ini

cn.yimian.xyz/nginx/conf.d/acg.watch.conf

@@ -0,0 +1,46 @@
+server {
+    listen       80;
+    listen       [::]:80;
+    server_name  acg.watch;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  acg.watch;
+    root         /home/www/acg.watch;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/acg.watch/acg.watch.crt; #2
+    ssl_certificate_key /mnt/config/ssl/acg.watch/acg.watch.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+#   rewrite ^(.*)$  https://www.$host$1 permanent;
+
+    # Load configuration files for the default server block.
+    include /etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+#   if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+#   if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+#   if (!-f $request_filename){     rewrite (.*) /index.php; }
+#   if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+    location /api/ {
+        proxy_pass http://acg.watch-api:30080;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection 'upgrade';
+        proxy_set_header Host $host;
+        proxy_cache_bypass $http_upgrade;
+    }
+}

cn.yimian.xyz/nginx/conf.d/api.yimian.xyz.conf

@@ -0,0 +1,76 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  api.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  api.yimian.xyz;
+    root         /home/www/api;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+
+    # history reason redirect
+    location = /getImgNum.php {
+        add_header Access-Control-Allow-Origin *;
+        return 301 https://api.yimian.xyz/img/getImgNum.php;
+    }
+   # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location ^~ /coro/ {
+        proxy_pass   http://coro-api:17676/;
+    }
+    location ^~ /todo-ddl/ {
+        proxy_pass   http://todo-ddl-api:13233/;
+    }
+
+    location ^~ /upload/ {
+        proxy_pass   http://upload-api:3000/;
+        #proxy_method POST;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-NginX-Proxy true;
+        proxy_ssl_session_reuse off;
+        proxy_set_header Host $http_host;
+        proxy_cache_bypass $http_upgrade;
+        proxy_redirect off;
+    }
+
+
+
+    location ^~ /danmaku/ {
+        proxy_pass http://danmaku-api:1207/;
+        proxy_connect_timeout 300s;
+        proxy_send_timeout 300s;
+        proxy_read_timeout 300s;
+    }
+
+
+
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn.yimian.xyz/nginx/conf.d/auth.yimian.xyz.conf

@@ -0,0 +1,43 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  auth.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  auth.yimian.xyz;
+    root         /home/www/auth;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+        proxy_cookie_path / "/; secure; SameSite=None";
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn.yimian.xyz/nginx/conf.d/eee.dog.conf

@@ -0,0 +1,29 @@
+server {
+    listen       80;
+    listen       [::]:80;
+    server_name  eee.dog;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  eee.dog;
+
+    ssl_certificate /mnt/config/ssl/eee.dog/eee.dog.crt; #2
+    ssl_certificate_key /mnt/config/ssl/eee.dog/eee.dog.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+location / {
+        rewrite  ^(.*)$  https://shorturl.yimian.xyz/s/index.php?s=$1  last;
+   }
+}

cn.yimian.xyz/nginx/conf.d/home.yimian.xyz.conf

@@ -0,0 +1,25 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  home.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name home.yimian.xyz;
+    client_max_body_size 9000M;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+         proxy_pass http://frp:4480;
+         proxy_http_version 1.1;
+         proxy_set_header Upgrade $http_upgrade;
+         proxy_set_header Connection 'upgrade';
+         proxy_set_header Host $host;
+         proxy_cache_bypass $http_upgrade;
+    } 
+}

cn.yimian.xyz/nginx/conf.d/img.yimian.xyz.conf.dead

@@ -0,0 +1,45 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  img.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  img.yimian.xyz;
+    root         /home/www/img;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    location / {
+        if (-f $request_filename/index.html){
+            rewrite (.*) $1/index.html break;
+        }
+        if (-f $request_filename/index.php){
+            rewrite (.*) $1/index.php;
+        }
+        if (!-f $request_filename){
+            rewrite (.*) /index.php;
+        }
+    }
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+
+
+}

cn.yimian.xyz/nginx/conf.d/imgbed.yimian.xyz.conf

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  imgbed.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  imgbed.yimian.xyz;
+    root         /home/www/imgbed;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn.yimian.xyz/nginx/conf.d/iotcat.me.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  iotcat.me www.iotcat.me;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  iotcat.me www.iotcat.me;
+    root         /home/www/iotcat.me;
+    index index.html;
+
+    ssl_certificate /mnt/config/ssl/iotcat.me/iotcat.me.crt; #2
+    ssl_certificate_key /mnt/config/ssl/iotcat.me/iotcat.me.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+}

cn.yimian.xyz/nginx/conf.d/log.yimian.xyz.conf

@@ -0,0 +1,41 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  log.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  log.yimian.xyz;
+    root         /home/www/log;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn.yimian.xyz/nginx/conf.d/login.yimian.xyz.conf

@@ -0,0 +1,41 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  login.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  login.yimian.xyz;
+    root         /home/www/login;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn.yimian.xyz/nginx/conf.d/mksec.yimian.xyz.conf

@@ -0,0 +1,29 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  mksec.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  mksec.yimian.xyz;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+   
+
+    location / {
+        proxy_pass   http://mksec:3000/;
+    }
+}

cn.yimian.xyz/nginx/conf.d/monitor.yimian.xyz.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  monitor.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  monitor.yimian.xyz;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    location / {
+        proxy_pass   http://serverstatus:80/;
+    }
+
+
+}

cn.yimian.xyz/nginx/conf.d/onedrive.yimian.xyz.conf

@@ -0,0 +1,25 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  onedrive.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name onedrive.yimian.xyz;
+    client_max_body_size 9000M;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+         proxy_pass http://oneindex:80;
+         proxy_http_version 1.1;
+         proxy_set_header Upgrade $http_upgrade;
+         proxy_set_header Connection 'upgrade';
+         proxy_set_header Host $host;
+         proxy_cache_bypass $http_upgrade;
+    } 
+}

cn.yimian.xyz/nginx/conf.d/pay.yimian.xyz.conf

@@ -0,0 +1,34 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  pay.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  pay.yimian.xyz;
+    root         /home/www/pay;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+}

cn.yimian.xyz/nginx/conf.d/session.yimian.xyz.conf

@@ -0,0 +1,69 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  session.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name session.yimian.xyz;
+    #root         /home/www/session/;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+
+    location ^~ /php/ {
+	root /home/www/session/;
+        try_files      $uri =404; 	
+        fastcgi_pass   php-fpm:9000; 		
+        
+        fastcgi_pass_request_body off;
+        client_body_in_file_only clean;
+        fastcgi_param  REQUEST_BODY_FILE  $request_body_file; 
+        
+        fastcgi_index  index.php; 		
+        fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name; 		
+        include        fastcgi_params; 	
+        fastcgi_keep_conn on;
+    }
+
+    location ^~ /websocket/ {
+ 
+#    add_header Access-Control-Allow-Origin *;
+#    add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS';
+#    add_header Access-Control-Allow-Headers 'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization';
+#    if ($request_method = 'OPTIONS') {
+#        return 204;
+#    }
+
+       proxy_pass http://session:21514/;
+        proxy_read_timeout 300s;
+        proxy_send_timeout 300s;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $connection_upgrade;
+   } 
+
+
+    location / {
+ 
+#    add_header Access-Control-Allow-Origin *;
+#    add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS';
+#    add_header Access-Control-Allow-Headers 'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization';
+#    if ($request_method = 'OPTIONS') {
+#        return 204;
+#    }
+
+       proxy_pass http://session:21513/;
+    } 
+
+
+
+}
+

cn.yimian.xyz/nginx/conf.d/share.yimian.xyz.conf

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  share.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  share.yimian.xyz;
+    root         /home/www/filebed;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn.yimian.xyz/nginx/conf.d/shorturl.yimian.xyz.conf

@@ -0,0 +1,29 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  shorturl.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  shorturl.yimian.xyz;
+    root         /home/www/shorturl;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+}

cn.yimian.xyz/nginx/conf.d/user.yimian.xyz.conf

@@ -0,0 +1,34 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  user.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  user.yimian.xyz;
+    root         /home/www/user;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+}

cn.yimian.xyz/nginx/conf.d/ushio-win.yimian.xyz.conf

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  ushio-win.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  ushio-win.yimian.xyz;
+    root         /home/www/ushio-win-server;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+
+    location / {
+        proxy_pass   http://ushio-win-server:13432;
+    }
+   error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn.yimian.xyz/nginx/conf.d/ushio.cool.conf

