Created
October 24, 2019 06:19
-
-
Save rms1000watt/852bf44aceb0fe883554213814adf9ba to your computer and use it in GitHub Desktop.
Enable SNI Proxying in Nginx
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_server_name | |
| # The Server Name is a TLS extention (not SSL) during the CLIENT HELLO in the init client TLS handshake for SNI. | |
| # If this frame "server_name" is missing in the CLIENT HELLO packet, the server should fail TLS | |
| # This happens with AWS Cloudfront | |
| location /path/here/ { | |
| proxy_redirect off; | |
| proxy_ssl_server_name on; | |
| proxy_pass https://proxy-site.com/path/here/; | |
| } | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment