server {
listen 443 ssl; # 监听端口
server_name www.xxx.club; # 域名
# ssl on;
ssl_certificate /usr/local/nginx/conf/sm2/xxx.club.pem;
ssl_certificate_key /usr/local/nginx/conf/sm2/2_xxx.club.key;
#先配置签名证书,再配置加密证书,签名加密证书私钥key为同一个!
ssl_session_timeout 5m;
ssl_protocols TLSv1.1 TLSv1.2;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
ssl_prefer_server_ciphers on;
相似问题