Provides the configuration file context in which the HTTP server directives are specified. =head2 if_modified_since B if_modified_since I< C E C E C> B I B I B I B I This directive appeared in version 0.7.24. Specifies how to compare modification time of a response with the time in the C request header field: =over =item C the C request header field is ignored (0.7.34); =item C exact match; =item C modification time of a response is less than or equal to the time in the C request header field. =back =head2 ignore_invalid_headers B ignore_invalid_headers I E C> B I B I B I Controls whether header fields with invalid names should be ignored. Valid names are composed of English letters, digits, hyphens, and possibly underscores (as controlled by the L directive). If the directive is specified on the L level, its value is only used if a server is a default one. The value specified also applies to all virtual servers listening on the same address and port. =head2 internal B I Specifies that a given location can only be used for internal requests. For external requests, the client error C<404> (C) is returned. Internal requests are the following: =over =item * requests redirected by the L, L, L, and L directives; =item * requests redirected by the C response header field from an upstream server; =item * subrequests formed by the “C” command of the L module and by the L module directives; =item * requests changed by the L directive. =back Example: error_page 404 /404.html; location /404.html { internal; } B There is a limit of 10 internal redirects per request to prevent request processing cycles that can occur in incorrect configurations. If this limit is reached, the error C<500> (C) is returned. In such cases, the “rewrite or internal redirection cycle” message can be seen in the error log. =head2 keepalive_disable B keepalive_disable I E I> ...> B I B I B I B I Disables keep-alive connections with misbehaving browsers. The I> parameters specify which browsers will be affected. The value C disables keep-alive connections with old versions of MSIE, once a POST request is received. The value C disables keep-alive connections with Safari and Safari-like browsers on Mac OS X and Mac OS X-like operating systems. The value C enables keep-alive connections with all browsers. B Prior to version 1.1.18, the value C matched all Safari and Safari-like browsers on all operating systems, and keep-alive connections with them were disabled by default. =head2 keepalive_requests B keepalive_requests I>> B I<100> B I B I B I This directive appeared in version 0.8.0. Sets the maximum number of requests that can be served through one keep-alive connection. After the maximum number of requests are made, the connection is closed. =head2 keepalive_timeout B keepalive_timeout I< I> [I>]> B I<75s> B I B I B I The first parameter sets a timeout during which a keep-alive client connection will stay open on the server side. The zero value disables keep-alive client connections. The optional second parameter sets a value in the C>> response header field. Two parameters may differ. The C>> header field is recognized by Mozilla and Konqueror. MSIE closes keep-alive connections by itself in about 60 seconds. =head2 large_client_header_buffers B large_client_header_buffers I> I>> B I<4 8k> B I B I Sets the maximum I> and I> of buffers used for reading large client request header. A request line cannot exceed the size of one buffer, or the C<414> (C) error is returned to the client. A request header field cannot exceed the size of one buffer as well, or the C<400> (C) error is returned to the client. Buffers are allocated only on demand. By default, the buffer size is equal to 8K bytes. If after the end of request processing a connection is transitioned into the keep-alive state, these buffers are released. =head2 limit_except B limit_except I> ... { B<...> } > B I Limits allowed HTTP methods inside a location. The I> parameter can be one of the following: C, C, C, C, C, C, C, C, C, C, C, C, C, or C. Allowing the C method makes the C method also allowed. Access to other methods can be limited using the L and L modules directives: limit_except GET { allow 192.168.1.0/32; deny all; } Please note that this will limit access to all methods I GET and HEAD. =head2 limit_rate B limit_rate I>> B I<0> B I B I B I B I Limits the rate of response transmission to a client. The I> is specified in bytes per second. The zero value disables rate limiting. The limit is set per a request, and so if a client simultaneously opens two connections, the overall rate will be twice as much as the specified limit. Rate limit can also be set in the C<$limit_rate> variable. It may be useful in cases where rate should be limited depending on a certain condition: server { if ($slow) { set $limit_rate 4k; } ... } Rate limit can also be set in the C header field of a proxied server response. This capability can be disabled using the L, L, L, and L directives. =head2 limit_rate_after B limit_rate_after I>> B I<0> B I B I B I B I This directive appeared in version 0.8.0. Sets the initial amount after which the further transmission of a response to a client will be rate limited. Example: location /flv/ { flv; limit_rate_after 500k; limit_rate 