Эхлэл Бүгдийг харах Тусламж
Бүртгүүлэх Нэвтрэх
Apq
/
Xray-examples
-ын хуулбар https://github.com/XTLS/Xray-examples.git
1
0
Салаа 0
Файлууд Асуудлууд 0 Мэдлэгийн сан
Мод: 2a8fe45acd
Салаанууд Тагууд
Xray-examples
/
VLESS-TLS-splitHttp-Nginx
/
nginx.conf

nginx.conf 2.9 KB
Түүх Анхны өгөгдөл

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. user www-data;
    2. 

  2. worker_processes auto;
    3. 

  3. 

  4. error_log /var/log/nginx/error.log notice;
    5. 

  5. pid /var/run/nginx.pid;
    6. 

  6. 

  7. events {
    8. 

  8.     worker_connections 1024;
    9. 

  9. }
    10. 

  10. 

  11. http {
    12. 

  12.     log_format main '[$time_local] $proxy_protocol_addr "$http_referer" "$http_user_agent"';
    13. 

  13.     access_log /var/log/nginx/access.log main;
    14. 

  14. 

  15.     map $http_upgrade $connection_upgrade {
    16. 

  16.         default upgrade;
    17. 

  17.         "" close;
    18. 

  18.     }
    19. 

  19. 

  20.     map $proxy_protocol_addr $proxy_forwarded_elem {
    21. 

  21.         ~^[0-9.]+$ "for=$proxy_protocol_addr";
    22. 

  22.         ~^[0-9A-Fa-f:.]+$ "for=\"[$proxy_protocol_addr]\"";
    23. 

  23.         default "for=unknown";
    24. 

  24.     }
    25. 

  25. 

  26.     map $http_forwarded $proxy_add_forwarded {
    27. 

  27.         "~^(,[ \\t]*)*([!#$%&'*+.^_`|~0-9A-Za-z-]+=([!#$%&'*+.^_`|~0-9A-Za-z-]+|\"([\\t \\x21\\x23-\\x5B\\x5D-\\x7E\\x80-\\xFF]|\\\\[\\t \\x21-\\x7E\\x80-\\xFF])*\"))?(;([!#$%&'*+.^_`|~0-9A-Za-z-]+=([!#$%&'*+.^_`|~0-9A-Za-z-]+|\"([\\t \\x21\\x23-\\x5B\\x5D-\\x7E\\x80-\\xFF]|\\\\[\\t \\x21-\\x7E\\x80-\\xFF])*\"))?)*([ \\t]*,([ \\t]*([!#$%&'*+.^_`|~0-9A-Za-z-]+=([!#$%&'*+.^_`|~0-9A-Za-z-]+|\"([\\t \\x21\\x23-\\x5B\\x5D-\\x7E\\x80-\\xFF]|\\\\[\\t \\x21-\\x7E\\x80-\\xFF])*\"))?(;([!#$%&'*+.^_`|~0-9A-Za-z-]+=([!#$%&'*+.^_`|~0-9A-Za-z-]+|\"([\\t \\x21\\x23-\\x5B\\x5D-\\x7E\\x80-\\xFF]|\\\\[\\t \\x21-\\x7E\\x80-\\xFF])*\"))?)*)?)*$" "$http_forwarded, $proxy_forwarded_elem";
    28. 

  28.         default "$proxy_forwarded_elem";
    29. 

  29.     }
    30. 

  30. 

  31.     server {
    32. 

  32. 

  33.         listen 443 http2 ssl;
    34. 

  34.         listen [::]:443 http2 ssl;
    35. 

  35. 

  36. 	    ssl_certificate /path/to/example.cer;
    37. 

  37. 	    ssl_certificate_key /path/to/example.key;
    38. 

  38. 

  39.         set_real_ip_from 127.0.0.1;
    40. 

  40.         real_ip_header proxy_protocol;
    41. 

  41. 

  42.         location / {
    43. 

  43.             sub_filter                            $proxy_host $host;
    44. 

  44.             sub_filter_once                       off;
    45. 

  45. 

  46.             set $website www.lovelive-anime.jp;
    47. 

  47.             proxy_pass https://$website;
    48. 

  48.             resolver 1.1.1.1;
    49. 

  49. 

  50.             proxy_redirect     off;
    51. 

  51.             #proxy_set_header   Host $host;
    52. 

  52. 

  53.             proxy_set_header Host $proxy_host;
    54. 

  54. 

  55.             proxy_http_version 1.1;
    56. 

  56.             proxy_cache_bypass $http_upgrade;
    57. 

  57. 

  58.             proxy_ssl_server_name off;
    59. 

  59. 

  60.             proxy_set_header Upgrade $http_upgrade;
    61. 

  61.             proxy_set_header Connection $connection_upgrade;
    62. 

  62.             proxy_set_header X-Real-IP $proxy_protocol_addr;
    63. 

  63.             proxy_set_header Forwarded $proxy_add_forwarded;
    64. 

  64.             proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    65. 

  65.             proxy_set_header X-Forwarded-Proto $scheme;
    66. 

  66.             proxy_set_header X-Forwarded-Host $host;
    67. 

  67.             proxy_set_header X-Forwarded-Port $server_port;
    68. 

  68.             add_header X-Frame-Options "SAMEORIGIN";
    69. 

  69. 

  70. 

  71.             proxy_connect_timeout 60s;
    72. 

  72.             proxy_send_timeout 60s;
    73. 

  73.             proxy_read_timeout 60s;
    74. 

  74.         }
    75. 

  75. 

  76.         location /split {
    77. 

  77.             proxy_pass http://127.0.0.1:1234;
    78. 

  78.             proxy_http_version 1.1;
    79. 

  79.             proxy_redirect off;
    80. 

  80.         }
    81. 

  81. 

  82.     }
    83. 

  83. }
    84.