N00b - confused ssl

Joel Parker joel.parker.gm at gmail.com
Tue Apr 25 20:31:56 UTC 2017

I am reading this doc : https://www.nginx.com/blog/nginx-ssl/  and it shows
how to either terminate (de-crypt) ssl or how to receive un-encrypted
traffic over port 80 for example and encrypt it before sending to the
upstream servers.

>From the doc:

listen 443 *ssl*;

*** tells nginx to decrypt the incoming traffic

proxy_pass https://backends;

*** and https tells nginx to encrypt the traffic going to the upstream

so if I put both of these in one server block so that the incoming is
de-crypted and the outgoing is decrypted. Do I put both the server and
client certs in the same server block ?


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20170425/1ff5309f/attachment.html>

More information about the nginx mailing list