添加SSL

为网站添加ssl证书

修改Nginx的配置文件/etc/nginx/conf.d/virtual.conf

server {
    listen 80;
    listen 443; # ssl 监听端口
    server_name www.byalloc.com; # 域名地址
    ssl on; # 是否开启ssl
    ssl_certificate 1_www.byalloc.com_bundle.crt; # 已有的认证文件
    ssl_certificate_key 2_www.byalloc.com.key; # 已有的认证文件的key文件
    ssl_session_timeout 5m;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
    ssl_prefer_server_ciphers on;

        location / {
                proxy_pass http://127.0.0.1:8000;

        }
}

1_www.byalloc.com_bundle.crt

2_www.byalloc.com.key

这两个文件存放的路径为/etc/nginx

修改完成需要重启Nginx

sudo service nginx restart