Block direct IP visit
Typer | Posted on | |
# Step 1:
# create a new file under a certain path (e.g. /etc/conf.d/) as below:
server {
listen 80 default_server;
server_name _;
return 444;
}
server {
listen 443 ssl default_server;
server_name _;
ssl_certificate /etc/nginx/dummy.pem;
ssl_certificate_key /etc/nginx/dummy.key;
return 444;
}
#Step 2:
# generate dummy.pem dummy.key as below:
sudo openssl req -x509 -nodes -days 365 \
-newkey rsa:2048 \
-keyout /etc/nginx/dummy.key \
-out /etc/nginx/dummy.pem \
-subj "/CN=localhost"
#Step 3:
sudo nginx -t
sudo systemctl reload nginx