SHARE
TWEET

awdawdawd

a guest Feb 11th, 2019 52 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. server {
  2.   listen 443;
  3.   server_name portainer.amtmann.de;
  4.   resolver 1.1.1.1 1.0.0.1 valid=1h;
  5.   resolver_timeout 5s;
  6.  
  7.   ssl_certificate           /etc/nginx/certs/live/portainer.amtmann.de/fullchain.pem;
  8.   ssl_certificate_key       /etc/nginx/certs/live/portainer.amtmann.de/privkey.pem;
  9.   ssl_session_cache  builtin:1000  shared:SSL:10m;
  10.   ssl_protocols  TLSv1.2 TLSv1.3;
  11.   ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
  12.   ssl_prefer_server_ciphers on;
  13.   ssl_session_tickets off;
  14.   add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
  15.   ssl_stapling on;
  16.   ssl_stapling_verify on;
  17.   ssl_trusted_certificate /etc/nginx/certs/live/chain.pem;
  18.   add_header X-Frame-Options DENY;
  19.   add_header X-Content-Type-Options nosniff;
  20.   add_header X-XSS-Protection "1; mode=block";
  21.  
  22.   location / {
  23.       proxy_http_version 1.1;
  24.       proxy_set_header Connection "";
  25.       proxy_pass http://service_portainer:9000/;
  26.   }
  27.   location /api/websocket/ {
  28.       proxy_set_header Upgrade $http_upgrade;
  29.       proxy_set_header Connection "upgrade";
  30.       proxy_http_version 1.1;
  31.       proxy_pass http://service_portainer:9000/api/websocket/;
  32.   }
  33. }
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top