@@ -0,0 +1,32 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  ushio.cool www.ushio.cool;
+    rewrite ^(.*)$  https://ushio.cool$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  ushio.cool;
+    root         /mnt/html/ushio;
+    index        index.html;
+
+    ssl_certificate /mnt/config/ssl/ushio.cool/ushio.cool.crt; #2
+    ssl_certificate_key /mnt/config/ssl/ushio.cool/ushio.cool.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+
+}

cn.yimian.xyz/nginx/conf.d/v2ray.yimian.xyz.conf

@@ -0,0 +1,34 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  v2ray.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  v2ray.yimian.xyz;
+    root         /home/www/v2ray;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+}

cn.yimian.xyz/nginx/conf.d/wanzongbiz.com.conf

@@ -0,0 +1,15 @@
+
+server {
+     listen       80;
+     listen       [::]:80;
+    #listen       443 ssl;
+
+    server_name  wanzongbiz.com www.wanzongbiz.com;
+    root         /home/www/wanzongbiz;
+    index index.html;
+
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+}

cn.yimian.xyz/nginx/conf.d/wiot-ota.yimian.xyz.conf

@@ -0,0 +1,28 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  wiot-ota.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  wiot-ota.yimian.xyz;
+    root         /home/www/wiot;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+}

cn.yimian.xyz/nginx/conf.d/www.eee.dog.conf

@@ -0,0 +1,39 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  www.eee.dog;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  www.eee.dog;
+    root         /home/www/blog;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/eee.dog/eee.dog.crt; #2
+    ssl_certificate_key /mnt/config/ssl/eee.dog/eee.dog.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+    if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+    if (!-f $request_filename){     rewrite (.*) /index.php; }
+    if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+    location / {
+    }
+
+}

cn.yimian.xyz/nginx/conf.d/yimian.xyz.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  yimian.xyz www.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  yimian.xyz www.yimian.xyz;
+    root         /home/www/yimian.xyz;
+    index index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+}

cn.yimian.xyz/nginx/default.d/cache.conf

@@ -0,0 +1,13 @@
+location ~* ^.+\.(ico|gif|jpg|jpeg|png)$ { 
+    access_log off; 
+    expires 30d;
+}
+
+location ~* ^.+\.(css|js|txt|xml|swf|wav)$ {
+    access_log off;
+    expires 24h;
+}
+
+location ~* ^.+\.(html|htm)$ {
+     expires 1h;
+}

cn.yimian.xyz/nginx/default.d/favicon.conf

@@ -0,0 +1,3 @@
+location = /favicon.ico {
+  #proxy_pass https://cdn.yimian.xyz/img/head/head3r.ico;  
+}

cn.yimian.xyz/nginx/default.d/hsts.conf

@@ -0,0 +1 @@
+add_header Strict-Transport-Security "max-age=31536000";

cn.yimian.xyz/nginx/default.d/php.conf

@@ -0,0 +1,13 @@
+location ~ \.php$ {
+    try_files      $uri =404; 	
+    fastcgi_pass   php-fpm:9000; 		
+    
+    fastcgi_pass_request_body off;
+    client_body_in_file_only clean;
+    fastcgi_param  REQUEST_BODY_FILE  $request_body_file; 
+    
+    fastcgi_index  index.php; 		
+    fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name; 		
+    include        fastcgi_params; 	
+    fastcgi_keep_conn on;
+}

cn.yimian.xyz/nginx/default.d/wp-supercache.conf.b

@@ -0,0 +1,20 @@
+set $cache_uri $request_uri;
+
+if ($request_method = POST) {
+        set $cache_uri 'null cache';
+        }
+
+if ($query_string != "") {
+        set $cache_uri 'null cache';
+        }
+if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|/wp-(app|cron|login|register|mail).php|wp-.*.php|/feed/|index.php|wp-comments-popup.php|wp-links-opml.php|wp-locations.php|sitemap(_index)?.xml|[a-z0-9_-]+-sitemap([0-9]+)?.xml)") {
+        set $cache_uri 'null cache';
+        }   
+
+ if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_logged_in") {
+         set $cache_uri 'null cache';
+         }
+
+ location / {
+         try_files /wp-content/cache/supercache/$http_host/$cache_uri/index.html $uri $uri/ /index.php?$args ;
+         }

cn.yimian.xyz/nginx/fastcgi.conf

@@ -0,0 +1,26 @@
+
+fastcgi_param  SCRIPT_FILENAME    $document_root$fastcgi_script_name;
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

cn.yimian.xyz/nginx/fastcgi_params

@@ -0,0 +1,25 @@
+
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

cn.yimian.xyz/nginx/mime.types

@@ -0,0 +1,97 @@
+
+types {
+    text/html                                        html htm shtml;
+    text/css                                         css;
+    text/xml                                         xml;
+    image/gif                                        gif;
+    image/jpeg                                       jpeg jpg;
+    application/javascript                           js;
+    application/atom+xml                             atom;
+    application/rss+xml                              rss;
+
+    text/mathml                                      mml;
+    text/plain                                       txt;
+    text/vnd.sun.j2me.app-descriptor                 jad;
+    text/vnd.wap.wml                                 wml;
+    text/x-component                                 htc;
+
+    image/png                                        png;
+    image/svg+xml                                    svg svgz;
+    image/tiff                                       tif tiff;
+    image/vnd.wap.wbmp                               wbmp;
+    image/webp                                       webp;
+    image/x-icon                                     ico;
+    image/x-jng                                      jng;
+    image/x-ms-bmp                                   bmp;
+
+    font/woff                                        woff;
+    font/woff2                                       woff2;
+
+    application/java-archive                         jar war ear;
+    application/json                                 json;
+    application/mac-binhex40                         hqx;
+    application/msword                               doc;
+    application/pdf                                  pdf;
+    application/postscript                           ps eps ai;
+    application/rtf                                  rtf;
+    application/vnd.apple.mpegurl                    m3u8;
+    application/vnd.google-earth.kml+xml             kml;
+    application/vnd.google-earth.kmz                 kmz;
+    application/vnd.ms-excel                         xls;
+    application/vnd.ms-fontobject                    eot;
+    application/vnd.ms-powerpoint                    ppt;
+    application/vnd.oasis.opendocument.graphics      odg;
+    application/vnd.oasis.opendocument.presentation  odp;
+    application/vnd.oasis.opendocument.spreadsheet   ods;
+    application/vnd.oasis.opendocument.text          odt;
+    application/vnd.openxmlformats-officedocument.presentationml.presentation
+                                                     pptx;
+    application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
+                                                     xlsx;
+    application/vnd.openxmlformats-officedocument.wordprocessingml.document
+                                                     docx;
+    application/vnd.wap.wmlc                         wmlc;
+    application/x-7z-compressed                      7z;
+    application/x-cocoa                              cco;
+    application/x-java-archive-diff                  jardiff;
+    application/x-java-jnlp-file                     jnlp;
+    application/x-makeself                           run;
+    application/x-perl                               pl pm;
+    application/x-pilot                              prc pdb;
+    application/x-rar-compressed                     rar;
+    application/x-redhat-package-manager             rpm;
+    application/x-sea                                sea;
+    application/x-shockwave-flash                    swf;
+    application/x-stuffit                            sit;
+    application/x-tcl                                tcl tk;
+    application/x-x509-ca-cert                       der pem crt;
+    application/x-xpinstall                          xpi;
+    application/xhtml+xml                            xhtml;
+    application/xspf+xml                             xspf;
+    application/zip                                  zip;
+
+    application/octet-stream                         bin exe dll;
+    application/octet-stream                         deb;
+    application/octet-stream                         dmg;
+    application/octet-stream                         iso img;
+    application/octet-stream                         msi msp msm;
+
+    audio/midi                                       mid midi kar;
+    audio/mpeg                                       mp3;
+    audio/ogg                                        ogg;
+    audio/x-m4a                                      m4a;
+    audio/x-realaudio                                ra;
+
+    video/3gpp                                       3gpp 3gp;
+    video/mp2t                                       ts;
+    video/mp4                                        mp4;
+    video/mpeg                                       mpeg mpg;
+    video/quicktime                                  mov;
+    video/webm                                       webm;
+    video/x-flv                                      flv;
+    video/x-m4v                                      m4v;
+    video/x-mng                                      mng;
+    video/x-ms-asf                                   asx asf;
+    video/x-ms-wmv                                   wmv;
+    video/x-msvideo                                  avi;
+}

cn.yimian.xyz/nginx/nginx.conf

@@ -0,0 +1,63 @@
+# For more information on configuration, see:
+#   * Official English Documentation: http://nginx.org/en/docs/
+#   * Official Russian Documentation: http://nginx.org/ru/docs/
+user nginx;
+worker_processes auto;
+error_log /var/log/nginx/error.log;
+pid /run/nginx.pid;
+
+# Load dynamic modules. See /usr/share/nginx/README.dynamic.
+include /usr/share/nginx/modules/*.conf;
+
+events {
+    worker_connections 1024;
+}
+
+http {
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile             on;
+    #tcp_nopush          on;
+    #tcp_nodelay         on;
+    keepalive_timeout   65;
+    types_hash_max_size 2048;
+    client_max_body_size 5000m;
+
+    include             /etc/nginx/mime.types;
+    default_type        application/octet-stream;
+    
+    map $http_upgrade $connection_upgrade {
+        default upgrade;
+        ''      close;
+    }
+
+    # Load modular configuration files from the /etc/nginx/conf.d directory.
+    # See http://nginx.org/en/docs/ngx_core_module.html#include
+    # for more information.
+    include /mnt/etc/cn.yimian.xyz/nginx/conf.d/*.conf;
+
+    server {
+
+         listen       80 default_server;
+         listen       [::]:80 default_server;
+         listen       443 ssl http2 default_server;
+         listen       [::]:443 ssl http2 default_server;
+         server_name  _;
+ 
+         ssl_certificate "/mnt/config/ssl/yimian.xyz/yimian.xyz.crt";
+         ssl_certificate_key "/mnt/config/ssl/yimian.xyz/yimian.xyz.key";
+         ssl_session_cache shared:SSL:1m;
+         ssl_session_timeout  10m;
+         ssl_ciphers HIGH:!aNULL:!MD5;
+         ssl_prefer_server_ciphers on;
+ 
+         location / {
+            rewrite ^(.*)$  https://ushio.cool/;
+         }
+     }
+
+}

