35 lines
1.1 KiB
Plaintext
35 lines
1.1 KiB
Plaintext
server {
|
|
server_name _;
|
|
listen 80 default_server;
|
|
listen 443 ssl default_server;
|
|
|
|
## To also support IPv6, uncomment this block
|
|
# listen [::]:80 default_server;
|
|
# listen [::]:443 ssl default_server;
|
|
|
|
ssl_certificate /etc/letsencrypt/live/tradewind.vip/fullchain.pem; # managed by Certbot
|
|
ssl_certificate_key /etc/letsencrypt/live/tradewind.vip/privkey.pem; # managed by Certbot
|
|
return 404; # or whatever
|
|
}
|
|
|
|
server {
|
|
server_name joplin.tradewind.vip;
|
|
|
|
location / {
|
|
resolver 223.5.5.5;
|
|
set $router "router.tradewind.vip";
|
|
proxy_set_header Host $host;
|
|
proxy_redirect off;
|
|
proxy_set_header X-Real-IP $remote_addr;
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
proxy_pass http://$router:8888;
|
|
}
|
|
|
|
listen 8888 ssl; # managed by Certbot
|
|
ssl_certificate /etc/letsencrypt/live/tradewind.vip/fullchain.pem; # managed by Certbot
|
|
ssl_certificate_key /etc/letsencrypt/live/tradewind.vip/privkey.pem; # managed by Certbot
|
|
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
|
|
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
|
|
|
|
}
|