50k; } =head2 lingering_close B lingering_close I< C E C E C> B I B I B I B I This directive appeared in version 1.1.0. This directive appeared in version 1.0.6. Controls how nginx closes client connections. The default value “C” instructs nginx to wait for and process additional data from a client before fully closing a connection, but only if heuristics suggests that a client may be sending more data. The value “C” will cause nginx to unconditionally wait for and process additional client data. The value “C” tells nginx to never wait for more data and close the connection immediately. This behavior breaks the protocol and should not be used under normal circumstances. =head2 lingering_time B lingering_time I>> B I<30s> B I B I B I When L is in effect, this directive specifies the maximum time during which nginx will process (read and ignore) additional data coming from a client. After that, the connection will be closed, even if there will be more data. =head2 lingering_timeout B lingering_timeout I>> B I<5s> B I B I B I When L is in effect, this directive specifies the maximum waiting time for more client data to arrive. If data are not received during this time, the connection is closed. Otherwise, the data are read and ignored, and nginx starts waiting for more data again. The “wait-read-ignore” cycle is repeated, but no longer than specified by the L directive. =head2 listen B listen I< I>[:I>] [C] [C] [C E C] [C] [C=I>] [C=I>] [C=I>] [C=I>] [C=I>] [C=I>] [C] [C] [C=CEC] [C] [C=CECE[I>]:[I>]:[I>]]> B listen I< I> [C] [C] [C E C] [C] [C=I>] [C=I>] [C=I>] [C=I>] [C=I>] [C=I>] [C] [C] [C=CEC] [C] [C=CECE[I>]:[I>]:[I>]]> B listen I< CI> [C] [C] [C E C] [C] [C=I>] [C=I>] [C=I>] [C=I>] [C] [C] [C=CECE[I>]:[I>]:[I>]]> B I<*:80 E *:8000> B I Sets the I> and I> for IP, or the I> for a UNIX-domain socket on which the server will accept requests. Both I> and I>, or only I> or only I> can be specified. An I> may also be a hostname, for example: listen 127.0.0.1:8000; listen 127.0.0.1; listen 8000; listen *:8000; listen localhost:8000; IPv6 addresses (0.7.36) are specified in square brackets: listen [::]:8000; listen [::1]; UNIX-domain sockets (0.8.21) are specified with the “C” prefix: listen unix:/var/run/nginx.sock; If only I> is given, the port 80 is used. If the directive is not present then either C<*:80> is used if nginx runs with the superuser privileges, or C<*:8000> otherwise. The C parameter, if present, will cause the server to become the default server for the specified I>:I> pair. If none of the directives have the C parameter then the first server with the I>:I> pair will be the default server for this pair. B In versions prior to 0.8.21 this parameter is named simply C. The C parameter (0.7.14) allows specifying that all connections accepted on this port should work in SSL mode. This allows for a more compact L for the server that handles both HTTP and HTTPS requests. The C parameter (1.9.5) configures the port to accept L2|ngx_http_v2_module> connections. Normally, for this to work the C parameter should be specified as well, but nginx can also be configured to accept HTTPE2 connections without SSL. The C parameter (1.3.15-1.9.4) allows accepting L connections on this port. Normally, for this to work the C parameter should be specified as well, but nginx can also be configured to accept SPDY connections without SSL. The C parameter (1.5.12) allows specifying that all connections accepted on this port should use the L. The C directive can have several additional parameters specific to socket-related system calls. These parameters can be specified in any C directive, but only once for a given I>:I> pair. B In versions prior to 0.8.21, they could only be specified in the C directive together with the C parameter. =over =item C=I> this parameter (0.8.44) sets the associated routing table, FIB (the C option) for the listening socket. This currently works only on FreeBSD. =item C=I> enables “L” for the listening socket (1.5.8) and L the maximum length for the queue of connections that have not yet completed the three-way handshake. B Do not enable this feature unless the server can handle receiving the L more than once. =item C=I> sets the C parameter in the C call that limits the maximum length for the queue of pending connections. By default, C is set to -1 on FreeBSD, DragonFly BSD, and Mac OS X, and to 511 on other platforms. =item C=I> sets the receive buffer size (the C option) for the listening socket. =item C=I> sets the send buffer size (the C option) for the listening socket. =item C=I> sets the name of accept filter (the C option) for the listening socket that filters incoming connections before passing them to C. This works only on FreeBSD and NetBSD 5.0+. Possible values are L and L. =item C instructs to use a deferred C (the C socket option) on Linux. =item C instructs to make a separate C call for a given I>:I> pair. This is useful because if there are several C directives with the same port but different addresses, and one of the C directives listens on all addresses for the given port (C<*:>I>), nginx will C only to C<*:>I>. It should be noted that the C system call will be made in this case to determine the address that accepted the connection. If the C, C, C, C, C, C, C, or C parameters are used then for a given I>:I> pair a separate C call will always be made. =item C=CEC this parameter (0.7.42) determines (via the C socket option) whether an IPv6 socket listening on a wildcard address C<[::]> will accept only IPv6 connections or both IPv6 and IPv4 connections. This parameter is turned on by default. It can only be set once on start. B Prior to version 1.3.4, if this parameter was omitted then the operating system’s settings were in effect for the socket. =item C this parameter (1.9.1) instructs to create an individual listening socket for each worker process (using the C socket option), allowing a kernel to distribute incoming connections between worker processes. This currently works only on Linux 3.9+ and DragonFly BSD. B Inappropriate use of this option may have its security L. =item C=CECE[I>]:[I>]:[I>] this parameter (1.1.11) configures the “TCP keepalive” behavior for the listening socket. If this parameter is omitted then the operating system’s settings will be in effect for the socket. If it is set to the value “C”, the C option is turned on for the socket. If it is set to the value “C”, the C option is turned off for the socket. Some operating systems support setting of TCP keepalive parameters on a per-socket basis using the C, C, and C socket options. On such systems (currently, Linux 2.4+, NetBSD 5+, and FreeBSD 9.0-STABLE), they can be configured using the I>, I>, and I> parameters. One or two parameters may be omitted, in which case the system default setting for the corresponding socket option will be in effect. For example, so_keepalive=30m::10 will set the idle timeout (C) to 30 minutes, leave the probe interval (C) at its system default, and set the probes count (C) to 10 probes. =back Example: listen 127.0.0.1 default_server accept_filter=dataready backlog=1024; =head2 location B location I<[ C<=> E C<~> E C<~*> E C<^~> ] I directives describe all addresses and ports that should accept connections for the server, and the L directive lists all server names. Example configurations are provided in the “L” document. =head2 server_name B server_name I> ...> B I<""> B I Sets names of a virtual server, for example: server { server_name example.com www.example.com; } The first name becomes the primary server name. Server names can include an asterisk (“C<*>”) replacing the first or last part of a name: server { server_name example.com *.example.com www.example.*; } Such names are called wildcard names. The first two of the names mentioned above can be combined in one: server { server_name .example.com; } It is also possible to use regular expressions in server names, preceding the name with a tilde (“C<~>”): server { server_name www.example.com ~^www\d+\.example\.com$; } Regular expressions can contain captures (0.7.40) that can later be used in other directives: server { server_name ~^(www\.)?(.+)$; location / { root /sites/$2; } } server { server_name _; location / { root /sites/default; } } Named captures in regular expressions create variables (0.8.25) that can later be used in other directives: server { server_name ~^(www\.)?(?.+)$; location / { root /sites/$domain; } } server { server_name _; location / { root /sites/default; } } If the directive’s parameter is set to “C<$hostname>” (0.9.4), the machine’s hostname is inserted. It is also possible to specify an empty server name (0.7.11): server { server_name www.example.com ""; } It allows this server to process requests without the C header field — instead of the default server — for the given address:port pair. This is the default setting. B Before 0.8.48, the machine’s hostname was used by default. During searching for a virtual server by name, if the name matches more than one of the specified variants, (e.g. both a wildcard name and regular expression match), the first matching variant will be chosen, in the following order of priority: =over =item 1. the exact name =item 2. the longest wildcard name starting with an asterisk, e.g. “C<*.example.com>” =item 3. the longest wildcard name ending with an asterisk, e.g. “C” =item 4. the first matching regular expression (in order of appearance in the configuration file) =back Detailed description of server names is provided in a separate L document. =head2 server_name_in_redirect B server_name_in_redirect I E C> B I B I B I B I Enables or disables the use of the primary server name, specified by the L directive, in redirects issued by nginx. When the use of the primary server name is disabled, the name from the C request header field is used. If this field is not present, the IP address of the server is used. The use of a port in redirects is controlled by the L directive. =head2 server_names_hash_bucket_size B server_names_hash_bucket_size I>> B I<32E64E128> B I Sets the bucket size for the server names hash tables. The default value depends on the size of the processor’s cache line. The details of setting up hash tables are provided in a separate L. =head2 server_names_hash_max_size B server_names_hash_max_size I>> B I<512> B I Sets the maximum I> of the server names hash tables. The details of setting up hash tables are provided in a separate L. =head2 server_tokens B server_tokens I< C E C E I>> B I B I B I B