How to use NGINX as reverse proxy & add SSL?
This is an example of /etc/nginx/conf.d/mining-rig-monitor.conf
upstream mrm {
keepalive 32; # keepalive connections
server 127.0.0.1:4000; # mining rig monitor ip and port
}
# Required for websocket
map $http_upgrade $connection_upgrade {
default upgrade;
'' close;
}
server {
listen 443; # Listen on port 80 for IPv4 requests
server_name mrm.example.com; # replace mrm.example.com with your server domain name
ssl_certificate "/etc/pki/mrm.example.com/mrm.example.com.bundle.crt";
ssl_certificate_key "/etc/pki/mrm.example.com/mrm.example.com.key";
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 10m;
ssl_ciphers PROFILE=SYSTEM;
ssl_prefer_server_ciphers on;
access_log /var/log/nginx/mrm.access.log;
error_log /var/log/nginx/mrm.error.log;
location / {
sendfile off;
proxy_pass http://mrm;
proxy_redirect default;
proxy_http_version 1.1;
# Required for websocket agents
proxy_set_header Connection $connection_upgrade;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Host $http_host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_max_temp_file_size 0;
#this is the maximum upload size
client_max_body_size 10m;
client_body_buffer_size 128k;
proxy_connect_timeout 90;
proxy_send_timeout 90;
proxy_read_timeout 90;
proxy_request_buffering off; # Required for HTTP CLI commands
}
}
To verify nginx config:
nginx -t
To reload nginx:
nginx -s reload