设为首页收藏本站
切换到宽版

全球主机交流论坛

 找回密码
 注册

QQ登录

只需一步,快速开始

全球主机交流论坛»论坛 主机综合交流 美国VPS综合讨论 怎么把https://xxx.com 重定向到https://www.xxx.com ...
CeraNetworks网络延迟测速工具IP归属甄别会员请立即修改密码
12下一页
返回列表 发新帖
查看: 3613|回复: 10
打印 上一主题 下一主题

[Windows VPS] 怎么把https://xxx.com 重定向到https://www.xxx.com

[复制链接]
mischief
跳转到指定楼层
1#
发表于 2018-11-28 18:51:58 | 只看该作者 回帖奖励 |倒序浏览 |阅读模式
server {

........

listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/example.com/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot


}

server {
  if ($host != www.example.com) {
        return 301 https://www.example.com$request_uri;
    }

  if ($host = www.example.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


    if ($host = example.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


    listen       80;
    server_name  www.example.com example.com;
    return 404; # managed by Certbot

}

cerbot 开启了HSTS(我不知道怎么关闭)
自己加了句
if ($host != www.example.com) {
        return 301 https://www.example.com$request_uri;
    }

但是这样以后发现 https://example.com 无法重定向到https://www.example.com

谢谢各位大佬,求指点
回复

举报

jimi 该用户已被删除
2#
发表于 2018-11-28 18:55:18 | 只看该作者
提示: 作者被禁止或删除 内容自动屏蔽
回复 支持 反对

举报

mischief
3#
 楼主| 发表于 2018-11-28 18:56:59 | 只看该作者
jimi 发表于 2018-11-28 18:55
你没有listen 443吧

listen 443 ssl; # managed by Certbot
cerbot自己设置到前面的server里的
回复 支持 反对

举报

陈道临
4#
发表于 2018-11-28 18:58:39 | 只看该作者
  1. server {
  2.   listen 80;
  3.   listen [::]:80;
  4.   listen 443 ssl http2;
  5.   listen [::]:443 ssl http2;
  6.   #ECC
  7.   ssl_certificate /usr/local/nginx/conf/ssl/nyaa.uk_ECC.crt;
  8.   ssl_certificate_key /usr/local/nginx/conf/ssl/nyaa.uk_ECC.key;
  9.   #RSA
  10.   ssl_certificate /usr/local/nginx/conf/ssl/nyaa.uk_RSA.crt;
  11.   ssl_certificate_key /usr/local/nginx/conf/ssl/nyaa.uk_RSA.key;
  12.   ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  13.   ssl_ciphers ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS;
  14.   ssl_prefer_server_ciphers on;
  15.   ssl_session_timeout 1d;
  16.   ssl_session_cache shared:SSL:50m;
  17.   ssl_session_tickets off;
  18.   ssl_buffer_size 1400;
  19.   add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
  20.   ssl_stapling on;
  21.   ssl_stapling_verify on;
  22.   server_name nyaa.uk www.nyaa.uk;
  23.   access_log /home/wwwlogs/nyaa.uk_nginx.log combined;
  24.   #index index.html index.htm index.php;
  25.   #root /home/wwwroot/nyaa.uk;
  26.   if ($ssl_protocol = "") { return 301 https://$host$request_uri; }
  27.   if ($host != nyaa.uk) {  return 301 $scheme://nyaa.uk$request_uri;  }
  28.   #include /usr/local/nginx/conf/rewrite/none.conf;
  29.   #error_page 404 /404.html;
  30.   #error_page 502 /502.html;

  32.   location / {
  33.     sub_filter_types text/css text/xml application/xhtml+xml application/xml;
  34.     sub_filter nyaa.si nyaa.uk;
  35.     sub_filter_once off;
  36.     proxy_set_header X-Real-IP $remote_addr;
  37.     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  38.     proxy_set_header Referer https://nyaa.si;
  39.     proxy_set_header Host nyaa.si;
  40.     proxy_pass https://nyaa.si;
  41.     proxy_set_header Accept-Encoding "";
  42.   }
  43. }
复制代码


看着改
回复 支持 反对

举报

每次醒来
5#
发表于 2018-11-28 18:59:10 | 只看该作者
server {
    listen 80;
    server_name XXX.com www.XXX.com;
    return 301 https://www.XXX.com$request_uri;
}
server {
    listen 443 ssl;
    ssl_certificate  /home/ssl/www.XXX.com/www.XXX.com.crt;
    ssl_certificate_key  /home/ssl/www.XXX.com/www.XXX.com.pem;
    server_name XXX.com;
    return 301 https://www.XXX.com$request_uri;
}
server
    {
listen 443 ssl http2;
ssl on;
ssl_certificate  /home/ssl/www.XXX.com/www.XXX.com.crt;
ssl_certificate_key  /home/ssl/www.XXX.com/www.XXX.com.pem;
ssl_protocols TLSv1.1 TLSv1.2;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 10m;
        #listen [::]:80;
        server_name www.XXX.com;
        index index.html index.htm index.php default.html default.htm default.php;
        root  /home/wwwroot/www.XXX.com;
此处省略..
}

回复 支持 反对

举报

斜阳晚暮
6#
发表于 2018-11-28 19:01:39 | 只看该作者
本帖最后由 斜阳晚暮 于 2018-11-28 19:03 编辑
  1. server
  2.     {
  3.         listen 443;
  4.         server_name  xxx.com;
  5.         index index.html index.htm index.php default.html default.htm default.phpp;
  6.         root  /home/wwwroot/xxx;
  7.         ssl on;
  8.         ssl_certificate /home/www/xxx.crt;    #生成的证书
  9.         ssl_certificate_key /home/www/xxx.key;    #生成的密钥
  10.         ssl_session_cache shared:SSL:10m;
  11.         ssl_session_timeout 10m;
  12.         ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  13.         ssl_stapling on;
  14.         ssl_ciphers "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA";
  15.         ssl_prefer_server_ciphers on;


  18.         rewrite ^(.*)$ https:/www.xxx.com$1 permanent;
  19.     }


  22. server
  23.     {
  24.         listen 80;
  25.         server_name xxx.com www.xxx.com;
  26.         rewrite ^(.*)$ https://www.xxx.com$1 permanent;
  27.    }

复制代码


回复 支持 反对

举报

huaxing0211
7#
发表于 2018-11-28 19:02:32 | 只看该作者
http://nginx.org/en/docs/http/converting_rewrite_rules.html
回复 支持 反对

举报

pavilion1019
8#
发表于 2018-11-28 19:03:07 | 只看该作者
nginx的话301 重定向
回复 支持 反对

举报

zc035
9#
发表于 2018-11-28 19:04:17 | 只看该作者
抛开 软件环境 谈效果。。哎呀!

如果你跑 apache ,就上套了!
回复 支持 反对

举报

mischief
10#
 楼主| 发表于 2018-11-28 19:11:12 | 只看该作者
zc035 发表于 2018-11-28 19:04
抛开 软件环境 谈效果。。哎呀!

如果你跑 apache ,就上套了!

用的 nginx  给cerbot自动设置的.conf绕晕了
回复 支持 反对

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

Archiver|手机版|小黑屋|全球主机交流论坛

GMT+8, 2024-6-13 22:28 , Processed in 0.071145 second(s), 11 queries , Gzip On, MemCache On.

Powered by Discuz! X3.4

© 2001-2023 Discuz! Team.

快速回复 返回顶部 返回列表