cn.yimian.xyz/nginx/nginx.conf.b

@@ -0,0 +1,117 @@
+
+user  nginx;
+worker_processes  1;
+
+#error_log  logs/error.log;
+#error_log  logs/error.log  notice;
+#error_log  logs/error.log  info;
+
+#pid        /run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       mime.types;
+    default_type  application/octet-stream;
+
+    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+    #                  '$status $body_bytes_sent "$http_referer" '
+    #                  '"$http_user_agent" "$http_x_forwarded_for"';
+
+    #access_log  logs/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    #keepalive_timeout  0;
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    server {
+        listen       80;
+        server_name  localhost;
+
+        #charset koi8-r;
+
+        #access_log  logs/host.access.log  main;
+
+        location / {
+            root   html;
+            index  index.html index.htm;
+        }
+
+        #error_page  404              /404.html;
+
+        # redirect server error pages to the static page /50x.html
+        #
+        error_page   500 502 503 504  /50x.html;
+        location = /50x.html {
+            root   html;
+        }
+
+        # proxy the PHP scripts to Apache listening on 127.0.0.1:80
+        #
+        #location ~ \.php$ {
+        #    proxy_pass   http://127.0.0.1;
+        #}
+
+        # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
+        #
+        #location ~ \.php$ {
+        #    root           html;
+        #    fastcgi_pass   127.0.0.1:9000;
+        #    fastcgi_index  index.php;
+        #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
+        #    include        fastcgi_params;
+        #}
+
+        # deny access to .htaccess files, if Apache's document root
+        # concurs with nginx's one
+        #
+        #location ~ /\.ht {
+        #    deny  all;
+        #}
+    }
+
+
+    # another virtual host using mix of IP-, name-, and port-based configuration
+    #
+    #server {
+    #    listen       8000;
+    #    listen       somename:8080;
+    #    server_name  somename  alias  another.alias;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+
+    # HTTPS server
+    #
+    #server {
+    #    listen       443 ssl;
+    #    server_name  localhost;
+
+    #    ssl_certificate      cert.pem;
+    #    ssl_certificate_key  cert.key;
+
+    #    ssl_session_cache    shared:SSL:1m;
+    #    ssl_session_timeout  5m;
+
+    #    ssl_ciphers  HIGH:!aNULL:!MD5;
+    #    ssl_prefer_server_ciphers  on;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+}

cn2.yimian.xyz/nginx/conf.d.b/acg.watch.conf

@@ -0,0 +1,46 @@
+server {
+    listen       80;
+    listen       [::]:80;
+    server_name  acg.watch;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  acg.watch;
+    root         /home/www/acg.watch;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/acg.watch/acg.watch.crt; #2
+    ssl_certificate_key /mnt/config/ssl/acg.watch/acg.watch.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+#   rewrite ^(.*)$  https://www.$host$1 permanent;
+
+    # Load configuration files for the default server block.
+    include /etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+#   if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+#   if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+#   if (!-f $request_filename){     rewrite (.*) /index.php; }
+#   if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+    location /api/ {
+        proxy_pass http://acg.watch-api:30080;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection 'upgrade';
+        proxy_set_header Host $host;
+        proxy_cache_bypass $http_upgrade;
+    }
+}

cn2.yimian.xyz/nginx/conf.d.b/eee.dog.conf

@@ -0,0 +1,29 @@
+server {
+    listen       80;
+    listen       [::]:80;
+    server_name  eee.dog;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  eee.dog;
+
+    ssl_certificate /mnt/config/ssl/eee.dog/eee.dog.crt; #2
+    ssl_certificate_key /mnt/config/ssl/eee.dog/eee.dog.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+location / {
+        rewrite  ^(.*)$  https://shorturl.yimian.xyz/index.php?s=$1  last;
+   }
+}

cn2.yimian.xyz/nginx/conf.d.b/home.yimian.xyz.conf

@@ -0,0 +1,25 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  home.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name home.yimian.xyz;
+    client_max_body_size 9000M;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+         proxy_pass http://frp:4480;
+         proxy_http_version 1.1;
+         proxy_set_header Upgrade $http_upgrade;
+         proxy_set_header Connection 'upgrade';
+         proxy_set_header Host $host;
+         proxy_cache_bypass $http_upgrade;
+    } 
+}

cn2.yimian.xyz/nginx/conf.d.b/img.yimian.xyz.conf

@@ -0,0 +1,49 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  img.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  img.yimian.xyz;
+    root         /home/www/img;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    add_header Cache-Control no-store;
+
+    if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+    if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+    if (!-f $request_filename){     rewrite (.*) /index.php; }
+    if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn2.yimian.xyz/nginx/conf.d.b/img.yimian.xyz.conf.docker

@@ -0,0 +1,44 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  img.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  img.yimian.xyz;
+    root         /home/www/img;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    #include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location ^~ / {
+        proxy_pass   http://127.0.0.1:5580/;
+         proxy_http_version 1.1;
+         proxy_set_header Upgrade $http_upgrade;
+         proxy_set_header Connection 'upgrade';
+         proxy_set_header Host $host;
+         proxy_cache_bypass $http_upgrade;
+ 
+    }
+
+
+
+
+}

cn2.yimian.xyz/nginx/conf.d.b/imgbed.yimian.xyz.conf

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  imgbed.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  imgbed.yimian.xyz;
+    root         /home/www/imgbed;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn2.yimian.xyz/nginx/conf.d.b/iotcat.me.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  iotcat.me www.iotcat.me;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  iotcat.me www.iotcat.me;
+    root         /home/www/iotcat.me;
+    index index.html;
+
+    ssl_certificate /mnt/config/ssl/iotcat.me/iotcat.me.crt; #2
+    ssl_certificate_key /mnt/config/ssl/iotcat.me/iotcat.me.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+}

cn2.yimian.xyz/nginx/conf.d.b/log.yimian.xyz.conf

@@ -0,0 +1,41 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  log.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  log.yimian.xyz;
+    root         /home/www/log;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn2.yimian.xyz/nginx/conf.d.b/onedrive.yimian.xyz.conf

@@ -0,0 +1,25 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  onedrive.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name onedrive.yimian.xyz;
+    client_max_body_size 9000M;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+         proxy_pass http://oneindex:80;
+         proxy_http_version 1.1;
+         proxy_set_header Upgrade $http_upgrade;
+         proxy_set_header Connection 'upgrade';
+         proxy_set_header Host $host;
+         proxy_cache_bypass $http_upgrade;
+    } 
+}

cn2.yimian.xyz/nginx/conf.d.b/pay.yimian.xyz.conf

@@ -0,0 +1,34 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  pay.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  pay.yimian.xyz;
+    root         /home/www/pay;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+}

cn2.yimian.xyz/nginx/conf.d.b/session.yimian.xyz.conf

@@ -0,0 +1,35 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  session.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name session.yimian.xyz;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location ^~ /websocket/ {
+        proxy_pass http://session:21514/;
+        proxy_read_timeout 300s;
+        proxy_send_timeout 300s;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $connection_upgrade;
+   } 
+
+    location / {
+        proxy_pass http://session:21513/;
+    } 
+
+
+
+}
+

cn2.yimian.xyz/nginx/conf.d.b/share.yimian.xyz.conf

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  share.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  share.yimian.xyz;
+    root         /home/www/filebed;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

cn2.yimian.xyz/nginx/conf.d.b/shorturl.yimian.xyz.conf

@@ -0,0 +1,29 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  shorturl.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  shorturl.yimian.xyz;
+    root         /home/www/shorturl;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+}

cn2.yimian.xyz/nginx/conf.d.b/ushio.cool.conf

@@ -0,0 +1,32 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  ushio.cool www.ushio.cool;
+    rewrite ^(.*)$  https://ushio.cool$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  ushio.cool;
+    root         /mnt/html/ushio;
+    index        index.html;
+
+    ssl_certificate /mnt/config/ssl/ushio.cool/ushio.cool.crt; #2
+    ssl_certificate_key /mnt/config/ssl/ushio.cool/ushio.cool.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+
+}

cn2.yimian.xyz/nginx/conf.d.b/www.eee.dog.conf

@@ -0,0 +1,39 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  www.eee.dog;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  www.eee.dog;
+    root         /home/www/blog;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/eee.dog/eee.dog.crt; #2
+    ssl_certificate_key /mnt/config/ssl/eee.dog/eee.dog.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+    if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+    if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+    if (!-f $request_filename){     rewrite (.*) /index.php; }
+    if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+    location / {
+    }
+
+}

cn2.yimian.xyz/nginx/conf.d.b/yimian.xyz.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  yimian.xyz www.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  yimian.xyz www.yimian.xyz;
+    root         /home/www/yimian.xyz;
+    index index.html;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/cn.yimian.xyz/nginx/default.d/*.conf;
+
+}

cn2.yimian.xyz/nginx/default.d/cache.conf

@@ -0,0 +1,13 @@
+location ~* ^.+\.(ico|gif|jpg|jpeg|png)$ { 
+    access_log off; 
+    expires 30d;
+}
+
+location ~* ^.+\.(css|js|txt|xml|swf|wav)$ {
+    access_log off;
+    expires 24h;
+}
+
+location ~* ^.+\.(html|htm)$ {
+     expires 1h;
+}

cn2.yimian.xyz/nginx/default.d/favicon.conf

@@ -0,0 +1,3 @@
+location = /favicon.ico {
+  #proxy_pass https://cdn.yimian.xyz/img/head/head3r.ico;  
+}

cn2.yimian.xyz/nginx/default.d/hsts.conf

@@ -0,0 +1 @@
+add_header Strict-Transport-Security "max-age=31536000";

cn2.yimian.xyz/nginx/default.d/php.conf

@@ -0,0 +1,13 @@
+location ~ \.php$ {
+    try_files      $uri =404; 	
+    fastcgi_pass   php-fpm:9000; 		
+    
+    fastcgi_pass_request_body off;
+    client_body_in_file_only clean;
+    fastcgi_param  REQUEST_BODY_FILE  $request_body_file; 
+    
+    fastcgi_index  index.php; 		
+    fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name; 		
+    include        fastcgi_params; 	
+    fastcgi_keep_conn on;
+}

cn2.yimian.xyz/nginx/default.d/wp-supercache.conf.b

@@ -0,0 +1,20 @@
+set $cache_uri $request_uri;
+
+if ($request_method = POST) {
+        set $cache_uri 'null cache';
+        }
+
+if ($query_string != "") {
+        set $cache_uri 'null cache';
+        }
+if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|/wp-(app|cron|login|register|mail).php|wp-.*.php|/feed/|index.php|wp-comments-popup.php|wp-links-opml.php|wp-locations.php|sitemap(_index)?.xml|[a-z0-9_-]+-sitemap([0-9]+)?.xml)") {
+        set $cache_uri 'null cache';
+        }   
+
+ if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_logged_in") {
+         set $cache_uri 'null cache';
+         }
+
+ location / {
+         try_files /wp-content/cache/supercache/$http_host/$cache_uri/index.html $uri $uri/ /index.php?$args ;
+         }

