I use Nginx as a reverse proxy server.
web_server_apache ----> Nginx_reverse_proxy ----> Internet
Today I have successfully generated certificates from let's encrypt for my private subdomains. Everything works great. I have two private subdomains (site1 and site2). I placed both subdomains in one config file. Is this configuration correct?
<code>
# -----------site1-subdomain------------#
server {
server_name site1.example.com;
location / {
proxy_pass http://192.168.1.110;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/example.com-0001/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/example.com-0001/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
}
server {
if ($host = site1.example.com) {
return 301 https://$host$request_uri;
}
listen 80;
server_name site1.example.com;
return 404;
}
# -----------site2-subdomain------------#
server {
server_name site2.example.com;
location / {
proxy_pass http://192.168.1.110;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/example.com-0001/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/example.com-0001/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
}
server {
if ($host = site2.example.com) {
return 301 https://$host$request_uri;
}
listen 80;
server_name site2.example.com;
return 404;
}
</code>