server-configs-nginx/nginx/nginx.conf

# Set another default user than root for security reasons
user       www www;

# As a thumb rule: One per CPU. If you are serving a large amount
# of static files, which requires blocking disk reads, you may want
# to increase this from the number of cpu_cores available on your
# system.
#
# The maximum number of connections for Nginx is calculated by:
# max_clients = worker_processes * worker_connections
worker_processes 1;

# Maximum file descriptors that can be opened per process
# This should be > worker_connections
worker_rlimit_nofile 8192;

events {
  # When you need > 8000 * cpu_cores connections, you start optimizing
  # your OS, and this is probably the point at where you hire people
  # who are smarter than you, this is *a lot* of requests.
  worker_connections  8000;
}

# Change these paths to somewhere that suits you!
error_log  logs/error.log;
pid        logs/nginx.pid;

http {
  # Set the mime-types via the mime.types external file
  include       mime.types;

  # And the fallback mime-type
  default_type  application/octet-stream;

  # Format for our log files
  log_format   main '$remote_addr - $remote_user [$time_local]  $status '
    '"$request" $body_bytes_sent "$http_referer" '
    '"$http_user_agent" "$http_x_forwarded_for"';

  # Click tracking!
  access_log   logs/access.log  main;

  # ~2 seconds is often enough for HTML/CSS, but connections in
  # Nginx are cheap, so generally it's safe to increase it
  keepalive_timeout 20;

  # You usually want to serve static files with Nginx
  sendfile on;

  tcp_nopush on; # off may be better for Comet/long-poll stuff
  tcp_nodelay off; # on may be better for Comet/long-poll stuff

  # Enable Gzip:
  gzip on;
  gzip_http_version 1.0;
  gzip_comp_level 5;
  gzip_min_length 512;
  gzip_buffers 4 8k;
  gzip_proxied any;
  gzip_types
    # text/html is always compressed by HttpGzipModule
    text/css
    text/javascript
    text/xml
    text/plain
    text/x-component
    application/javascript
    application/x-javascript
    application/json
    application/xml
    application/rss+xml
    font/truetype
    font/opentype
    application/vnd.ms-fontobject
    image/svg+xml;

  # This should be turned on if you are going to have pre-compressed copies (.gz) of
  # static files available. If not it should be left off as it will cause extra I/O
  # for the check. It would be better to enable this in a location {} block for
  # a specific directory:
  # gzip_static on;

  gzip_disable        "MSIE [1-6]\.";
  gzip_vary           on;

  server {
    # listen 80 default_server deferred; # for Linux
    # listen 80 default_server accept_filter=httpready; # for FreeBSD
    listen 80 default_server;

    # e.g. "localhost" to accept all connections, or "www.example.com"
    # to handle the requests for "example.com" (and www.example.com)
    # server_name www.example.com;

    # Path for static files
    root /sites/example.com/public;

    #Specify a charset
    charset utf-8;

    # Custom 404 page
    error_page 404 /404.html;

    # No default expire rule. This config mirrors that of apache as outlined in the
    # html5-boilerplate .htaccess file. However, nginx applies rules by location, the apache rules
    # are defined by type. A concequence of this difference is that if you use no file extension in
    # the url and serve html, with apache you get an expire time of 0s, with nginx you'd get an
    # expire header of one month in the future (if the default expire rule is 1 month).
    # Therefore, do not use a default expire rule with nginx unless your site is completely static

    # cache.appcache, your document html and data
    location ~* \.(?:manifest|appcache|html|xml|json)$ {
      expires -1;
      access_log logs/static.log;
    }

    # Feed
    location ~* \.(?:rss|atom)$ {
      expires 1h;
      add_header Cache-Control "public";
    }

    # Favicon
    location ~* \.ico$ {
      expires 1w;
      access_log off;
      add_header Cache-Control "public";
    }

    # Media: images, video, audio, HTC, WebFonts
    location ~* \.(?:jpg|jpeg|gif|png|ico|gz|svg|svgz|ttf|otf|woff|eot|mp4|ogg|ogv|webm)$ {
      expires 1M;
      access_log off;
      add_header Cache-Control "public";
    }

    # CSS and Javascript
    location ~* \.(?:css|js)$ {
      expires 1y;
      access_log off;
      add_header Cache-Control "public";
    }

    # opt-in to the future
    add_header "X-UA-Compatible" "IE=Edge,chrome=1";

  }
}
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00			`# Set another default user than root for security reasons`
			`user www www;`

			`# As a thumb rule: One per CPU. If you are serving a large amount`
			`# of static files, which requires blocking disk reads, you may want`
			`# to increase this from the number of cpu_cores available on your`
			`# system.`
			`#`
			`# The maximum number of connections for Nginx is calculated by:`
			`# max_clients = worker_processes * worker_connections`
			`worker_processes 1;`

			`# Maximum file descriptors that can be opened per process`
			`# This should be > worker_connections`
			`worker_rlimit_nofile 8192;`

