Compare commits
1 Commits
Author | SHA1 | Date |
---|---|---|
Charles Reid | 7be5dad979 | 6 years ago |
12 changed files with 40 additions and 939 deletions
@ -1,6 +1,6 @@
@@ -1,6 +1,6 @@
|
||||
# https://serverfault.com/a/525011 |
||||
server { |
||||
server_name _; |
||||
listen *:80 default_server deferred; |
||||
return 444; |
||||
} |
||||
### # https://serverfault.com/a/525011 |
||||
### server { |
||||
### server_name _; |
||||
### listen *:80 default_server deferred; |
||||
### return 444; |
||||
### } |
||||
|
@ -1,46 +0,0 @@
@@ -1,46 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.blue |
||||
# http |
||||
# 80 |
||||
# |
||||
# basically, just redirects to https |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name charlesreid1.blue; |
||||
location / { |
||||
return 301 https://charlesreid1.blue$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name www.charlesreid1.blue; |
||||
location / { |
||||
return 301 https://www.charlesreid1.blue$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name git.charlesreid1.blue; |
||||
location / { |
||||
return 301 https://git.charlesreid1.blue$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name files.charlesreid1.blue; |
||||
location / { |
||||
return 301 https://files.charlesreid1.blue$request_uri; |
||||
} |
||||
} |
||||
|
@ -1,76 +0,0 @@
@@ -1,76 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.com |
||||
# http |
||||
# 80 |
||||
# |
||||
# basically, just redirects to https |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name charlesreid1.com; |
||||
location / { |
||||
return 301 https://charlesreid1.com$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name www.charlesreid1.com; |
||||
location / { |
||||
return 301 https://www.charlesreid1.com$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name git.charlesreid1.com; |
||||
location / { |
||||
return 301 https://git.charlesreid1.com$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name files.charlesreid1.com; |
||||
location / { |
||||
return 301 https://files.charlesreid1.com$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name pages.charlesreid1.com; |
||||
port_in_redirect off; |
||||
location / { |
||||
return 301 https://pages.charlesreid1.com$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name hooks.charlesreid1.com; |
||||
port_in_redirect off; |
||||
location / { |
||||
return 301 https://hooks.charlesreid1.com$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name bots.charlesreid1.com; |
||||
port_in_redirect off; |
||||
location / { |
||||
return 301 https://bots.charlesreid1.com$request_uri; |
||||
} |
||||
} |
||||
|
@ -1,46 +0,0 @@
@@ -1,46 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.red |
||||
# http |
||||
# 80 |
||||
# |
||||
# basically, just redirects to https |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name charlesreid1.red; |
||||
location / { |
||||
return 301 https://charlesreid1.red$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name www.charlesreid1.red; |
||||
location / { |
||||
return 301 https://www.charlesreid1.red$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name git.charlesreid1.red; |
||||
location / { |
||||
return 301 https://git.charlesreid1.red$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name files.charlesreid1.red; |
||||
location / { |
||||
return 301 https://files.charlesreid1.red$request_uri; |
||||
} |
||||
} |
||||
|
@ -1,165 +0,0 @@
@@ -1,165 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.blue |
||||
# https |
||||
# 443 |
||||
# |
||||
# charlesreid1.blue and www.charlesreid1.blue |
||||
# should handle the following cases: |
||||
# - w/ and wiki/ should reverse proxy story_mw |
||||
# - phpMyAdmin/ should reverse proxy stormy_myadmin |
||||
# |
||||
# git.charlesreid1.blue should handle: |
||||
# - all requests should reverse proxy stormy_gitea |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
# https://charlesreid1.blue |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name charlesreid1.blue; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/charlesreid1.blue/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/charlesreid1.blue/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
try_files $uri $uri/ =404; |
||||
root /www/charlesreid1.blue/htdocs; |
||||
index index.html; |
||||
} |
||||
|
||||
location /wiki/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki/; |
||||
} |
||||
|
||||
location /wiki { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki; |
||||
} |
||||
|
||||
location /w/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w/; |
||||
} |
||||
|
||||
location /w { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w; |
||||
} |
||||
|
||||
#location /phpMyAdmin/ { |
||||
# proxy_set_header X-Real-IP $remote_addr; |
||||
# proxy_set_header X-Forwarded-For $remote_addr; |
||||
# proxy_set_header Host $host; |
||||
# proxy_pass http://stormy_myadmin:80/; |
||||
#} |
||||
|
||||
# ~ means case-sensitive regex match, rather than string literal |
||||
# (ignores .git, .gitignore, etc.) |
||||
location ~ /\.git { |
