관리-도구

편집 파일: fleetshield.conf

#### main domain for fleetshield ## server { server_name fleetshield.biz www.fleetshield.biz mail.fleetshield.biz; listen 80; listen [::]:80; include conf.d/includes-optional/cloudflare.conf; set $CPANEL_APACHE_PROXY_PASS $scheme://apache_backend_${scheme}_209_188_21_21; # For includes: set $CPANEL_APACHE_PROXY_IP 209.188.21.21; set $CPANEL_APACHE_PROXY_SSL_IP 209.188.21.21; set $CPANEL_SERVICE_SUBDOMAIN 0; listen 443 ssl; listen [::]:443 ssl; http2 on; ssl_certificate /var/cpanel/ssl/apache_tls/fleetshield.biz/combined; ssl_certificate_key /var/cpanel/ssl/apache_tls/fleetshield.biz/combined; ssl_protocols TLSv1.2 TLSv1.3; proxy_ssl_protocols TLSv1.2 TLSv1.3; ssl_prefer_server_ciphers on; ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256; proxy_ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256; root "/home/fleetshield/public_html"; location /cpanelwebcall { include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass http://127.0.0.1:2082/cpanelwebcall; } location /Microsoft-Server-ActiveSync { include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass http://127.0.0.1:2090/Microsoft-Server-ActiveSync; } location = /favicon.ico { allow all; log_not_found off; access_log off; include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass $CPANEL_APACHE_PROXY_PASS; } location = /robots.txt { allow all; log_not_found off; access_log off; include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass $CPANEL_APACHE_PROXY_PASS; } location / { include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass $CPANEL_APACHE_PROXY_PASS; } include conf.d/server-includes/*.conf; include conf.d/users/fleetshield/*.conf; include conf.d/users/fleetshield/fleetshield.biz/*.conf; } server { listen 80; listen [::]:80; listen 443 ssl; listen [::]:443 ssl; http2 on; ssl_certificate /var/cpanel/ssl/apache_tls/fleetshield.biz/combined; ssl_certificate_key /var/cpanel/ssl/apache_tls/fleetshield.biz/combined; server_name cpanel.fleetshield.biz cpcalendars.fleetshield.biz cpcontacts.fleetshield.biz webdisk.fleetshield.biz webmail.fleetshield.biz; include conf.d/includes-optional/cloudflare.conf; set $CPANEL_APACHE_PROXY_PASS $scheme://apache_backend_${scheme}_209_188_21_21; # For includes: set $CPANEL_APACHE_PROXY_IP 209.188.21.21; set $CPANEL_APACHE_PROXY_SSL_IP 209.188.21.21; set $CPANEL_SERVICE_SUBDOMAIN 1; location /.well-known/cpanel-dcv { root "/home/fleetshield/public_html"; disable_symlinks if_not_owner; # pass to Apache include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass $CPANEL_APACHE_PROXY_PASS; } location /.well-known/pki-validation { root "/home/fleetshield/public_html"; disable_symlinks if_not_owner; # pass to Apache include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass $CPANEL_APACHE_PROXY_PASS; } location /.well-known/acme-challenge { root "/home/fleetshield/public_html"; disable_symlinks if_not_owner; # pass to Apache include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass $CPANEL_APACHE_PROXY_PASS; } location / { # Force https for service subdomains if ($scheme = http) { return 301 https://$host$request_uri; } # no cache proxy_cache off; proxy_no_cache 1; proxy_cache_bypass 1; # pass to Apache include conf.d/includes-optional/cpanel-proxy.conf; proxy_pass $CPANEL_APACHE_PROXY_PASS; } }