server {
listen 80;
server_name your-domain.com; # 替换为您的域名
return 301 https://$host$request_uri; # 强制跳转到HTTPS}
server {
listen 443 ssl;
server_name your-domain.com; # 替换为您的域名
# SSL证书配置,根据实际路径修改
ssl_certificate /etc/letsencrypt/live/your-domain.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/your-domain.com/privkey.pem;
# SSL优化参数
ssl_protocols TLSv1.2 TLSv1.3;
ssl_prefer_server_ciphers on;
ssl_ciphers EECDH+CHACHA20:EECDH+AESGCM:EDH+AESGCM;
# 根路径重定向
location = / {
return 302 /rssant/;
}
# 处理/rssant/路径下的请求
location /rssant/ {
# 移除路径前缀后代理到后端
rewrite ^/rssant/(.*) /$1 break;
proxy_pass https://rss.anyant.com;
# 设置代理头
proxy_set_header Host "rss.anyant.com";
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
# 修正后端重定向响应中的Location头
proxy_redirect https://rss.anyant.com/ /rssant/;
}
# 可选:处理其他路径或静态文件
location / {
return 404; # 或自定义处理
}
# 启用gzip压缩
gzip on;
gzip_types text/plain text/css application/json application/javascript;}