Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- user nobody;
- worker_processes auto;
- #worker_rlimit_nofile 65535;
- error_log /var/log/nginx/error.log crit;
- pid /var/run/nginx.pid;
- events {
- worker_connections 1024;
- use epoll;
- multi_accept on;
- }
- http {
- sendfile on;
- tcp_nopush on;
- tcp_nodelay on;
- client_header_timeout 3m;
- client_body_timeout 3m;
- client_max_body_size 256m;β¨client_header_buffer_size 4k;
- client_body_buffer_size 256k;
- large_client_header_buffers 4 32k;
- send_timeout 3m;
- keepalive_timeout 60 60;
- reset_timedout_connection on;
- server_names_hash_max_size 1024;
- server_names_hash_bucket_size 1024;
- ignore_invalid_headers on;
- connection_pool_size 256;β¨ connection_pool_size 256;
- request_pool_size 4k;
- output_buffers 4 32k;
- postpone_output 1460;
- include mime.types;
- default_type application/octet-stream;
- # Compression gzip
- gzip on;
- gzip_vary on;
- gzip_disable "MSIE [1-6]\.";
- gzip_proxied any;
- gzip_min_length 512;
- gzip_comp_level 6;
- gzip_buffers 8 64k;
- gzip_types text/plain text/xml text/css text/js application/x-javascrip$
- # Proxy settings
- proxy_redirect off;
- proxy_set_header Host $host;β¨# Proxy settings
- proxy_redirect off;
- proxy_set_header Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_pass_header Set-Cookie;
- proxy_connect_timeout 300;
- proxy_send_timeout 300;
- proxy_buffers 32 4k;
- proxy_cache_path /var/cache/nginx levels=2 keys_zone=cache:10m inactive$
- proxy_cache_key "$host$request_uri $cookie_user";
- proxy_temp_path /var/cache/nginx/temp;β¨proxy_ignore_headers Expires Cache-Control;
- proxy_cache_use_stale error timeout invalid_header http_502;
- proxy_cache_valid any 1d;
- open_file_cache_valid 120s;
- open_file_cache_min_uses 2;
- open_file_cache_errors off;
- open_file_cache max=5000 inactive=30s;
- open_log_file_cache max=1024 inactive=30s min_uses=2;
- # SSL Settings
- ssl_session_cache shared:SSL:10m;
- ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
- ssl_prefer_server_ciphers on;
- ssl_ciphers "EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SH$
- # Logs
- log_format main '$remote_addr - $remote_user [$time_local] $request$
- '"$status" $body_bytes_sent "$http_referer" '
- '"$http_user_agent" "$http_x_forwarded_for"';
- log_format bytes '$body_bytes_sent';
- #access_log /var/log/nginx/access.log main;
- access_log off;
- # Cache bypass
- map $http_cookie $no_cache {
- default 0;
- ~SESS 1;
- ~wordpress_logged_in 1;
- }
- # Include additional configuration
- include /etc/nginx/cloudflare.inc;
- include /etc/nginx/conf.d/*.conf;
- }
Add Comment
Please, Sign In to add comment