Last active
December 6, 2021 02:36
-
-
Save fataelislami/4e2b3f7a741e65db0dcbd9abc512e0bd to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## | |
| # You should look at the following URL's in order to grasp a solid understanding | |
| # of Nginx configuration files in order to fully unleash the power of Nginx. | |
| # https://www.nginx.com/resources/wiki/start/ | |
| # https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/ | |
| # https://wiki.debian.org/Nginx/DirectoryStructure | |
| # | |
| # In most cases, administrators will remove this file from sites-enabled/ and | |
| # leave it as reference inside of sites-available where it will continue to be | |
| # updated by the nginx packaging team. | |
| # | |
| # This file will automatically load configuration files provided by other | |
| # applications, such as Drupal or Wordpress. These applications will be made | |
| # available underneath a path with that package name, such as /drupal8. | |
| # | |
| # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. | |
| ## | |
| # Default server configuration | |
| # | |
| server { | |
| # SSL configuration | |
| # | |
| # listen 443 ssl default_server; | |
| # listen [::]:443 ssl default_server; | |
| # | |
| # Note: You should disable gzip for SSL traffic. | |
| # See: https://bugs.debian.org/773332 | |
| # | |
| # Read up on ssl_ciphers to ensure a secure configuration. | |
| # See: https://bugs.debian.org/765782 | |
| # | |
| # Self signed certs generated by the ssl-cert package | |
| # Don't use them in a production server! | |
| # | |
| # include snippets/snakeoil.conf; | |
| root /var/www/html; | |
| # Add index.php to the list if you are using PHP | |
| index index.html index.php index.htm index.nginx-debian.html; | |
| server_name djasaubersakti.co.id; | |
| location / { | |
| # First attempt to serve request as file, then | |
| # as directory, then fall back to displaying a 404. | |
| #try_files $uri $uri/ =404; | |
| try_files $uri $uri/ /index.php?$args; | |
| } | |
| # pass PHP scripts to FastCGI server | |
| # | |
| location ~ \.php$ { | |
| # include snippets/fastcgi-php.conf; | |
| # | |
| # # With php-fpm (or other unix sockets): | |
| # fastcgi_pass unix:/var/run/php/php7.0-fpm.sock; | |
| # # With php-cgi (or other tcp sockets): | |
| # fastcgi_pass 127.0.0.1:9000; | |
| include snippets/fastcgi-php.conf; | |
| fastcgi_pass unix:/run/php/php7.2-fpm.sock; | |
| } | |
| # deny access to .htaccess files, if Apache's document root | |
| # concurs with nginx's one | |
| # | |
| location ~ /\.ht { | |
| deny all; | |
| } | |
| listen [::]:443 ssl ipv6only=on; # managed by Certbot | |
| listen 443 ssl; # managed by Certbot | |
| ssl_certificate /etc/letsencrypt/live/djasaubersakti.co.id/fullchain.pem; # managed by Certbot | |
| ssl_certificate_key /etc/letsencrypt/live/djasaubersakti.co.id/privkey.pem; # managed by Certbot | |
| include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot | |
| ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot | |
| } | |
| server { | |
| server_name www.djasaubersakti.co.id; | |
| listen [::]:443 ssl ipv6only=on; # managed by Certbot | |
| listen 443 ssl; # managed by Certbot | |
| ssl_certificate /etc/letsencrypt/live/djasaubersakti.co.id/fullchain.pem; # managed by Certbot | |
| ssl_certificate_key /etc/letsencrypt/live/djasaubersakti.co.id/privkey.pem; # managed by Certbot | |
| include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot | |
| ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot | |
| return 301 https://djasaubersakti.co.id$request_uri; | |
| } | |
| # Virtual Host configuration for example.com | |
| # | |
| # You can move that to a different file under sites-available/ and symlink that | |
| # to sites-enabled/ to enable it. | |
| # | |
| #server { | |
| # listen 80; | |
| # listen [::]:80; | |
| # | |
| # server_name example.com; | |
| # | |
| # root /var/www/example.com; | |
| # index index.html; | |
| # | |
| # location / { | |
| # try_files $uri $uri/ =404; | |
| # } | |
| #} | |
| server { | |
| if ($host = djasaubersakti.co.id) { | |
| return 301 https://$host$request_uri; | |
| } # managed by Certbot | |
| listen 80 default_server; | |
| listen [::]:80 default_server; | |
| server_name djasaubersakti.co.id www.djasaubersakti.co.id; | |
| return 404; # managed by Certbot | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
`##
You should look at the following URL's in order to grasp a solid understanding
of Nginx configuration files in order to fully unleash the power of Nginx.
https://www.nginx.com/resources/wiki/start/
https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/
https://wiki.debian.org/Nginx/DirectoryStructure
In most cases, administrators will remove this file from sites-enabled/ and
leave it as reference inside of sites-available where it will continue to be
updated by the nginx packaging team.
This file will automatically load configuration files provided by other
applications, such as Drupal or Wordpress. These applications will be made
available underneath a path with that package name, such as /drupal8.
Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples.
Default server configuration
server {
}
server {
listen 443 ssl http2;
server_name www.djasaubersakti.co.id;
}
Virtual Host configuration for example.com
You can move that to a different file under sites-available/ and symlink that
to sites-enabled/ to enable it.
#server {
listen 80;
listen [::]:80;
server_name example.com;
root /var/www/example.com;
index index.html;
location / {
try_files $uri $uri/ =404;
}
#}
server {
if ($host = djasaubersakti.co.id) {
return 301 https://$host$request_uri;
} # managed by Certbot
}`