user root; worker_processes 1; error_log /var/log/nginx/error.log warn; pid /var/run/nginx.pid; events { worker_connections 1024; } http { include /etc/nginx/mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log /var/log/nginx/access.log main; sendfile on; #tcp_nopush on; keepalive_timeout 65; #gzip on; include /etc/nginx/conf.d/*.conf; server { listen 80; server_name cloud.home.yimian.xyz; location / { proxy_pass http://127.0.0.1:8080; proxy_set_header Host $host:80; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_hide_header X-Powered-By; } } server { listen 80; server_name home.yimian.xyz; location / { proxy_pass http://127.0.0.1:8080; proxy_set_header Host $host:80; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_hide_header X-Powered-By; } } server { listen 443 ssl; server_name cloud.home.yimian.xyz; #1 ssl_certificate ssl/cloud.home.yimian.xyz.crt; #2 ssl_certificate_key ssl/cloud.home.yimian.xyz.key; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; location / { return 301 http://cloud.home.yimian.xyz$request_uri; } } server { listen 443 ssl; listen 80; server_name www.yimian.xyz; #1 root /home/www/IoTgod-www; index index.php index.html; ssl_certificate /etc/letsencrypt/live/www.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/www.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } #location / { return 301 https://yimian.xyz?$request_uri; } } server { listen 443 ssl; listen 80; server_name cn.yimian.xyz; #1 root /home/www/www; index index.php index.html; client_max_body_size 1000M; #return 301 https://blog.yimian.xyz$request_uri; ssl_certificate /etc/letsencrypt/live/cn.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/cn.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location /xjtlu/ { proxy_set_header Host ice.xjtlu.edu.cn; proxy_pass https://ice.xjtlu.edu.cn/login/index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name www.ovo.re; #1 root /home/www/img; index index.php index.html; client_max_body_size 1000M; ssl_certificate ssl/www.ovo.re.crt; #2 ssl_certificate_key ssl/www.ovo.re.key; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name ovo.re; #1 root /home/www/img; index index.php index.html; client_max_body_size 1000M; ssl_certificate ssl/ovo.re.crt; #2 ssl_certificate_key ssl/ovo.re.key; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name photo.ovo.re; #1 root /home/www/photo; index index.php index.html; client_max_body_size 1000M; ssl_certificate ssl/photo.ovo.re.crt; #2 ssl_certificate_key ssl/photo.ovo.re.key; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name tomatotrees.xyz; #1 root /home/www/tomato; index index.php index.html; client_max_body_size 1000M; ssl_certificate ssl/tomatotrees.xyz.crt; #2 ssl_certificate_key ssl/tomatotrees.xyz.key; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name iotcat.me; #1 root /home/www/iotcat; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/iotcat.me/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/iotcat.me/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name www.iotcat.me; #1 root /home/www/iotcat; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/www.iotcat.me/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/www.iotcat.me/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name www.eee.dog; #1 root /home/www/IoTgod-www; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/www.eee.dog/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/www.eee.dog/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name eee.dog; #1 root /home/www/IoTgod-www; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/eee.dog/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/eee.dog/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name www.acg.watch; #1 root /home/www/video; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/www.acg.watch/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/www.acg.watch/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name acg.watch; #1 root /home/www/video; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/acg.watch/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/acg.watch/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name video.yimian.xyz; #1 root /home/www/etc/video; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/video.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/video.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name sms.yimian.xyz; #1 root /home/www/sms; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/sms.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/sms.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name api.yimian.xyz; #1 root /home/www/api; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/api.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/api.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name moe.api.yimian.xyz; #1 root /home/www/api/pic/moe; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/moe.api.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/moe.api.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name photo.api.yimian.xyz; #1 root /home/www/api/pic/photo; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/photo.api.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/photo.api.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name video.api.yimian.xyz; #1 root /home/www/api/video; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/video.api.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/video.api.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name login.api.yimian.xyz; #1 root /home/www/api/clever-login; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/login.api.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/login.api.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name mikutap.yimian.xyz; #1 root /home/www/etc/mikutap; index index.html mikutap.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/mikutap.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/mikutap.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name log.yimian.xyz; #1 root /home/www/log; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/log.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/log.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name login.yimian.xyz; #1 root /home/www/login; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/login.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/login.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name blog.yimian.xyz; #1 root /home/www/IoTgod-www; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/blog.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/blog.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; error_page 404 = /404.php; if (-f $request_filename/index.html){ rewrite (.*) $1/index.html break; } if (-f $request_filename/index.php){ rewrite (.*) $1/index.php; } if (!-f $request_filename){ rewrite (.*) /index.php; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name cdn.yimian.ac.cn; #1 root /home/www/www/etc; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/cdn.yimian.ac.cn/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/cdn.yimian.ac.cn/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; location ~* \.(eot|ttf|woff|svg|otf)$ { add_header Access-Control-Allow-Origin *; } location / { add_header Access-Control-Allow-Origin *; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 443 ssl; listen 80; server_name cdn.yimian.xyz; #1 root /home/www/cdn/; index index.php index.html; client_max_body_size 1000M; ssl_certificate /etc/letsencrypt/live/cdn.yimian.xyz/fullchain.pem; #2 ssl_certificate_key /etc/letsencrypt/live/cdn.yimian.xyz/privkey.pem; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; location ~* \.(eot|ttf|woff|svg|otf)$ { add_header Access-Control-Allow-Origin *; } location / { add_header Access-Control-Allow-Origin *; } location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 80; server_name as3.tmp.yimian.xyz; #1 root /home/www/www/tmp/as3; client_max_body_size 1000M; location ~ \.php$ { try_files $uri =404; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } server { listen 80; listen 443 ssl; server_name dans.yimian.ac.cn; ssl_certificate ssl/dans.yimian.ac.cn.crt; #2 ssl_certificate_key ssl/dans.yimian.ac.cn.key; #3 ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_prefer_server_ciphers on; location / { proxy_pass http://0.0.0.0:1207;} } }