||||
deny all; |
||||
} |
||||
} |
||||
|
||||
|
||||
server { |
||||
# https://www.charlesreid1.blue |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name www.charlesreid1.blue; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/www.charlesreid1.blue/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/www.charlesreid1.blue/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
try_files $uri $uri/ =404; |
||||
root /www/charlesreid1.blue/htdocs; |
||||
index index.html; |
||||
} |
||||
|
||||
location /wiki/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki/; |
||||
} |
||||
|
||||
location /w/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w/; |
||||
} |
||||
|
||||
location /phpMyAdmin/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_myadmin:80/; |
||||
} |
||||
|
||||
location ~ /\.git { |
||||
deny all; |
||||
} |
||||
} |
||||
|
||||
|
||||
server { |
||||
# https://git.charlesreid1.blue |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name git.charlesreid1.blue; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/git.charlesreid1.blue/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/git.charlesreid1.blue/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_gitea:3000/; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
# https://files.charlesreid1.blue |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name files.charlesreid1.blue; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/files.charlesreid1.blue/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/files.charlesreid1.blue/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_files:8081/; |
||||
} |
||||
} |
@ -1,76 +0,0 @@
@@ -1,76 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.blue subdomains |
||||
# redirecting to blackbeard: |
||||
# - pages |
||||
# - hooks |
||||
# - bots |
||||
# |
||||
# krash = 45.56.87.232 |
||||
# blackbeard = 54.191.178.27 |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name pages.charlesreid1.blue; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/pages.charlesreid1.blue/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/pages.charlesreid1.blue/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
# https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/ |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7777; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name hooks.charlesreid1.blue; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/hooks.charlesreid1.blue/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/hooks.charlesreid1.blue/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7778; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
# https://bots.charlesreid1.blue |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name bots.charlesreid1.blue; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/bots.charlesreid1.blue/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/bots.charlesreid1.blue/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7779; |
||||
} |
||||
} |
||||
|
||||
|
@ -1,151 +0,0 @@
@@ -1,151 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.com |
||||
# https |
||||
# 443 |
||||
# |
||||
# charlesreid1.com and www.charlesreid1.com |
||||
# should handle the following cases: |
||||
# - w/ and wiki/ should reverse proxy story_mw |
||||
# - phpMyAdmin/ should reverse proxy stormy_myadmin |
||||
# |
||||
# git.charlesreid1.com should handle: |
||||
# - all requests should reverse proxy stormy_gitea |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
# https://charlesreid1.com |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name charlesreid1.com default_server; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/charlesreid1.com/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/charlesreid1.com/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
try_files $uri $uri/ =404; |
||||
root /www/charlesreid1.com/htdocs; |
||||
index index.html; |
||||
} |
||||
|
||||
location /wiki/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki/; |
||||
} |
||||
|
||||
location /w/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w/; |
||||
} |
||||
|
||||
#location /phpMyAdmin/ { |
||||
# proxy_set_header X-Real-IP $remote_addr; |
||||
# proxy_set_header X-Forwarded-For $remote_addr; |
||||
# proxy_set_header Host $host; |
||||
# proxy_pass http://stormy_myadmin:80/; |
||||
#} |
||||
|
||||
# ~ means case-sensitive regex match, rather than string literal |
||||
# (ignores .git, .gitignore, etc.) |
||||
location ~ /\.git { |
||||
deny all; |
||||
} |
||||
} |
||||
|
||||
|
||||
server { |
||||
# https://www.charlesreid1.com |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name www.charlesreid1.com; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/www.charlesreid1.com/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/www.charlesreid1.com/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
try_files $uri $uri/ =404; |
||||
root /www/charlesreid1.com/htdocs; |
||||
index index.html; |
||||
} |
||||
|
||||
location /wiki/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki/; |
||||
} |
