diff --git a/sites-available/bitwarden_bak b/sites-available/bitwarden_bak
index 989fe05..9f6af2d 100644
--- a/sites-available/bitwarden_bak
+++ b/sites-available/bitwarden_bak
@@ -4,7 +4,7 @@
 # Define the server IP and ports here.
 upstream vaultwarden-default {
   zone vaultwarden-default 64k;
-  server router.tradewind.vip:10060;
+  server 192.168.50.233:10060;
   keepalive 2;
 }
 
@@ -20,7 +20,6 @@ map $http_upgrade $connection_upgrade {
 # Redirect HTTP to HTTPS
 server {
     listen 80;
-    listen [::]:80;
     server_name bitwarden.tradewind.vip;
 
     return 301 https://$host$request_uri;
@@ -29,7 +28,6 @@ server {
 server {
     # For older versions of nginx appended http2 to the listen line after ssl and remove `http2 on`
     listen 443 ssl;
-    listen [::]:443 ssl;
 #    http2 on;
     server_name bitwarden.tradewind.vip;
 
@@ -42,6 +40,11 @@ server {
 
     client_max_body_size 525M;
 
+    proxy_connect_timeout       777;
+    proxy_send_timeout          777;
+    proxy_read_timeout          777;
+    send_timeout                777;
+
     proxy_http_version 1.1;
     proxy_set_header Upgrade $http_upgrade;
     proxy_set_header Connection $connection_upgrade;
diff --git a/sites-available/tempmail b/sites-available/tempmail
new file mode 100644
index 0000000..63b4fd2
--- /dev/null
+++ b/sites-available/tempmail
@@ -0,0 +1,44 @@
+# generated 2024-06-16, Mozilla Guideline v5.7, nginx 1.18.0, OpenSSL 3.0.2, modern configuration
+# https://ssl-config.mozilla.org/#server=nginx&version=1.18.0&config=modern&openssl=3.0.2&guideline=5.7
+server {
+    listen 80;
+    listen [::]:80;
+
+    server_name  tempmail.tradewind.vip;
+
+    location / {
+        return 301 https://$host$request_uri;
+    }
+}
+
+server {
+    listen 443 ssl http2;
+    listen [::]:443 ssl http2;
+
+    server_name  tempmail.tradewind.vip;
+
+    location / {
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_pass http://127.0.0.1:8080/;
+    }
+
+    ssl_certificate /etc/letsencrypt/live/tradewind.vip/fullchain.pem;
+    ssl_certificate_key /etc/letsencrypt/live/tradewind.vip/privkey.pem;
+    ssl_session_timeout 1d;
+    ssl_session_cache shared:MozSSL:10m;  # about 40000 sessions
+    ssl_session_tickets off;
+
+    # modern configuration
+    ssl_protocols TLSv1.3;
+    ssl_prefer_server_ciphers off;
+
+    # HSTS (ngx_http_headers_module is required) (63072000 seconds)
+    add_header Strict-Transport-Security "max-age=63072000" always;
+
+    # replace with the IP address of your resolver
+    resolver 223.5.5.5;
+}
+
+
diff --git a/sites-enabled b/sites-enabled
index 5c06ee9..1f95e52 100644
--- a/sites-enabled
+++ b/sites-enabled
@@ -10,4 +10,5 @@ yys-editor
 yys-editor-dev
 rsshub
 wecom
-music
\ No newline at end of file
+music
+tempmail
\ No newline at end of file