cn2.yimian.xyz/nginx/fastcgi.conf

@@ -0,0 +1,26 @@
+
+fastcgi_param  SCRIPT_FILENAME    $document_root$fastcgi_script_name;
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

cn2.yimian.xyz/nginx/fastcgi_params

@@ -0,0 +1,25 @@
+
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

cn2.yimian.xyz/nginx/mime.types

@@ -0,0 +1,97 @@
+
+types {
+    text/html                                        html htm shtml;
+    text/css                                         css;
+    text/xml                                         xml;
+    image/gif                                        gif;
+    image/jpeg                                       jpeg jpg;
+    application/javascript                           js;
+    application/atom+xml                             atom;
+    application/rss+xml                              rss;
+
+    text/mathml                                      mml;
+    text/plain                                       txt;
+    text/vnd.sun.j2me.app-descriptor                 jad;
+    text/vnd.wap.wml                                 wml;
+    text/x-component                                 htc;
+
+    image/png                                        png;
+    image/svg+xml                                    svg svgz;
+    image/tiff                                       tif tiff;
+    image/vnd.wap.wbmp                               wbmp;
+    image/webp                                       webp;
+    image/x-icon                                     ico;
+    image/x-jng                                      jng;
+    image/x-ms-bmp                                   bmp;
+
+    font/woff                                        woff;
+    font/woff2                                       woff2;
+
+    application/java-archive                         jar war ear;
+    application/json                                 json;
+    application/mac-binhex40                         hqx;
+    application/msword                               doc;
+    application/pdf                                  pdf;
+    application/postscript                           ps eps ai;
+    application/rtf                                  rtf;
+    application/vnd.apple.mpegurl                    m3u8;
+    application/vnd.google-earth.kml+xml             kml;
+    application/vnd.google-earth.kmz                 kmz;
+    application/vnd.ms-excel                         xls;
+    application/vnd.ms-fontobject                    eot;
+    application/vnd.ms-powerpoint                    ppt;
+    application/vnd.oasis.opendocument.graphics      odg;
+    application/vnd.oasis.opendocument.presentation  odp;
+    application/vnd.oasis.opendocument.spreadsheet   ods;
+    application/vnd.oasis.opendocument.text          odt;
+    application/vnd.openxmlformats-officedocument.presentationml.presentation
+                                                     pptx;
+    application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
+                                                     xlsx;
+    application/vnd.openxmlformats-officedocument.wordprocessingml.document
+                                                     docx;
+    application/vnd.wap.wmlc                         wmlc;
+    application/x-7z-compressed                      7z;
+    application/x-cocoa                              cco;
+    application/x-java-archive-diff                  jardiff;
+    application/x-java-jnlp-file                     jnlp;
+    application/x-makeself                           run;
+    application/x-perl                               pl pm;
+    application/x-pilot                              prc pdb;
+    application/x-rar-compressed                     rar;
+    application/x-redhat-package-manager             rpm;
+    application/x-sea                                sea;
+    application/x-shockwave-flash                    swf;
+    application/x-stuffit                            sit;
+    application/x-tcl                                tcl tk;
+    application/x-x509-ca-cert                       der pem crt;
+    application/x-xpinstall                          xpi;
+    application/xhtml+xml                            xhtml;
+    application/xspf+xml                             xspf;
+    application/zip                                  zip;
+
+    application/octet-stream                         bin exe dll;
+    application/octet-stream                         deb;
+    application/octet-stream                         dmg;
+    application/octet-stream                         iso img;
+    application/octet-stream                         msi msp msm;
+
+    audio/midi                                       mid midi kar;
+    audio/mpeg                                       mp3;
+    audio/ogg                                        ogg;
+    audio/x-m4a                                      m4a;
+    audio/x-realaudio                                ra;
+
+    video/3gpp                                       3gpp 3gp;
+    video/mp2t                                       ts;
+    video/mp4                                        mp4;
+    video/mpeg                                       mpeg mpg;
+    video/quicktime                                  mov;
+    video/webm                                       webm;
+    video/x-flv                                      flv;
+    video/x-m4v                                      m4v;
+    video/x-mng                                      mng;
+    video/x-ms-asf                                   asx asf;
+    video/x-ms-wmv                                   wmv;
+    video/x-msvideo                                  avi;
+}

cn2.yimian.xyz/nginx/nginx.conf

@@ -0,0 +1,63 @@
+# For more information on configuration, see:
+#   * Official English Documentation: http://nginx.org/en/docs/
+#   * Official Russian Documentation: http://nginx.org/ru/docs/
+user nginx;
+worker_processes auto;
+error_log /var/log/nginx/error.log;
+pid /run/nginx.pid;
+
+# Load dynamic modules. See /usr/share/nginx/README.dynamic.
+include /usr/share/nginx/modules/*.conf;
+
+events {
+    worker_connections 1024;
+}
+
+http {
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile             on;
+    #tcp_nopush          on;
+    #tcp_nodelay         on;
+    keepalive_timeout   65;
+    types_hash_max_size 2048;
+    client_max_body_size 5000m;
+
+    include             /etc/nginx/mime.types;
+    default_type        application/octet-stream;
+    
+    map $http_upgrade $connection_upgrade {
+        default upgrade;
+        ''      close;
+    }
+
+    # Load modular configuration files from the /etc/nginx/conf.d directory.
+    # See http://nginx.org/en/docs/ngx_core_module.html#include
+    # for more information.
+
+    server {
+
+         listen       80 default_server;
+         listen       [::]:80 default_server;
+         listen       443 ssl http2 default_server;
+         listen       [::]:443 ssl http2 default_server;
+         server_name  _;
+ 
+         ssl_certificate "/mnt/config/ssl/yimian.xyz/yimian.xyz.crt";
+         ssl_certificate_key "/mnt/config/ssl/yimian.xyz/yimian.xyz.key";
+         ssl_session_cache shared:SSL:1m;
+         ssl_session_timeout  10m;
+         ssl_ciphers HIGH:!aNULL:!MD5;
+         ssl_prefer_server_ciphers on;
+ 
+         location / {
+            rewrite ^(.*)$  https://ushio.cool/;
+         }
+     }
+
+    include /mnt/etc/cn.yimian.xyz/nginx/conf.d/*.conf;
+}

cn2.yimian.xyz/nginx/nginx.conf.b

@@ -0,0 +1,117 @@
+
+user  nginx;
+worker_processes  1;
+
+#error_log  logs/error.log;
+#error_log  logs/error.log  notice;
+#error_log  logs/error.log  info;
+
+#pid        /run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       mime.types;
+    default_type  application/octet-stream;
+
+    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+    #                  '$status $body_bytes_sent "$http_referer" '
+    #                  '"$http_user_agent" "$http_x_forwarded_for"';
+
+    #access_log  logs/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    #keepalive_timeout  0;
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    server {
+        listen       80;
+        server_name  localhost;
+
+        #charset koi8-r;
+
+        #access_log  logs/host.access.log  main;
+
+        location / {
+            root   html;
+            index  index.html index.htm;
+        }
+
+        #error_page  404              /404.html;
+
+        # redirect server error pages to the static page /50x.html
+        #
+        error_page   500 502 503 504  /50x.html;
+        location = /50x.html {
+            root   html;
+        }
+
+        # proxy the PHP scripts to Apache listening on 127.0.0.1:80
+        #
+        #location ~ \.php$ {
+        #    proxy_pass   http://127.0.0.1;
+        #}
+
+        # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
+        #
+        #location ~ \.php$ {
+        #    root           html;
+        #    fastcgi_pass   127.0.0.1:9000;
+        #    fastcgi_index  index.php;
+        #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
+        #    include        fastcgi_params;
+        #}
+
+        # deny access to .htaccess files, if Apache's document root
+        # concurs with nginx's one
+        #
+        #location ~ /\.ht {
+        #    deny  all;
+        #}
+    }
+
+
+    # another virtual host using mix of IP-, name-, and port-based configuration
+    #
+    #server {
+    #    listen       8000;
+    #    listen       somename:8080;
+    #    server_name  somename  alias  another.alias;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+
+    # HTTPS server
+    #
+    #server {
+    #    listen       443 ssl;
+    #    server_name  localhost;
+
+    #    ssl_certificate      cert.pem;
+    #    ssl_certificate_key  cert.key;
+
+    #    ssl_session_cache    shared:SSL:1m;
+    #    ssl_session_timeout  5m;
+
+    #    ssl_ciphers  HIGH:!aNULL:!MD5;
+    #    ssl_prefer_server_ciphers  on;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+}

home.yimian.xyz/nginx/conf.d/home.yimian.xyz.conf

@@ -0,0 +1,39 @@
+server {
+    listen 80; 
+    listen 443 ssl;
+    server_name home.yimian.xyz;
+
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    client_max_body_size 1000m;
+
+    location =/pan/ {
+        fastcgi_pass   php-fpm:9000; 		
+        fastcgi_index  index.php; 		
+        fastcgi_param  SCRIPT_FILENAME  /home/share/index.php; 		
+        include        fastcgi_params; 	
+    }
+
+    location  /pan/ {
+
+        client_max_body_size     1000m;
+        alias   /home/share/;
+    }
+
+    location / {
+        proxy_pass http://host.docker.internal:8123;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection 'upgrade';
+        proxy_set_header Host $host;
+        proxy_cache_bypass $http_upgrade;
+   } 
+}