||||
|
||||
location /w/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w/; |
||||
} |
||||
|
||||
location /phpMyAdmin/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_myadmin:80/; |
||||
} |
||||
|
||||
location ~ /\.git { |
||||
deny all; |
||||
} |
||||
} |
||||
|
||||
|
||||
server { |
||||
# https://git.charlesreid1.com |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name git.charlesreid1.com; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/git.charlesreid1.com/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/git.charlesreid1.com/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_gitea:3000/; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
# https://files.charlesreid1.com |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name files.charlesreid1.com; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/files.charlesreid1.com/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/files.charlesreid1.com/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_files:8081/; |
||||
} |
||||
} |
@ -1,131 +0,0 @@
@@ -1,131 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.com subdomains |
||||
# redirecting to blackbeard: |
||||
# - pages |
||||
# - hooks |
||||
# - bots |
||||
# |
||||
# krash = 45.56.87.232 |
||||
# blackbeard = 54.191.178.27 |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name pages.charlesreid1.com; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/pages.charlesreid1.com/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/pages.charlesreid1.com/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
port_in_redirect off; |
||||
|
||||
location / { |
||||
# https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/ |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7777/; |
||||
proxy_redirect http://54.191.178.27:7777/ http://pages.charlesreid1.com/; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name hooks.charlesreid1.com; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/hooks.charlesreid1.com/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/hooks.charlesreid1.com/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
gzip on; |
||||
gzip_http_version 1.0; |
||||
gzip_proxied any; |
||||
gzip_min_length 500; |
||||
gzip_disable "MSIE [1-6]\."; |
||||
gzip_types text/plain text/xml text/css |
||||
text/comma-separated-values |
||||
text/javascript |
||||
application/x-javascript |
||||
application/atom+xml; |
||||
|
||||
location / { |
||||
# / takes user to static hooks subdomain page |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7778; |
||||
} |
||||
|
||||
location /webhook { |
||||
# /webhook* anything takes user to port 5000, api |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:5000/webhook; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
# https://bots.charlesreid1.com |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name bots.charlesreid1.com; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/bots.charlesreid1.com/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/bots.charlesreid1.com/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
port_in_redirect off; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7779; |
||||
proxy_redirect http://54.191.178.27:7779/ http://bots.charlesreid1.com/; |
||||
} |
||||
} |
||||
|
||||
#server { |
||||
# listen 443; |
||||
# listen [::]:443; |
||||
# server_name api.charlesreid1.com; |
||||
# |
||||
# ssl on; |
||||
# ssl_certificate /etc/letsencrypt/live/api.charlesreid1.com/fullchain.pem; |
||||
# ssl_certificate_key /etc/letsencrypt/live/api.charlesreid1.com/privkey.pem; |
||||
# include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
# |
||||
# client_max_body_size 100m; |
||||
# |
||||
# location / { |
||||
# # / takes user to static api subdomain page |
||||
# proxy_set_header X-Real-IP $remote_addr; |
||||
# proxy_set_header X-Forwarded-For $remote_addr; |
||||
# proxy_set_header Host $host; |
||||
# proxy_pass http://54.191.178.27:7780; |
||||
# } |
||||
# |
||||
# #location ~ ^/[a-zA-Z0-9].* { |
||||
# # # /anything else takes user to port 5000, api |
||||
# # proxy_set_header X-Real-IP $remote_addr; |
||||
# # proxy_set_header X-Forwarded-Host $host:$server_port; |
||||
# # proxy_set_header X-Forwarded-Server $host; |
||||
# # proxy_set_header X-Forwarded-For $remote_addr; |
||||
# # proxy_set_header Host $host; |
||||
# # proxy_pass http://54.191.178.27:5000; |
||||
# #} |
||||
# |
||||
#} |
||||
|
@ -1,165 +0,0 @@
@@ -1,165 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.red |
||||
# https |
||||
# 443 |
||||
# |
||||
# charlesreid1.red and www.charlesreid1.red |
||||
# should handle the following cases: |
||||
# - w/ and wiki/ should reverse proxy story_mw |
||||
# - phpMyAdmin/ should reverse proxy stormy_myadmin |
||||
# |
||||
# git.charlesreid1.red should handle: |
||||
# - all requests should reverse proxy stormy_gitea |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
# https://charlesreid1.red |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name charlesreid1.red; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/charlesreid1.red/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/charlesreid1.red/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
try_files $uri $uri/ =404; |
