nginx配置ssl证书

worker_processes 1; # 进程数量

events {
  worker_connections 1024; # 最大连接数量
}

http {
  include mime.types;
  default_type application/octet-stream;
  sendfile on;
  keepalive_timeout 65;

  server {
   # 配置监听80端口，通过ip访问可以变为https访问
    listen 80; 
    listen 443 ssl;
    server_name yuming.com
    ssl on;

    root html;
    index index.html index.htm;

    # 配置证书和私钥存放的路径
    ssl_certificate /etc/nginx/cert/yuming.com.pem;
    ssl_certificate_key /etc/nginx/cert/yuming.com.key;

    # ssl的协议，超时时间等配置
    ssl_session_timeout 5m;
    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_prefer_server_ciphers on;

    # location配置
    location / {
      root html;
      index index.html index.htm;
    }
  }
}