home.yimian.xyz/nginx/conf.d/ushio.cool.conf

@@ -0,0 +1,32 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  ushio.cool www.ushio.cool;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  ushio.cool www.ushio.cool;
+    root         /mnt/html/ushio;
+    index        index.html;
+
+    ssl_certificate /mnt/config/ssl/ushio.cool/ushio.cool.crt; #2
+    ssl_certificate_key /mnt/config/ssl/ushio.cool/ushio.cool.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/usa.yimian.xyz/nginx/default.d/*.conf;
+
+
+}

home.yimian.xyz/nginx/conf.d/v-china.yimian.xyz.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  v-china.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name v-china.yimian.xyz;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+        proxy_pass http://v2ray:10808/;
+        proxy_read_timeout 300s;
+        proxy_send_timeout 300s;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $connection_upgrade;
+   } 
+
+
+}
+

home.yimian.xyz/nginx/default.d/cache.conf

@@ -0,0 +1,13 @@
+location ~* ^.+\.(ico|gif|jpg|jpeg|png)$ { 
+    access_log off; 
+    expires 30d;
+}
+
+location ~* ^.+\.(css|js|txt|xml|swf|wav)$ {
+    access_log off;
+    expires 24h;
+}
+
+location ~* ^.+\.(html|htm)$ {
+     expires 1h;
+}

home.yimian.xyz/nginx/default.d/favicon.conf

@@ -0,0 +1,3 @@
+location = /favicon.ico {
+  #proxy_pass https://cdn.yimian.xyz/img/head/head3r.ico;  
+}

home.yimian.xyz/nginx/default.d/hsts.conf

@@ -0,0 +1 @@
+add_header Strict-Transport-Security "max-age=31536000";

home.yimian.xyz/nginx/default.d/php.conf

@@ -0,0 +1,13 @@
+location ~ \.php$ {
+    try_files      $uri =404; 	
+    fastcgi_pass   php-fpm:9000; 		
+    
+    fastcgi_pass_request_body off;
+    client_body_in_file_only clean;
+    fastcgi_param  REQUEST_BODY_FILE  $request_body_file; 
+    
+    fastcgi_index  index.php; 		
+    fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name; 		
+    include        fastcgi_params; 	
+    fastcgi_keep_conn on;
+}

home.yimian.xyz/nginx/default.d/wp-supercache.conf.b

@@ -0,0 +1,20 @@
+set $cache_uri $request_uri;
+
+if ($request_method = POST) {
+        set $cache_uri 'null cache';
+        }
+
+if ($query_string != "") {
+        set $cache_uri 'null cache';
+        }
+if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|/wp-(app|cron|login|register|mail).php|wp-.*.php|/feed/|index.php|wp-comments-popup.php|wp-links-opml.php|wp-locations.php|sitemap(_index)?.xml|[a-z0-9_-]+-sitemap([0-9]+)?.xml)") {
+        set $cache_uri 'null cache';
+        }   
+
+ if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_logged_in") {
+         set $cache_uri 'null cache';
+         }
+
+ location / {
+         try_files /wp-content/cache/supercache/$http_host/$cache_uri/index.html $uri $uri/ /index.php?$args ;
+         }

home.yimian.xyz/nginx/fastcgi.conf

@@ -0,0 +1,26 @@
+
+fastcgi_param  SCRIPT_FILENAME    $document_root$fastcgi_script_name;
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

home.yimian.xyz/nginx/fastcgi_params

@@ -0,0 +1,25 @@
+
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

home.yimian.xyz/nginx/mime.types

@@ -0,0 +1,97 @@
+
+types {
+    text/html                                        html htm shtml;
+    text/css                                         css;
+    text/xml                                         xml;
+    image/gif                                        gif;
+    image/jpeg                                       jpeg jpg;
+    application/javascript                           js;
+    application/atom+xml                             atom;
+    application/rss+xml                              rss;
+
+    text/mathml                                      mml;
+    text/plain                                       txt;
+    text/vnd.sun.j2me.app-descriptor                 jad;
+    text/vnd.wap.wml                                 wml;
+    text/x-component                                 htc;
+
+    image/png                                        png;
+    image/svg+xml                                    svg svgz;
+    image/tiff                                       tif tiff;
+    image/vnd.wap.wbmp                               wbmp;
+    image/webp                                       webp;
+    image/x-icon                                     ico;
+    image/x-jng                                      jng;
+    image/x-ms-bmp                                   bmp;
+
+    font/woff                                        woff;
+    font/woff2                                       woff2;
+
+    application/java-archive                         jar war ear;
+    application/json                                 json;
+    application/mac-binhex40                         hqx;
+    application/msword                               doc;
+    application/pdf                                  pdf;
+    application/postscript                           ps eps ai;
+    application/rtf                                  rtf;
+    application/vnd.apple.mpegurl                    m3u8;
+    application/vnd.google-earth.kml+xml             kml;
+    application/vnd.google-earth.kmz                 kmz;
+    application/vnd.ms-excel                         xls;
+    application/vnd.ms-fontobject                    eot;
+    application/vnd.ms-powerpoint                    ppt;
+    application/vnd.oasis.opendocument.graphics      odg;
+    application/vnd.oasis.opendocument.presentation  odp;
+    application/vnd.oasis.opendocument.spreadsheet   ods;
+    application/vnd.oasis.opendocument.text          odt;
+    application/vnd.openxmlformats-officedocument.presentationml.presentation
+                                                     pptx;
+    application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
+                                                     xlsx;
+    application/vnd.openxmlformats-officedocument.wordprocessingml.document
+                                                     docx;
+    application/vnd.wap.wmlc                         wmlc;
+    application/x-7z-compressed                      7z;
+    application/x-cocoa                              cco;
+    application/x-java-archive-diff                  jardiff;
+    application/x-java-jnlp-file                     jnlp;
+    application/x-makeself                           run;
+    application/x-perl                               pl pm;
+    application/x-pilot                              prc pdb;
+    application/x-rar-compressed                     rar;
+    application/x-redhat-package-manager             rpm;
+    application/x-sea                                sea;
+    application/x-shockwave-flash                    swf;
+    application/x-stuffit                            sit;
+    application/x-tcl                                tcl tk;
+    application/x-x509-ca-cert                       der pem crt;
+    application/x-xpinstall                          xpi;
+    application/xhtml+xml                            xhtml;
+    application/xspf+xml                             xspf;
+    application/zip                                  zip;
+
+    application/octet-stream                         bin exe dll;
+    application/octet-stream                         deb;
+    application/octet-stream                         dmg;
+    application/octet-stream                         iso img;
+    application/octet-stream                         msi msp msm;
+
+    audio/midi                                       mid midi kar;
+    audio/mpeg                                       mp3;
+    audio/ogg                                        ogg;
+    audio/x-m4a                                      m4a;
+    audio/x-realaudio                                ra;
+
+    video/3gpp                                       3gpp 3gp;
+    video/mp2t                                       ts;
+    video/mp4                                        mp4;
+    video/mpeg                                       mpeg mpg;
+    video/quicktime                                  mov;
+    video/webm                                       webm;
+    video/x-flv                                      flv;
+    video/x-m4v                                      m4v;
+    video/x-mng                                      mng;
+    video/x-ms-asf                                   asx asf;
+    video/x-ms-wmv                                   wmv;
+    video/x-msvideo                                  avi;
+}

home.yimian.xyz/nginx/nginx.conf

@@ -0,0 +1,63 @@
+# For more information on configuration, see:
+#   * Official English Documentation: http://nginx.org/en/docs/
+#   * Official Russian Documentation: http://nginx.org/ru/docs/
+user nginx;
+worker_processes auto;
+error_log /var/log/nginx/error.log;
+pid /run/nginx.pid;
+
+# Load dynamic modules. See /usr/share/nginx/README.dynamic.
+include /usr/share/nginx/modules/*.conf;
+
+events {
+    worker_connections 1024;
+}
+
+http {
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile             on;
+    #tcp_nopush          on;
+    #tcp_nodelay         on;
+    keepalive_timeout   65;
+    types_hash_max_size 2048;
+    client_max_body_size 5000m;
+
+    include             /etc/nginx/mime.types;
+    default_type        application/octet-stream;
+    
+    map $http_upgrade $connection_upgrade {
+        default upgrade;
+        ''      close;
+    }
+
+    # Load modular configuration files from the /etc/nginx/conf.d directory.
+    # See http://nginx.org/en/docs/ngx_core_module.html#include
+    # for more information.
+
+    server {
+
+         listen       80 default_server;
+         listen       [::]:80 default_server;
+         listen       443 ssl http2 default_server;
+         listen       [::]:443 ssl http2 default_server;
+         server_name  _;
+ 
+         ssl_certificate "/mnt/config/ssl/yimian.xyz/yimian.xyz.crt";
+         ssl_certificate_key "/mnt/config/ssl/yimian.xyz/yimian.xyz.key";
+         ssl_session_cache shared:SSL:1m;
+         ssl_session_timeout  10m;
+         ssl_ciphers HIGH:!aNULL:!MD5;
+         ssl_prefer_server_ciphers on;
+ 
+         location / {
+            rewrite ^(.*)$  https://ushio.cool/;
+         }
+     }
+
+    include /mnt/etc/home.yimian.xyz/nginx/conf.d/*.conf;
+}

