# steamcommunity 代理服务器地址
upstream steamcommunityServer {
server 23.32.241.160:443;
}
# github 代理服务器地址
upstream githubServer {
server 15.164.81.167:443;
}
# github 服务器代理设置
server {
listen 443 ssl;
server_name github.com;
server_name www.github.com;
ssl_certificate /ca/steamcommunity.crt;#下边签发的证书
ssl_certificate_key /ca/steamcommunity.key;
location / {
proxy_pass https://githubServer/;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real_IP $remote_addr;
proxy_set_header User-Agent $http_user_agent;
proxy_set_header Accept-Encoding '';
proxy_buffering off;
}
}
# steamcommunity 服务器代理设置
server {
listen 443 ssl;
server_name steamcommunity.com;
server_name www.steamcommunity.com;
ssl_certificate /ca/steamcommunity.crt;#下边签发的证书
ssl_certificate_key /ca/steamcommunity.key;
location / {
proxy_pass https://steamcommunityServer/;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real_IP $remote_addr;
proxy_set_header User-Agent $http_user_agent;
proxy_set_header Accept-Encoding '';
proxy_buffering off;
}
}
# asf 挂卡网站配置
server {
listen *:443 ssl;
server_name asf.pancake2021.work;
ssl_certificate /ca/asf.pem;
ssl_certificate_key /ca/asf.key;
location ~* /Api/NLog {
proxy_pass http://127.0.0.1:1242;
# 只需在您需要覆盖默认 Host 时启用
# proxy_set_header Host 127.0.0.1;
# 代理 ASF 请求时,应该始终指定 X- 前缀的 HTTP 头
# 这对正确鉴别源 IP 至关重要,使 ASF 能够封禁真正的攻击者而非您的 Nginx 服务器
# 指定这些头后,ASF 能正确解析发送请求用户的 IP 地址 - 使 Nginx 真正成为反向代理
# 如果不这样设置,ASF 会认为您的 Nginx 是客户端 - 此时 Nginx 只是一个普通的代理程序
# 如果您无法在同一台机器上同时运行 Nginx 与 ASF,则应该额外设置正确的 KnownNetworks
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Host $host:$server_port;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Real-IP $remote_addr;
# 我们添加了这 3 个额外的选项用于 WebSockets 代理,详见 https://nginx.org/en/docs/http/websocket.html
proxy_http_version 1.1;
proxy_set_header Connection "Upgrade";
proxy_set_header Upgrade $http_upgrade;
}
location / {
proxy_pass http://127.0.0.1:1242;
# 只需在您需要覆盖默认 Host 时启用
# proxy_set_header Host 127.0.0.1;
# 代理 ASF 请求时,应该始终指定 X- 前缀的 HTTP 头
# 这对正确鉴别源 IP 至关重要,使 ASF 能够封禁真正的攻击者而非您的 Nginx 服务器
# 指定这些头后,ASF 能正确解析发送请求用户的 IP 地址 - 使 Nginx 真正成为反向代理
# 如果不这样设置,ASF 会认为您的 Nginx 是客户端 - 此时 Nginx 只是一个普通的代理程序
# 如果您无法在同一台机器上同时运行 Nginx 与 ASF,则应该额外设置正确的 KnownNetworks
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Host $host:$server_port;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Real-IP $remote_addr;
}
}