Certbot SSL Certificates

Its important to encrypt your web traffic to keep you and anyone who passes information through your website secure. The below nginx configuration is verified to be working on Ubuntu 19.04 using certbot certificates to decrypt the traffic on default port 80, then passing it to a container hosted locally on a specific port.

events {}

http {
        include mime.types;

        server {
                server_name website.com www.website.com;
                server_tokens off;

                # SSL Settings
                listen 443 ssl;
                ssl_certificate /etc/letsencrypt/live/www.website.com/fullchain.pem;
                ssl_certificate_key /etc/letsencrypt/live/www.website.com/privkey.pem;
                include /etc/letsencrypt/options-ssl-nginx.conf;
                ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;

				# Passing the decrypted traffic to the container
                location / {
                        include proxy_params;
                        proxy_pass http://<CONTAINERIP>:<CONTAINERPORT>/;
                }

        }



        # SSL Redirect Server Configuration
        server {
                listen 80;
                server_tokens off;
                server_name website.com www.website.com;
                return 301 https://$host$request_uri;
        }
}