linlux 部署Dify + Nginx(部署SSL协议)配置文件设置
- 工作日记
- 2025-05-14
- 42热度
- 0评论
Nginx配置文件设置
# 强制 HTTP 重定向到 HTTPS
server {
server_name dify.cloudfood.cn;
location / {
proxy_pass http://127.0.0.1:8080;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
#增加响应时常(dify反应过慢,nginx会自动中断)
proxy_connect_timeout 300;
proxy_send_timeout 300;
proxy_read_timeout 300;
send_timeout 300;
}
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/dify.cloudfood.cn/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/dify.cloudfood.cn/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}
server {
if ($host = dify.cloudfood.cn) {
return 301 https://$host$request_uri;
} # managed by Certbot
listen 80;
server_name dify.cloudfood.cn;
return 404; # managed by Certbot
}其他相关命令
启动nginx
sudo systemctl enable nginx.service
重启nginx
sudo systemctl restart nginx
检查nginx状态
sudo systemctl status nginx.service
创建文件
sudo nano /etc/nginx/conf.d/dify.cloudfood.cn.conf
vim 显示/编辑
申请ssl证书 自动配置 Nginx
certbot --nginx -d dify.cloudfood.cn
查看SSL证书
certbot certificates
西部数码打开80端口或者/443端口---不然SSL不起作用
iptables -I INPUT -p tcp --dport 80 -j ACCEPT
service iptables save