## HTTP
server {
    listen                  80 default_server;
    access_log              /var/log/nginx/default.http.access.log;
 
    location / {
        proxy_pass          http://<webServerIP>;
        proxy_redirect      off;
        proxy_set_header    Host            $host;
        proxy_set_header    X-Real-IP       $remote_addr;
        proxy_set_header    X-Forwarded-For $proxy_add_x_forwarded_for;
    }
}
 
## HTTPS
server {
    listen                  443 default_server;
    access_log              /var/log/nginx/default.https.access.log;
    ssl                     on;
    ssl_certificate         /etc/nginx/ssl/wildcard.pem;
    ssl_certificate_key     /etc/nginx/ssl/wildcard.key;
    ssl_session_timeout     5m;
    ssl_protocols           SSLv3 TLSv1;
    ssl_ciphers             ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv3:+EXP;
    ssl_prefer_server_ciphers   on;
 
    location / {
        proxy_pass          http://<webServerIP>;
        proxy_redirect      off;
        proxy_set_header    Host            $host;
        proxy_set_header    X-Real-IP       $remote_addr;
        proxy_set_header    X-Forwarded-For $proxy_add_x_forwarded_for;
    }
}