nginx-standard.conf

   1 user                    nginx nginx;
   2 worker_processes        5;
   3 error_log               /var/log/nginx/nginx-standard_error.log;
   4 pid                     /var/run/nginx-standard.pid;
   5
   6 events {
   7         worker_connections      2048;
   8         use epoll;
   9 }
  10
  11 http {
  12         include         /etc/nginx/mime.types;
  13         default_type    application/octet-stream;
  14
  15         log_format      main    '$remote_addr - $remote_user [$time_local] $request '
  16                                 '"$status" $body_bytes_sent "$http_referer" '
  17                                 '"$http_user_agent" "$http_x_forwarded_for"';
  18         access_log      /var/log/nginx/nginx-standard_access.log        main;
  19         sendfile        on;
  20         tcp_nopush      on;
  21         tcp_nodelay     on;
  22         server_names_hash_bucket_size   128;
  23         types_hash_max_size     2048;
  24         types_hash_bucket_size  64;
  25         #keepalive_timeout      0;
  26         keepalive_timeout       65;
  27         limit_zone      test-limit      $binary_remote_addr     10m;
  28         #gzip   on;
  29         #gzip_http_version      1.0;
  30         #gzip_comp_level        2;
  31         #gzip_proxied   any;
  32         #gzip_types     text/plain text/html text/css application/x-javascript text/xml application/xml application/xml+rss text/javascript;
  33
  34         server {
  35                 listen          80;
  36
  37                 # listen 443 ssl;
  38
  39                 # Leave only secure protocols (so disable unsecure SSLv2/SSLv3)
  40                 # ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  41
  42                 # https://wiki.mozilla.org/Security/Server_Side_TLS
  43                 # perfect forward secrecy
  44                 ssl_prefer_server_ciphers on;
  45                 ssl_ciphers "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS +RC4 RC4";
  46
  47                 # ssl_certificate /etc/nginx/server.crt;
  48                 # ssl_certificate_key /etc/nginx/server.key;
  49
  50                 server_name     localhost;
  51                 access_log      /var/log/nginx/nginx-standard_access.log  main;
  52                 client_max_body_size    10M;
  53
  54                 location / {
  55                         autoindex       on;
  56                         root    /home/services/nginx/html;
  57                         index   index.html index.htm index.php;
  58                         limit_conn      test-limit      15;
  59                 }
  60
  61                 include webapps.d/*.conf;
  62
  63 #               location /nginx_status {
  64 #                       stub_status     on;
  65 #                       access_log      off;
  66 #                       allow   127.0.0.1;
  67 #                       deny    all;
  68 #               }
  69
  70 #               error_page      404     /404.html;
  71 #               error_page      500 502 503 504 /50x.html;
  72 #               location = /50x.html {
  73 #                       root    /home/services/http/error-pages;
  74 #               }
  75 #               location = /404.html {
  76 #                       root    /home/services/http/error-pages;
  77 #               }
  78
  79 #               location ~ \.php$ {
  80 #                       include         /etc/nginx/fastcgi.params;
  81 #                       fastcgi_pass    127.0.0.1:1026;
  82 #                       fastcgi_index   index.php;
  83 #                       fastcgi_param   SCRIPT_FILENAME /home/services/nginx/html$fastcgi_script_name;
  84 #               }
  85
  86         }
  87
  88         include vhosts.d/*.conf;
  89 }