home.yimian.xyz/nginx/nginx.conf.b

@@ -0,0 +1,117 @@
+
+user  nginx;
+worker_processes  1;
+
+#error_log  logs/error.log;
+#error_log  logs/error.log  notice;
+#error_log  logs/error.log  info;
+
+#pid        /run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       mime.types;
+    default_type  application/octet-stream;
+
+    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+    #                  '$status $body_bytes_sent "$http_referer" '
+    #                  '"$http_user_agent" "$http_x_forwarded_for"';
+
+    #access_log  logs/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    #keepalive_timeout  0;
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    server {
+        listen       80;
+        server_name  localhost;
+
+        #charset koi8-r;
+
+        #access_log  logs/host.access.log  main;
+
+        location / {
+            root   html;
+            index  index.html index.htm;
+        }
+
+        #error_page  404              /404.html;
+
+        # redirect server error pages to the static page /50x.html
+        #
+        error_page   500 502 503 504  /50x.html;
+        location = /50x.html {
+            root   html;
+        }
+
+        # proxy the PHP scripts to Apache listening on 127.0.0.1:80
+        #
+        #location ~ \.php$ {
+        #    proxy_pass   http://127.0.0.1;
+        #}
+
+        # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
+        #
+        #location ~ \.php$ {
+        #    root           html;
+        #    fastcgi_pass   127.0.0.1:9000;
+        #    fastcgi_index  index.php;
+        #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
+        #    include        fastcgi_params;
+        #}
+
+        # deny access to .htaccess files, if Apache's document root
+        # concurs with nginx's one
+        #
+        #location ~ /\.ht {
+        #    deny  all;
+        #}
+    }
+
+
+    # another virtual host using mix of IP-, name-, and port-based configuration
+    #
+    #server {
+    #    listen       8000;
+    #    listen       somename:8080;
+    #    server_name  somename  alias  another.alias;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+
+    # HTTPS server
+    #
+    #server {
+    #    listen       443 ssl;
+    #    server_name  localhost;
+
+    #    ssl_certificate      cert.pem;
+    #    ssl_certificate_key  cert.key;
+
+    #    ssl_session_cache    shared:SSL:1m;
+    #    ssl_session_timeout  5m;
+
+    #    ssl_ciphers  HIGH:!aNULL:!MD5;
+    #    ssl_prefer_server_ciphers  on;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+}

jp.yimian.xyz/nginx/conf.d/blog.conf

@@ -0,0 +1,18 @@
+server{
+
+    listen 80;
+    server_name jp.yimian.xyz;
+
+
+    location / {
+        proxy_pass http://blog;
+        proxy_read_timeout 300;
+        proxy_connect_timeout 300;
+        proxy_redirect     off;
+
+        proxy_set_header   X-Forwarded-Proto $scheme;
+        proxy_set_header   Host              $http_host;
+        proxy_set_header   X-Real-IP         $remote_addr;
+    }
+
+}

jp.yimian.xyz/nginx/mime.types

@@ -0,0 +1,89 @@
+
+types {
+    text/html                             html htm shtml;
+    text/css                              css;
+    text/xml                              xml;
+    image/gif                             gif;
+    image/jpeg                            jpeg jpg;
+    application/javascript                js;
+    application/atom+xml                  atom;
+    application/rss+xml                   rss;
+
+    text/mathml                           mml;
+    text/plain                            txt;
+    text/vnd.sun.j2me.app-descriptor      jad;
+    text/vnd.wap.wml                      wml;
+    text/x-component                      htc;
+
+    image/png                             png;
+    image/tiff                            tif tiff;
+    image/vnd.wap.wbmp                    wbmp;
+    image/x-icon                          ico;
+    image/x-jng                           jng;
+    image/x-ms-bmp                        bmp;
+    image/svg+xml                         svg svgz;
+    image/webp                            webp;
+
+    application/font-woff                 woff;
+    application/java-archive              jar war ear;
+    application/json                      json;
+    application/mac-binhex40              hqx;
+    application/msword                    doc;
+    application/pdf                       pdf;
+    application/postscript                ps eps ai;
+    application/rtf                       rtf;
+    application/vnd.apple.mpegurl         m3u8;
+    application/vnd.ms-excel              xls;
+    application/vnd.ms-fontobject         eot;
+    application/vnd.ms-powerpoint         ppt;
+    application/vnd.wap.wmlc              wmlc;
+    application/vnd.google-earth.kml+xml  kml;
+    application/vnd.google-earth.kmz      kmz;
+    application/x-7z-compressed           7z;
+    application/x-cocoa                   cco;
+    application/x-java-archive-diff       jardiff;
+    application/x-java-jnlp-file          jnlp;
+    application/x-makeself                run;
+    application/x-perl                    pl pm;
+    application/x-pilot                   prc pdb;
+    application/x-rar-compressed          rar;
+    application/x-redhat-package-manager  rpm;
+    application/x-sea                     sea;
+    application/x-shockwave-flash         swf;
+    application/x-stuffit                 sit;
+    application/x-tcl                     tcl tk;
+    application/x-x509-ca-cert            der pem crt;
+    application/x-xpinstall               xpi;
+    application/xhtml+xml                 xhtml;
+    application/xspf+xml                  xspf;
+    application/zip                       zip;
+
+    application/octet-stream              bin exe dll;
+    application/octet-stream              deb;
+    application/octet-stream              dmg;
+    application/octet-stream              iso img;
+    application/octet-stream              msi msp msm;
+
+    application/vnd.openxmlformats-officedocument.wordprocessingml.document    docx;
+    application/vnd.openxmlformats-officedocument.spreadsheetml.sheet          xlsx;
+    application/vnd.openxmlformats-officedocument.presentationml.presentation  pptx;
+
+    audio/midi                            mid midi kar;
+    audio/mpeg                            mp3;
+    audio/ogg                             ogg;
+    audio/x-m4a                           m4a;
+    audio/x-realaudio                     ra;
+
+    video/3gpp                            3gpp 3gp;
+    video/mp2t                            ts;
+    video/mp4                             mp4;
+    video/mpeg                            mpeg mpg;
+    video/quicktime                       mov;
+    video/webm                            webm;
+    video/x-flv                           flv;
+    video/x-m4v                           m4v;
+    video/x-mng                           mng;
+    video/x-ms-asf                        asx asf;
+    video/x-ms-wmv                        wmv;
+    video/x-msvideo                       avi;
+}

jp.yimian.xyz/nginx/nginx.conf

@@ -0,0 +1,91 @@
+# For more information on configuration, see:
+#   * Official English Documentation: http://nginx.org/en/docs/
+#   * Official Russian Documentation: http://nginx.org/ru/docs/
+
+user nginx;
+worker_processes auto;
+error_log /var/log/nginx/error.log;
+pid /run/nginx.pid;
+
+# Load dynamic modules. See /usr/share/nginx/README.dynamic.
+include /usr/share/nginx/modules/*.conf;
+
+events {
+    worker_connections 1024;
+}
+
+http {
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile            on;
+    tcp_nopush          on;
+    tcp_nodelay         on;
+    keepalive_timeout   65;
+    types_hash_max_size 2048;
+
+    include             /etc/nginx/mime.types;
+    default_type        application/octet-stream;
+
+    # Load modular configuration files from the /etc/nginx/conf.d directory.
+    # See http://nginx.org/en/docs/ngx_core_module.html#include
+    # for more information.
+    include /etc/nginx/conf.d/*.conf;
+
+    server {
+        listen       80 default_server;
+        listen       [::]:80 default_server;
+        server_name  _;
+        root         /html/ushio;
+        index        index.html; 
+
+        #location / {
+        #}
+
+        error_page 404 /404.html;
+            location = /40x.html {
+        }
+
+        error_page 500 502 503 504 /50x.html;
+            location = /50x.html {
+        }
+    }
+
+
+
+
+
+# Settings for a TLS enabled server.
+#
+#    server {
+#        listen       443 ssl http2 default_server;
+#        listen       [::]:443 ssl http2 default_server;
+#        server_name  _;
+#        root         /usr/share/nginx/html;
+#
+#        ssl_certificate "/etc/pki/nginx/server.crt";
+#        ssl_certificate_key "/etc/pki/nginx/private/server.key";
+#        ssl_session_cache shared:SSL:1m;
+#        ssl_session_timeout  10m;
+#        ssl_ciphers HIGH:!aNULL:!MD5;
+#        ssl_prefer_server_ciphers on;
+#
+#        # Load configuration files for the default server block.
+#        include /etc/nginx/default.d/*.conf;
+#
+#        location / {
+#        }
+#
+#        error_page 404 /404.html;
+#            location = /40x.html {
+#        }
+#
+#        error_page 500 502 503 504 /50x.html;
+#            location = /50x.html {
+#        }
+#    }
+
+}

uk.yimian.xyz/nginx/conf.d/acg.watch.conf.bck

@@ -0,0 +1,46 @@
+server {
+    listen       80;
+    listen       [::]:80;
+    server_name  acg.watch;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  acg.watch;
+    root         /home/www/acg.watch;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/acg.watch/acg.watch.crt; #2
+    ssl_certificate_key /mnt/config/ssl/acg.watch/acg.watch.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+#   rewrite ^(.*)$  https://www.$host$1 permanent;
+
+    # Load configuration files for the default server block.
+    include /etc/uk.yimian.xyz/nginx/default.d/*.conf;
+
+#   if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+#   if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+#   if (!-f $request_filename){     rewrite (.*) /index.php; }
+#   if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+    location /api/ {
+        proxy_pass http://acg.watch-api:30080;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection 'upgrade';
+        proxy_set_header Host $host;
+        proxy_cache_bypass $http_upgrade;
+    }
+}

uk.yimian.xyz/nginx/conf.d/imgbed.yimian.xyz.conf.bck

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  imgbed.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  imgbed.yimian.xyz;
+    root         /home/www/imgbed;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/uk.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

uk.yimian.xyz/nginx/conf.d/iotcat.me.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  iotcat.me www.iotcat.me;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  iotcat.me www.iotcat.me;
+    root         /home/www/iotcat.me;
+    index index.html;
+
+    ssl_certificate /mnt/config/ssl/iotcat.me/iotcat.me.crt; #2
+    ssl_certificate_key /mnt/config/ssl/iotcat.me/iotcat.me.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/uk.yimian.xyz/nginx/default.d/*.conf;
+
+}

