khera · March 17, 2014 16:44
diff --git a/nginx-ssl-proxy.conf b/nginx-ssl-proxy.conf
 user  httpd;
 worker_processes  2;

 #error_log  logs/error.log;
 #error_log  logs/error.log  notice;
 #error_log  logs/error.log  info;

 #pid        logs/nginx.pid;

 events {
    worker_connections  1024;
 }

 http {
    include       mime.types;
    default_type  application/octet-stream;

    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    #                  '$status $body_bytes_sent "$http_referer" '
    #                  '"$http_user_agent" "$http_x_forwarded_for"';

    #access_log  logs/access.log  main;

    sendfile        on;
    tcp_nopush     on;

    keepalive_timeout  65;

    #gzip  on;

    ## Proxy caching options
    proxy_buffering           on;
    proxy_intercept_errors    on;
    proxy_next_upstream       error timeout invalid_header;
    proxy_redirect            off;
    proxy_set_header          X-Forwarded-For $remote_addr;
    proxy_connect_timeout     60;
    proxy_send_timeout        60;
    proxy_read_timeout        60;

    # HTTPS server
    server {
        listen       8443;
        server_name  slack-hubot.example.com;

        ssl                  on;
        ssl_certificate      slack-hubot.example.com.crt;
        ssl_certificate_key  slack-hubut.example.com.key;

        ssl_session_timeout  5m;

        ssl_protocols  SSLv2 SSLv3 TLSv1;
        ssl_ciphers  HIGH:!aNULL:!MD5;
        ssl_prefer_server_ciphers   on;

        location / {
         proxy_pass  http://localhost:8080;
 
         proxy_set_header        Host            $host;
         proxy_set_header        X-Real-IP       $remote_addr;
         proxy_set_header        X-Forwarded-For $proxy_add_x_forwarded_for;
       }
    }
 }
	user httpd;
	worker_processes 2;

	#error_log logs/error.log;
	#error_log logs/error.log notice;
	#error_log logs/error.log info;

	#pid logs/nginx.pid;

	events {
	worker_connections 1024;
	}

	http {
	include mime.types;
	default_type application/octet-stream;

	#log_format main '$remote_addr - $remote_user [$time_local] "$request" '
	# '$status $body_bytes_sent "$http_referer" '
	# '"$http_user_agent" "$http_x_forwarded_for"';

	#access_log logs/access.log main;

	sendfile on;
	tcp_nopush on;

	keepalive_timeout 65;

	#gzip on;

	## Proxy caching options
	proxy_buffering on;
	proxy_intercept_errors on;
	proxy_next_upstream error timeout invalid_header;
	proxy_redirect off;
	proxy_set_header X-Forwarded-For $remote_addr;
	proxy_connect_timeout 60;
	proxy_send_timeout 60;
	proxy_read_timeout 60;

	# HTTPS server
	server {
	listen 8443;
	server_name slack-hubot.example.com;

	ssl on;
	ssl_certificate slack-hubot.example.com.crt;
	ssl_certificate_key slack-hubut.example.com.key;

	ssl_session_timeout 5m;

	ssl_protocols SSLv2 SSLv3 TLSv1;
	ssl_ciphers HIGH:!aNULL:!MD5;
	ssl_prefer_server_ciphers on;

	location / {
	proxy_pass http://localhost:8080;

	proxy_set_header Host $host;
	proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	}
	}
	}