Hi,
Since I upgrade nginx into version 1.4.3 everything seems to work fine :).
Thank you very mutch for your help.
But naxsi module don't work, I don't know why.
Here is the output of nginx -V. As you can see nginx is compiled with naxsi module :
nginx version: nginx/1.4.3
TLS SNI support enabled
configure arguments: --prefix=/usr/share/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-log-path=/var/log/nginx/access.log --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --lock-path=/var/lock/nginx.lock --pid-path=/run/nginx.pid --with-pcre-jit --with-http_ssl_module --without-mail_pop3_module --without-mail_smtp_module --without-mail_imap_module --without-http_uwsgi_module --without-http_scgi_module --with-ipv6 --with-http_stub_status_module --with-http_realip_module --add-module=/build/nginx-lYK2BU/nginx-1.4.3/debian/modules/naxsi/naxsi_src --add-module=/build/nginx-lYK2BU/nginx-1.4.3/debian/modules/nginx-cache-purge --add-module=/build/nginx-lYK2BU/nginx-1.4.3/debian/modules/nginx-upstream-fair
my nginx.conf :
user nginx;
worker_processes 1;
# set open fd limit to 30000
worker_rlimit_nofile 30000;
error_log /var/log/nginx/error.log debug;
pid /var/run/nginx.pid;
events {
worker_connections 30000;
}
http {
include /etc/nginx/naxsi_core.rules;
include /etc/nginx/mime.types;
default_type application/octet-stream;
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
# access_log /var/log/nginx/access.log main;
sendfile on;
#tcp_nopush on;
keepalive_timeout 65;
#gzip on;
include /etc/nginx/conf.d/*.conf;
}
my default.conf :
server {
listen 80;
server_name _;
access_log /var/log/nginx/access.log main;
error_log /var/log/nginx/error.log debug;
location / {
include /etc/nginx/naxsi.rules;
include /etc/nginx/conf.d/proxy.conf;
proxy_pass http://X.X.X.X/;
}
location /RequestDenied {
#proxy_pass http://127.0.0.1:8080;
return 500;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root /usr/share/nginx/html;
}
}
Any idea ?
Thanks.