||||
root /www/charlesreid1.red/htdocs; |
||||
index index.html; |
||||
} |
||||
|
||||
location /wiki/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki/; |
||||
} |
||||
|
||||
location /wiki { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki; |
||||
} |
||||
|
||||
location /w/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w/; |
||||
} |
||||
|
||||
location /w { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w; |
||||
} |
||||
|
||||
#location /phpMyAdmin/ { |
||||
# proxy_set_header X-Real-IP $remote_addr; |
||||
# proxy_set_header X-Forwarded-For $remote_addr; |
||||
# proxy_set_header Host $host; |
||||
# proxy_pass http://stormy_myadmin:80/; |
||||
#} |
||||
|
||||
# ~ means case-sensitive regex match, rather than string literal |
||||
# (ignores .git, .gitignore, etc.) |
||||
location ~ /\.git { |
||||
deny all; |
||||
} |
||||
} |
||||
|
||||
|
||||
server { |
||||
# https://www.charlesreid1.red |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name www.charlesreid1.red; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/www.charlesreid1.red/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/www.charlesreid1.red/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
try_files $uri $uri/ =404; |
||||
root /www/charlesreid1.red/htdocs; |
||||
index index.html; |
||||
} |
||||
|
||||
location /wiki/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/wiki/; |
||||
} |
||||
|
||||
location /w/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_mw:8989/w/; |
||||
} |
||||
|
||||
location /phpMyAdmin/ { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_myadmin:80/; |
||||
} |
||||
|
||||
location ~ /\.git { |
||||
deny all; |
||||
} |
||||
} |
||||
|
||||
|
||||
server { |
||||
# https://git.charlesreid1.red |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name git.charlesreid1.red; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/git.charlesreid1.red/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/git.charlesreid1.red/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_gitea:3000/; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
# https://files.charlesreid1.red |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name files.charlesreid1.red; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/files.charlesreid1.red/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/files.charlesreid1.red/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://stormy_files:8081/; |
||||
} |
||||
} |
@ -1,76 +0,0 @@
@@ -1,76 +0,0 @@
|
||||
#################### |
||||
# |
||||
# charlesreid1.red subdomains |
||||
# redirecting to blackbeard: |
||||
# - pages |
||||
# - hooks |
||||
# - bots |
||||
# |
||||
# krash = 45.56.87.232 |
||||
# blackbeard = 54.191.178.27 |
||||
# |
||||
#################### |
||||
|
||||
server { |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name pages.charlesreid1.red; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/pages.charlesreid1.red/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/pages.charlesreid1.red/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
# https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/ |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7777; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name hooks.charlesreid1.red; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/hooks.charlesreid1.red/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/hooks.charlesreid1.red/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7778; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
# https://bots.charlesreid1.red |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name bots.charlesreid1.red; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/bots.charlesreid1.red/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/bots.charlesreid1.red/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://54.191.178.27:7779; |
||||
} |
||||
} |
||||
|
||||
|
@ -0,0 +1,31 @@
@@ -0,0 +1,31 @@
|
||||
# port 80 (http) redirects to port 443 (https) |
||||
|
||||
server { |
||||
listen 80; |
||||
listen [::]:80; |
||||
server_name search.nihdatacommons.us; |
||||
location / { |
||||
return 301 https://search.nihdatacommons.us$request_uri; |
||||
} |
||||
} |
||||
|
||||
server { |
||||
listen 443; |
||||
listen [::]:443; |
||||
server_name search.nihdatacommons.us; |
||||
|
||||
ssl on; |
||||
ssl_certificate /etc/letsencrypt/live/search.nihdatacommons.us-0001/fullchain.pem; |
||||
ssl_certificate_key /etc/letsencrypt/live/search.nihdatacommons.us-0001/privkey.pem; |
||||
include /etc/letsencrypt/options-ssl-nginx.conf; |
||||
|
||||
client_max_body_size 100m; |
||||
|
||||
location / { |
||||
proxy_set_header X-Real-IP $remote_addr; |
||||
proxy_set_header X-Forwarded-For $remote_addr; |
||||
proxy_set_header Host $host; |
||||
proxy_pass http://localhost:5000/; |
||||
} |
||||
} |
||||
|
Loading…
Reference in new issue