uk.yimian.xyz/nginx/conf.d/onedrive.yimian.xyz.conf

@@ -0,0 +1,25 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  onedrive.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name onedrive.yimian.xyz;
+    client_max_body_size 9000M;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+         proxy_pass http://oneindex:80;
+         proxy_http_version 1.1;
+         proxy_set_header Upgrade $http_upgrade;
+         proxy_set_header Connection 'upgrade';
+         proxy_set_header Host $host;
+         proxy_cache_bypass $http_upgrade;
+    } 
+}

uk.yimian.xyz/nginx/conf.d/session.yimian.xyz.conf

@@ -0,0 +1,35 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  session.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name session.yimian.xyz;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location ^~ /websocket/ {
+        proxy_pass http://session:21514/;
+        proxy_read_timeout 300s;
+        proxy_send_timeout 300s;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $connection_upgrade;
+   } 
+
+    location / {
+        proxy_pass http://session:21513/;
+    } 
+
+
+
+}
+

uk.yimian.xyz/nginx/conf.d/share.yimian.xyz.conf.bck

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  share.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  share.yimian.xyz;
+    root         /home/www/filebed;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/uk.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

uk.yimian.xyz/nginx/conf.d/ushio.cool.conf

@@ -0,0 +1,32 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  ushio.cool www.ushio.cool;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  ushio.cool www.ushio.cool;
+    root         /mnt/html/ushio;
+    index        index.html;
+
+    ssl_certificate /mnt/config/ssl/ushio.cool/ushio.cool.crt; #2
+    ssl_certificate_key /mnt/config/ssl/ushio.cool/ushio.cool.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/uk.yimian.xyz/nginx/default.d/*.conf;
+
+
+}

uk.yimian.xyz/nginx/conf.d/www.eee.dog.conf.bck

@@ -0,0 +1,39 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  www.eee.dog;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  www.eee.dog;
+    root         /home/www/blog;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/eee.dog/eee.dog.crt; #2
+    ssl_certificate_key /mnt/config/ssl/eee.dog/eee.dog.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/uk.yimian.xyz/nginx/default.d/*.conf;
+
+    if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+    if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+    if (!-f $request_filename){     rewrite (.*) /index.php; }
+    if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+    location / {
+    }
+
+}

uk.yimian.xyz/nginx/default.d/cache.conf

@@ -0,0 +1,13 @@
+location ~* ^.+\.(ico|gif|jpg|jpeg|png)$ { 
+    access_log off; 
+    expires 30d;
+}
+
+location ~* ^.+\.(css|js|txt|xml|swf|wav)$ {
+    access_log off;
+    expires 24h;
+}
+
+location ~* ^.+\.(html|htm)$ {
+     expires 1h;
+}

uk.yimian.xyz/nginx/default.d/favicon.conf

@@ -0,0 +1,3 @@
+location = /favicon.ico {
+  #proxy_pass https://cdn.yimian.xyz/img/head/head3r.ico;  
+}

uk.yimian.xyz/nginx/default.d/hsts.conf

@@ -0,0 +1 @@
+add_header Strict-Transport-Security "max-age=31536000";

uk.yimian.xyz/nginx/default.d/php.conf

@@ -0,0 +1,13 @@
+location ~ \.php$ {
+    try_files      $uri =404; 	
+    fastcgi_pass   php-fpm:9000; 		
+    
+    fastcgi_pass_request_body off;
+    client_body_in_file_only clean;
+    fastcgi_param  REQUEST_BODY_FILE  $request_body_file; 
+    
+    fastcgi_index  index.php; 		
+    fastcgi_param  SCRIPT_FILENAME  $document_root$fastcgi_script_name; 		
+    include        fastcgi_params; 	
+    fastcgi_keep_conn on;
+}

uk.yimian.xyz/nginx/default.d/wp-supercache.conf.b

@@ -0,0 +1,20 @@
+set $cache_uri $request_uri;
+
+if ($request_method = POST) {
+        set $cache_uri 'null cache';
+        }
+
+if ($query_string != "") {
+        set $cache_uri 'null cache';
+        }
+if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|/wp-(app|cron|login|register|mail).php|wp-.*.php|/feed/|index.php|wp-comments-popup.php|wp-links-opml.php|wp-locations.php|sitemap(_index)?.xml|[a-z0-9_-]+-sitemap([0-9]+)?.xml)") {
+        set $cache_uri 'null cache';
+        }   
+
+ if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_logged_in") {
+         set $cache_uri 'null cache';
+         }
+
+ location / {
+         try_files /wp-content/cache/supercache/$http_host/$cache_uri/index.html $uri $uri/ /index.php?$args ;
+         }

uk.yimian.xyz/nginx/fastcgi.conf

@@ -0,0 +1,26 @@
+
+fastcgi_param  SCRIPT_FILENAME    $document_root$fastcgi_script_name;
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

uk.yimian.xyz/nginx/fastcgi_params

@@ -0,0 +1,25 @@
+
+fastcgi_param  QUERY_STRING       $query_string;
+fastcgi_param  REQUEST_METHOD     $request_method;
+fastcgi_param  CONTENT_TYPE       $content_type;
+fastcgi_param  CONTENT_LENGTH     $content_length;
+
+fastcgi_param  SCRIPT_NAME        $fastcgi_script_name;
+fastcgi_param  REQUEST_URI        $request_uri;
+fastcgi_param  DOCUMENT_URI       $document_uri;
+fastcgi_param  DOCUMENT_ROOT      $document_root;
+fastcgi_param  SERVER_PROTOCOL    $server_protocol;
+fastcgi_param  REQUEST_SCHEME     $scheme;
+fastcgi_param  HTTPS              $https if_not_empty;
+
+fastcgi_param  GATEWAY_INTERFACE  CGI/1.1;
+fastcgi_param  SERVER_SOFTWARE    nginx/$nginx_version;
+
+fastcgi_param  REMOTE_ADDR        $remote_addr;
+fastcgi_param  REMOTE_PORT        $remote_port;
+fastcgi_param  SERVER_ADDR        $server_addr;
+fastcgi_param  SERVER_PORT        $server_port;
+fastcgi_param  SERVER_NAME        $server_name;
+
+# PHP only, required if PHP was built with --enable-force-cgi-redirect
+fastcgi_param  REDIRECT_STATUS    200;

uk.yimian.xyz/nginx/mime.types

@@ -0,0 +1,97 @@
+
+types {
+    text/html                                        html htm shtml;
+    text/css                                         css;
+    text/xml                                         xml;
+    image/gif                                        gif;
+    image/jpeg                                       jpeg jpg;
+    application/javascript                           js;
+    application/atom+xml                             atom;
+    application/rss+xml                              rss;
+
+    text/mathml                                      mml;
+    text/plain                                       txt;
+    text/vnd.sun.j2me.app-descriptor                 jad;
+    text/vnd.wap.wml                                 wml;
+    text/x-component                                 htc;
+
+    image/png                                        png;
+    image/svg+xml                                    svg svgz;
+    image/tiff                                       tif tiff;
+    image/vnd.wap.wbmp                               wbmp;
+    image/webp                                       webp;
+    image/x-icon                                     ico;
+    image/x-jng                                      jng;
+    image/x-ms-bmp                                   bmp;
+
+    font/woff                                        woff;
+    font/woff2                                       woff2;
+
+    application/java-archive                         jar war ear;
+    application/json                                 json;
+    application/mac-binhex40                         hqx;
+    application/msword                               doc;
+    application/pdf                                  pdf;
+    application/postscript                           ps eps ai;
+    application/rtf                                  rtf;
+    application/vnd.apple.mpegurl                    m3u8;
+    application/vnd.google-earth.kml+xml             kml;
+    application/vnd.google-earth.kmz                 kmz;
+    application/vnd.ms-excel                         xls;
+    application/vnd.ms-fontobject                    eot;
+    application/vnd.ms-powerpoint                    ppt;
+    application/vnd.oasis.opendocument.graphics      odg;
+    application/vnd.oasis.opendocument.presentation  odp;
+    application/vnd.oasis.opendocument.spreadsheet   ods;
+    application/vnd.oasis.opendocument.text          odt;
+    application/vnd.openxmlformats-officedocument.presentationml.presentation
+                                                     pptx;
+    application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
+                                                     xlsx;
+    application/vnd.openxmlformats-officedocument.wordprocessingml.document
+                                                     docx;
+    application/vnd.wap.wmlc                         wmlc;
+    application/x-7z-compressed                      7z;
+    application/x-cocoa                              cco;
+    application/x-java-archive-diff                  jardiff;
+    application/x-java-jnlp-file                     jnlp;
+    application/x-makeself                           run;
+    application/x-perl                               pl pm;
+    application/x-pilot                              prc pdb;
+    application/x-rar-compressed                     rar;
+    application/x-redhat-package-manager             rpm;
+    application/x-sea                                sea;
+    application/x-shockwave-flash                    swf;
+    application/x-stuffit                            sit;
+    application/x-tcl                                tcl tk;
+    application/x-x509-ca-cert                       der pem crt;
+    application/x-xpinstall                          xpi;
+    application/xhtml+xml                            xhtml;
+    application/xspf+xml                             xspf;
+    application/zip                                  zip;
+
+    application/octet-stream                         bin exe dll;
+    application/octet-stream                         deb;
+    application/octet-stream                         dmg;
+    application/octet-stream                         iso img;
+    application/octet-stream                         msi msp msm;
+
+    audio/midi                                       mid midi kar;
+    audio/mpeg                                       mp3;
+    audio/ogg                                        ogg;
+    audio/x-m4a                                      m4a;
+    audio/x-realaudio                                ra;
+
+    video/3gpp                                       3gpp 3gp;
+    video/mp2t                                       ts;
+    video/mp4                                        mp4;
+    video/mpeg                                       mpeg mpg;
+    video/quicktime                                  mov;
+    video/webm                                       webm;
+    video/x-flv                                      flv;
+    video/x-m4v                                      m4v;
+    video/x-mng                                      mng;
+    video/x-ms-asf                                   asx asf;
+    video/x-ms-wmv                                   wmv;
+    video/x-msvideo                                  avi;
+}

