1、准备步骤

1、首先下载ssl证书
2、确保443端口号开通
3、下载nginx

2、配置nginx

1、nginx下创建cert文件夹，将下载的ssl证书复制到cert文件夹下。
2、配置conf文件夹下的nginx.conf文件

#user  nobody;
worker_processes  1;

#error_log  logs/error.log;
#error_log  logs/error.log  notice;
#error_log  logs/error.log  info;

#pid        logs/nginx.pid;


events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;
    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    #                  '$status $body_bytes_sent "$http_referer" '
    #                  '"$http_user_agent" "$http_x_forwarded_for"';
    #access_log  logs/access.log  main;
    sendfile        on;
    #tcp_nopush     on;
    #keepalive_timeout  0;
    keepalive_timeout  65;
    #gzip  on;

    server {
        listen       80;
        server_name  你的域名;
        rewrite ^(.*)$ https://${server_name}$1 permanent;

        location / {
        proxy_pass  http://localhost:8111/;  #需要连接的后端端口号
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_set_header X-Forwarded-Port $server_port;
    }

        error_page   500 502 503 504  /50x.html;
        location = /50x.html {
            root   html;
        }
    }
   
    server {
        listen       443 ssl;
        server_name  你的域名;
    root html;
    index index.html index.htm;

        ssl_certificate      ../cert/下载的证书.pem;
        ssl_certificate_key  ../cert/下载的证书.key;

        ssl_session_timeout 5m;
    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_prefer_server_ciphers on;  

    location / {
        proxy_pass  http://localhost:8111/;   #需要连接的后端端口号
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_set_header X-Forwarded-Port $server_port;
    }
    }

}