_disable "msie6"; | |
| gzip_vary on; | |
| gzip_proxied any; | |
| gzip_comp_level 6; | |
| gzip_buffers 16 8k; | |
| gzip_http_version 1.1; | |
| gzip_types | |
| application/atom+xml | |
| application/javascript | |
| application/json | |
| application/rss+xml | |
| application/vnd.ms-fontobject | |
| application/x-font-ttf | |
| application/x-web-app-manifest+json | |
| application/xhtml+xml | |
| application/xml | |
| font/opentype | |
| image/svg+xml | |
| image/x-icon | |
| text/css | |
| text/plain | |
| text/x-component | |
| text/xml | |
| text/javascript; | |
| ## VTS virtual host traffic | |
| vhost_traffic_status_zone; | |
| ## | |
| # Virtual Host Configs | |
| ## | |
| include conf.d/*.conf; | |
| include sites-enabled/*; | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment