Home / server / Questions / 1063640
In Process
George Y
Asked: 2021-05-16 04:11:06 +0800 CST

How to set nginx reverse proxy to an SSL site without certificate?

  • 772

There is a function using TCP pass through like this:

stream {
    upstream web_server {
        # the site to be visited is https://whatismyip.com, below is its real address
        server 104.27.194.88:443;
    }

    server {
        listen 443;
        ssl_preread on;
        proxy_pass web_server;
    }
}

reference

Therefore, if I type the public IP address of that nginx server after "https://" on my browser, given all the firewalls allowed, can I in fact reach the target site?

Actually what I got is whether to allow the ssl certificate from nginx server, then allowed, but got 403 forbidden by cloudflare.

If something went wrong, how to improve? Thanks.

proxy nginx reverse-proxy

1 Answers

  1. First you need to change in your hosts file (or your DNS if you have access to your DNS server configuration) and add an entry similar with:

    192.168.1.10 whatismyip.com

    Or for DNS:

    whatismyip.com IN A 192.168.1.10

    Where 192.168.1.10 is the IP where Nginx is listening. In the browser use https://whatismyip.com and don't connect with the IP.

    The config should use a hostname, because the whatismyip.com's IP address might change:

    stream {
    upstream web_server {
        server whatismyip.com:443;
    }

    server {
        listen 443;
        ssl_preread on;
        proxy_pass web_server;
    }
}
    • 3