uk.yimian.xyz/nginx/nginx.conf

@@ -0,0 +1,63 @@
+# For more information on configuration, see:
+#   * Official English Documentation: http://nginx.org/en/docs/
+#   * Official Russian Documentation: http://nginx.org/ru/docs/
+user nginx;
+worker_processes auto;
+error_log /var/log/nginx/error.log;
+pid /run/nginx.pid;
+
+# Load dynamic modules. See /usr/share/nginx/README.dynamic.
+include /usr/share/nginx/modules/*.conf;
+
+events {
+    worker_connections 1024;
+}
+
+http {
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile             on;
+    #tcp_nopush          on;
+    #tcp_nodelay         on;
+    keepalive_timeout   65;
+    types_hash_max_size 2048;
+    client_max_body_size 5000m;
+
+    include             /etc/nginx/mime.types;
+    default_type        application/octet-stream;
+    
+    map $http_upgrade $connection_upgrade {
+        default upgrade;
+        ''      close;
+    }
+
+    # Load modular configuration files from the /etc/nginx/conf.d directory.
+    # See http://nginx.org/en/docs/ngx_core_module.html#include
+    # for more information.
+
+    server {
+
+         listen       80 default_server;
+         listen       [::]:80 default_server;
+         listen       443 ssl http2 default_server;
+         listen       [::]:443 ssl http2 default_server;
+         server_name  _;
+ 
+         ssl_certificate "/mnt/config/ssl/yimian.xyz/yimian.xyz.crt";
+         ssl_certificate_key "/mnt/config/ssl/yimian.xyz/yimian.xyz.key";
+         ssl_session_cache shared:SSL:1m;
+         ssl_session_timeout  10m;
+         ssl_ciphers HIGH:!aNULL:!MD5;
+         ssl_prefer_server_ciphers on;
+ 
+         location / {
+            rewrite ^(.*)$  https://ushio.cool/;
+         }
+     }
+
+    include /mnt/etc/uk.yimian.xyz/nginx/conf.d/*.conf;
+}

uk.yimian.xyz/nginx/nginx.conf.b

@@ -0,0 +1,117 @@
+
+user  nginx;
+worker_processes  1;
+
+#error_log  logs/error.log;
+#error_log  logs/error.log  notice;
+#error_log  logs/error.log  info;
+
+#pid        /run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       mime.types;
+    default_type  application/octet-stream;
+
+    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+    #                  '$status $body_bytes_sent "$http_referer" '
+    #                  '"$http_user_agent" "$http_x_forwarded_for"';
+
+    #access_log  logs/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    #keepalive_timeout  0;
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    server {
+        listen       80;
+        server_name  localhost;
+
+        #charset koi8-r;
+
+        #access_log  logs/host.access.log  main;
+
+        location / {
+            root   html;
+            index  index.html index.htm;
+        }
+
+        #error_page  404              /404.html;
+
+        # redirect server error pages to the static page /50x.html
+        #
+        error_page   500 502 503 504  /50x.html;
+        location = /50x.html {
+            root   html;
+        }
+
+        # proxy the PHP scripts to Apache listening on 127.0.0.1:80
+        #
+        #location ~ \.php$ {
+        #    proxy_pass   http://127.0.0.1;
+        #}
+
+        # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
+        #
+        #location ~ \.php$ {
+        #    root           html;
+        #    fastcgi_pass   127.0.0.1:9000;
+        #    fastcgi_index  index.php;
+        #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
+        #    include        fastcgi_params;
+        #}
+
+        # deny access to .htaccess files, if Apache's document root
+        # concurs with nginx's one
+        #
+        #location ~ /\.ht {
+        #    deny  all;
+        #}
+    }
+
+
+    # another virtual host using mix of IP-, name-, and port-based configuration
+    #
+    #server {
+    #    listen       8000;
+    #    listen       somename:8080;
+    #    server_name  somename  alias  another.alias;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+
+    # HTTPS server
+    #
+    #server {
+    #    listen       443 ssl;
+    #    server_name  localhost;
+
+    #    ssl_certificate      cert.pem;
+    #    ssl_certificate_key  cert.key;
+
+    #    ssl_session_cache    shared:SSL:1m;
+    #    ssl_session_timeout  5m;
+
+    #    ssl_ciphers  HIGH:!aNULL:!MD5;
+    #    ssl_prefer_server_ciphers  on;
+
+    #    location / {
+    #        root   html;
+    #        index  index.html index.htm;
+    #    }
+    #}
+
+}

usa.yimian.xyz/nginx/conf.d/acg.watch.conf.bck

@@ -0,0 +1,46 @@
+server {
+    listen       80;
+    listen       [::]:80;
+    server_name  acg.watch;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    #listen       80;
+    #listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  acg.watch;
+    root         /home/www/acg.watch;
+    index index.php index.html;
+
+    ssl_certificate /mnt/config/ssl/acg.watch/acg.watch.crt; #2
+    ssl_certificate_key /mnt/config/ssl/acg.watch/acg.watch.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    #error_page 404 = /404.php;
+
+#   rewrite ^(.*)$  https://www.$host$1 permanent;
+
+    # Load configuration files for the default server block.
+    include /etc/usa.yimian.xyz/nginx/default.d/*.conf;
+
+#   if (-f $request_filename/index.html){     rewrite (.*) $1/index.html break; } 
+#   if (-f $request_filename/index.php){     rewrite (.*) $1/index.php; } 
+#   if (!-f $request_filename){     rewrite (.*) /index.php; }
+#   if (!-e $request_filename) {    rewrite ^(.*)$ /index.php$1 last; }
+
+    location /api/ {
+        proxy_pass http://acg.watch-api:30080;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection 'upgrade';
+        proxy_set_header Host $host;
+        proxy_cache_bypass $http_upgrade;
+    }
+}

usa.yimian.xyz/nginx/conf.d/docker.yimian.xyz.conf

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  docker.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name docker.yimian.xyz;
+    client_max_body_size 9000M;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+         #proxy_pass https://frps:4443;
+         #proxy_ssl_server_name on;
+         #proxy_ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+         #proxy_ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+         #proxy_http_version 1.1;
+         #proxy_set_header Upgrade $http_upgrade;
+         #proxy_set_header Connection 'upgrade';
+         #proxy_set_header Host $host;
+         #proxy_cache_bypass $http_upgrade;
+         resolver 8.8.8.8;
+         proxy_ssl_server_name on;
+         proxy_set_header X-Real-IP $remote_addr;
+         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+         proxy_set_header X-Forwarded-Proto $scheme;
+         proxy_set_header Host $host:$server_port;
+         proxy_pass https://$host:4443; #通过域名访问frp服务
+        proxy_read_timeout 300s;
+        proxy_send_timeout 300s;
+        #proxy_set_header Host $host;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $connection_upgrade;
+ 
+    } 
+}

usa.yimian.xyz/nginx/conf.d/home.yimian.xyz.conf

@@ -0,0 +1,25 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  home.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+server {
+   #listen 80;
+    listen 443 ssl;
+    server_name home.yimian.xyz;
+    client_max_body_size 9000M;
+
+    ssl_certificate         /mnt/config/ssl/yimian.xyz/yimian.xyz.crt;
+    ssl_certificate_key     /mnt/config/ssl/yimian.xyz/yimian.xyz.key;
+
+    location / {
+         proxy_pass http://frps:4480;
+         proxy_http_version 1.1;
+         proxy_set_header Upgrade $http_upgrade;
+         proxy_set_header Connection 'upgrade';
+         proxy_set_header Host $host;
+         proxy_cache_bypass $http_upgrade;
+    } 
+}

usa.yimian.xyz/nginx/conf.d/imgbed.yimian.xyz.conf.bck

@@ -0,0 +1,42 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  imgbed.yimian.xyz;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  imgbed.yimian.xyz;
+    root         /home/www/imgbed;
+    index index.php index.html;
+    client_max_body_size     50m;
+
+    ssl_certificate /mnt/config/ssl/yimian.xyz/yimian.xyz.crt; #2
+    ssl_certificate_key /mnt/config/ssl/yimian.xyz/yimian.xyz.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+    # error_page 404 = /404.php;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/uk.yimian.xyz/nginx/default.d/*.conf;
+
+    location / {
+    }
+
+    error_page 404 /404.html;
+        location = /40x.html {
+    }
+
+    error_page 500 502 503 504 /50x.html;
+        location = /50x.html {
+    }
+}

usa.yimian.xyz/nginx/conf.d/iotcat.me.conf

@@ -0,0 +1,30 @@
+server {
+    listen       80;
+    #listen       [::]:80;
+    server_name  iotcat.me www.iotcat.me;
+    rewrite ^(.*)$  https://$host$1 permanent;
+}
+
+
+server {
+    # listen       80;
+    # listen       [::]:80;
+    listen       443 ssl;
+
+    server_name  iotcat.me www.iotcat.me;
+    root         /home/www/iotcat.me;
+    index index.html;
+
+    ssl_certificate /mnt/config/ssl/iotcat.me/iotcat.me.crt; #2
+    ssl_certificate_key /mnt/config/ssl/iotcat.me/iotcat.me.key; #3
+
+    ssl_session_cache shared:SSL:1m;
+    ssl_session_timeout 5m;
+    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
+    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+    ssl_prefer_server_ciphers on;
+
+    # Load configuration files for the default server block.
+    include /mnt/etc/usa.yimian.xyz/nginx/default.d/*.conf;
+
+}