diff --git a/conf/includes/laundry.phares3757.redirectme.net.conf b/conf/includes/laundry.phares3757.redirectme.net.conf new file mode 100644 index 0000000..5063046 --- /dev/null +++ b/conf/includes/laundry.phares3757.redirectme.net.conf @@ -0,0 +1,40 @@ +[req] +default_bits = 2048 +default_keyfile = laundry.phares3757.redirectme.net.key +distinguished_name = req_distinguished_name +req_extensions = req_ext +x509_extensions = v3_ca + +[req_distinguished_name] +countryName = Country Name (2 letter code) +countryName_default = US +stateOrProvinceName = State or Province Name (full name) +stateOrProvinceName_default = Arizona +localityName = Locality Name (eg, city) +localityName_default = Anthem +organizationName = Organization Name (eg, company) +organizationName_default = Phares +organizationalUnitName = organizationalunit +organizationalUnitName_default = Development +commonName = Common Name (e.g. server FQDN or YOUR name) +commonName_default = laundry.phares3757.redirectme.net +commonName_max = 64 + +[req_ext] +subjectAltName = @alt_names + +[v3_ca] +subjectAltName = @alt_names + +[alt_names] +DNS.1 = laundry.phares3757.redirectme.net +DNS.2 = dashkiosk.laundry.phares3757.redirectme.net +DNS.3 = gogs.laundry.phares3757.redirectme.net +DNS.4 = nextcloud.laundry.phares3757.redirectme.net +DNS.5 = photoprism.laundry.phares3757.redirectme.net +DNS.6 = pi-hole.laundry.phares3757.redirectme.net +DNS.7 = syncthing.laundry.phares3757.redirectme.net +DNS.8 = beelink.server +DNS.9 = beelink +DNS.10 = localhost +DNS.11 = 127.0.0.1 \ No newline at end of file diff --git a/conf/nginx.conf b/conf/nginx.conf index 257981d..5938cba 100644 --- a/conf/nginx.conf +++ b/conf/nginx.conf @@ -1,60 +1,129 @@ -worker_processes 1; -events { - worker_connections 1024; -} -http { - include "includes/mime.types"; - default_type application/octet-stream; - sendfile on; - keepalive_timeout 65; - server { - listen 5050; - server_name localhost; - include "includes/html.conf"; - error_page 500 502 503 504 /50x.html; - include "includes/html-error.conf"; - } - server { - listen 4430; - server_name iscn5cg1325c0x.infineon.com; - include "includes/BaGet.conf"; - } - server { - listen 5051; - server_name localhost; - include "includes/www.conf"; - } - server { - listen 5052; - server_name localhost; - include "includes/json.conf"; - } - server { - listen 5053; - server_name localhost; - include "includes/ProgramData.conf"; - } - server { - listen 8080; - server_name ~(oi-metrology-viewer-archive).mes.infineon.com; - location / { - include "includes/Archive.conf"; - } - } - server { - listen 8080; - server_name ~(oi-metrology-viewer-prod).mes.infineon.com; - location / { - include "includes/Viewer.conf"; - } - } - server { - listen 8088; - server_name *.mes.infineon.com; - include "includes/EAF-Viewer.Server.conf"; +server { + listen 80 default_server; + listen [::]:80 default_server; + root /var/www/html; + index index.html index.htm index.nginx-debian.html; + server_name _; + location / { + try_files $uri $uri/ =404; } } -# mklink /J "C:\Users\phares\AppData\Local\IFXApps\nginx-1.20.1\conf" "L:\Git\NGINX-Conf\conf" -# cd "C:\Users\ECMESEAF\AppData\Local\IFXApps\nginx-1.20.1" -# .\nginx -t -# .\nginx -s reload +server { + ssl_certificate 'laundry.phares3757.redirectme.net.crt'; + ssl_certificate_key 'laundry.phares3757.redirectme.net.key'; + listen 443 ssl http2; + ssl_protocols TLSv1.2 TLSv1.1 TLSv1; + listen [::]:443 ssl http2; + server_name laundry.phares3757.redirectme.net; + location / { + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://localhost:80/; + proxy_read_timeout 600s; + proxy_send_timeout 600s; + } +} +server { + ssl_certificate 'laundry.phares3757.redirectme.net.crt'; + ssl_certificate_key 'laundry.phares3757.redirectme.net.key'; + listen 443 ssl http2; + ssl_protocols TLSv1.2 TLSv1.1 TLSv1; + listen [::]:443 ssl http2; + server_name dashkiosk.laundry.phares3757.redirectme.net; + location / { + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://localhost:9400/; + proxy_read_timeout 600s; + proxy_send_timeout 600s; + } +} +server { + ssl_certificate 'laundry.phares3757.redirectme.net.crt'; + ssl_certificate_key 'laundry.phares3757.redirectme.net.key'; + listen 443 ssl http2; + ssl_protocols TLSv1.2 TLSv1.1 TLSv1; + listen [::]:443 ssl http2; + server_name gogs.laundry.phares3757.redirectme.net; + location / { + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://localhost:3000/; + proxy_read_timeout 600s; + proxy_send_timeout 600s; + } +} +server { + ssl_certificate 'laundry.phares3757.redirectme.net.crt'; + ssl_certificate_key 'laundry.phares3757.redirectme.net.key'; + listen 443 ssl http2; + ssl_protocols TLSv1.2 TLSv1.1 TLSv1; + listen [::]:443 ssl http2; + server_name nextcloud.laundry.phares3757.redirectme.net; + location / { + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://localhost:8081/; + proxy_read_timeout 600s; + proxy_send_timeout 600s; + } +} +server { + ssl_certificate 'laundry.phares3757.redirectme.net.crt'; + ssl_certificate_key 'laundry.phares3757.redirectme.net.key'; + listen 443 ssl http2; + ssl_protocols TLSv1.2 TLSv1.1 TLSv1; + listen [::]:443 ssl http2; + server_name photoprism.laundry.phares3757.redirectme.net; + location / { + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://localhost:2342/; + proxy_read_timeout 600s; + proxy_send_timeout 600s; + } +} +server { + ssl_certificate 'laundry.phares3757.redirectme.net.crt'; + ssl_certificate_key 'laundry.phares3757.redirectme.net.key'; + listen 443 ssl http2; + ssl_protocols TLSv1.2 TLSv1.1 TLSv1; + listen [::]:443 ssl http2; + server_name ~(pi-hole).laundry.phares3757.redirectme.net; + location / { + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://localhost:8005/; + proxy_read_timeout 600s; + proxy_send_timeout 600s; + } +} +server { + ssl_certificate 'laundry.phares3757.redirectme.net.crt'; + ssl_certificate_key 'laundry.phares3757.redirectme.net.key'; + listen 443 ssl http2; + ssl_protocols TLSv1.2 TLSv1.1 TLSv1; + listen [::]:443 ssl http2; + server_name syncthing.laundry.phares3757.redirectme.net; + location / { + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://localhost:8384/; + proxy_read_timeout 600s; + proxy_send_timeout 600s; + } +} \ No newline at end of file