Skip to content

Instantly share code, notes, and snippets.

@refo

refo/nginx-install-ssl.md

Last active August 29, 2015 14:17
Show Gist options
  • Save refo/0fe32167933d13c589ef to your computer and use it in GitHub Desktop.
Save refo/0fe32167933d13c589ef to your computer and use it in GitHub Desktop.
Download ZIP
LEMP stack sunucuda SSL sertifikası install etme
Raw
nginx-install-ssl.md

Key ve Certificate Signing Request oluştur

openssl req -newkey rsa:2048 -nodes -keyout generatour.com.key -out generatour.com.csr

CSR ile sertifika satın aldıktan sonra, sertifika ile Intermediate CA Certificate dosyalarını birleştirerek bundle oluştur

cat generatour_com.crt COMODORSADomainValidationSecureServerCA.crt > generatour.com.chained.crt

Key ve Certificate dosyalarını taşı

/etc/nginx/cert/generatour.com.chained.crt
/etc/nginx/cert/generatour.com.key

/etc/nginx/sites-available/com_generatour Sertifika yollarını ve özelliklerini ekle

server {
    listen 80;
    server_name www.generatour.com 178.62.218.247;
    #return 301 $scheme://generatour.com$request_uri;
    return 301 https://generatour.com$request_uri;
}

server {
    listen 443 ssl default_server;
    #listen [::]:443 default_server ipv6only=on;
    
    ssl_certificate /etc/nginx/cert/generatour.com.chained.crt;
    ssl_certificate_key /etc/nginx/cert/generatour.com.key;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_prefer_server_ciphers on;
    ssl_ciphers AES256+EECDH:AES256+EDH:!aNULL;
    
    ...

Konfigürasyonun doğruluğunu test et

nginx -t

Yeni konfigürasyonu yükle

service nginx reload
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment