search

mitchellkrogza / nginx-ultimate-bad-bot-blocker

Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders
Other
3.81k stars 472 forks source link

[INSTALLATION] (add a descriptive title here) #474

Open freddiehdxd opened 2 years ago

freddiehdxd commented 2 years ago

Did you look through existing ISSUES ?

when adding include /etc/nginx/bots.d/ddos.conf; include /etc/nginx/bots.d/blockbots.conf;

Describe the problem you are experiencing

nginx doesn't start

Error Messages

image

image

Paste any log / error messages here (paste in between the markers)


## Copy of nginx.conf

If applicable please paste your nginx.conf file here
(paste in between the ```     ``` markers)

user clp; worker_processes auto; pid /run/nginx.pid; worker_rlimit_nofile 8192; include /etc/nginx/modules-enabled/*.conf;

events { worker_connections 2000;

multi_accept on;

}

http {

##
# Basic Settings
##

real_ip_recursive on;

set_real_ip_from 127.0.0.1;
set_real_ip_from 10.0.0.0/8;
set_real_ip_from 172.16.0.0/12;
set_real_ip_from 192.168.0.0/16;
set_real_ip_from 0.0.0.0/0;
real_ip_header X-Forwarded-For;

sendfile on;
tcp_nopush on;
tcp_nodelay on;

client_body_buffer_size  1K;
client_header_buffer_size 1k;
client_max_body_size 64M;
keepalive_timeout 65;
types_hash_max_size 2048;
server_tokens off;
port_in_redirect off;
access_log off;

map $scheme $fastcgi_https { ## Detect when HTTPS is used
  default off;
  https on;
}

include /etc/nginx/bots.d/ddos.conf;
include /etc/nginx/bots.d/blockbots.conf;

##
# Security Settings
##

add_header X-Frame-Options SAMEORIGIN;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";

##
# SSL Settings
##

ssl_protocols TLSv1.2 TLSv1.3;
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_session_timeout 10m;
ssl_ciphers EECDH+AESGCM:EDH+AESGCM;
ssl_prefer_server_ciphers on;
ssl_stapling on;
ssl_stapling_verify on;
ssl_dhparam /etc/nginx/ssl/dhparams.pem;

include /etc/nginx/mime.types;
default_type application/octet-stream;

##
# Logging Settings
##

access_log /var/log/nginx/access.log;
error_log /var/log/nginx/error.log;

##
# Gzip Settings
##

gzip                on;
gzip_disable        "msie6";
gzip_vary           on;
gzip_proxied        any;
gzip_comp_level     8;
gzip_buffers        16 8k;
gzip_http_version   1.1;
gzip_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript image/png image/gif image/jpeg application/javascript image/svg+xml;

##
# Brotli Settings
##

brotli on;
brotli_comp_level 8;
brotli_static on;
brotli_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript image/png image/gif image/jpeg application/javascript image/svg+xml;

##
# Virtual Host Configs
##

include /etc/nginx/sites-enabled/*.conf;

}


## Copy of vhost / website / host .conf file

If applicable please paste your site/vhost configuration file in between the code ticks
(paste in between the ```     ``` markers)

Paste site config here


## Screenshots

If applicable, add screenshots to help explain your problem.

## Server (please complete the following information):

 - Operating System: 

Debian

- Specify Exact Version of OS:

Post output of uname -a here image


 - Nginx Version [post output of sudo nginx -v]

Paste output of sudo nginx -V here (paste in between the ``` nginx version: nginx/1.18.0

mitchellkrogza commented 2 years ago

includes must be inside a server {} block