			`events {`
			`# When you need > 8000 * cpu_cores connections, you start optimizing`
			`# your OS, and this is probably the point at where you hire people`
			`# who are smarter than you, this is a lot of requests.`
			`worker_connections 8000;`
			`}`

			`# Change these paths to somewhere that suits you!`
			`error_log logs/error.log;`
			`pid logs/nginx.pid;`

			`http {`
			`# Set the mime-types via the mime.types external file`
move all server configs into folders easier to organise. We could also possibly then simply add a README file toeach folder rather than use wiki pages - maybe. 2012-02-04 10:45:24 +01:00			`include mime.types;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00
			`# And the fallback mime-type`
			`default_type application/octet-stream;`

			`# Format for our log files`
			`log_format main '$remote_addr - $remote_user [$time_local] $status '`
			`'"$request" $body_bytes_sent "$http_referer" '`
			`'"$http_user_agent" "$http_x_forwarded_for"';`

			`# Click tracking!`
			`access_log logs/access.log main;`

			`# ~2 seconds is often enough for HTML/CSS, but connections in`
			`# Nginx are cheap, so generally it's safe to increase it`
nginx.conf Improvements/Corrections Don't think it makes sense to turn this off for a single worker and it's on by default. The docs indicate that Nginx will use the best method based on the available methods Keepalive of 5 seems very low - i've seen recommendations of 10-20 gzip_proxied was set twice gzip_static should be off unless actually used default is deprecated server_name _; shouldn't be used Shoudn't use expires in the server {} block - should be inside location {} Extra root lines not needed gzip_comp_level seems too low gzip_min_length seems too high 2011-07-07 02:11:50 +02:00			`keepalive_timeout 20;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00
			`# You usually want to serve static files with Nginx`
			`sendfile on;`

			`tcp_nopush on; # off may be better for Comet/long-poll stuff`
			`tcp_nodelay off; # on may be better for Comet/long-poll stuff`

nginx.conf Improvements/Corrections Don't think it makes sense to turn this off for a single worker and it's on by default. The docs indicate that Nginx will use the best method based on the available methods Keepalive of 5 seems very low - i've seen recommendations of 10-20 gzip_proxied was set twice gzip_static should be off unless actually used default is deprecated server_name _; shouldn't be used Shoudn't use expires in the server {} block - should be inside location {} Extra root lines not needed gzip_comp_level seems too low gzip_min_length seems too high 2011-07-07 02:11:50 +02:00			`# Enable Gzip:`
			`gzip on;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00			`gzip_http_version 1.0;`
nginx.conf Improvements/Corrections Don't think it makes sense to turn this off for a single worker and it's on by default. The docs indicate that Nginx will use the best method based on the available methods Keepalive of 5 seems very low - i've seen recommendations of 10-20 gzip_proxied was set twice gzip_static should be off unless actually used default is deprecated server_name _; shouldn't be used Shoudn't use expires in the server {} block - should be inside location {} Extra root lines not needed gzip_comp_level seems too low gzip_min_length seems too high 2011-07-07 02:11:50 +02:00			`gzip_comp_level 5;`
			`gzip_min_length 512;`
			`gzip_buffers 4 8k;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00			`gzip_proxied any;`
Add to and fix typo in MIME types to be gzipped: Add text/x-component. It's listed in html5-boilerplate/.htaccess and is in our nginx-mime.types Fix application/xml+rss, should be application/rss+xml Comment indicating text/html is always compressed, so there's no need to include it 2011-02-02 00:21:18 +01:00			`gzip_types`
			`# text/html is always compressed by HttpGzipModule`
			`text/css`
			`text/javascript`
			`text/xml`
			`text/plain`
			`text/x-component`
			`application/javascript`
We also need application/x-javascript for google chrome 2011-08-05 15:52:04 +02:00			`application/x-javascript`
Add to and fix typo in MIME types to be gzipped: Add text/x-component. It's listed in html5-boilerplate/.htaccess and is in our nginx-mime.types Fix application/xml+rss, should be application/rss+xml Comment indicating text/html is always compressed, so there's no need to include it 2011-02-02 00:21:18 +01:00			`application/json`
			`application/xml`
			`application/rss+xml`
			`font/truetype`
			`font/opentype`
			`application/vnd.ms-fontobject`
			`image/svg+xml;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00
nginx.conf Improvements/Corrections Don't think it makes sense to turn this off for a single worker and it's on by default. The docs indicate that Nginx will use the best method based on the available methods Keepalive of 5 seems very low - i've seen recommendations of 10-20 gzip_proxied was set twice gzip_static should be off unless actually used default is deprecated server_name _; shouldn't be used Shoudn't use expires in the server {} block - should be inside location {} Extra root lines not needed gzip_comp_level seems too low gzip_min_length seems too high 2011-07-07 02:11:50 +02:00			`# This should be turned on if you are going to have pre-compressed copies (.gz) of`
			`# static files available. If not it should be left off as it will cause extra I/O`
			`# for the check. It would be better to enable this in a location {} block for`
			`# a specific directory:`
			`# gzip_static on;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00
			`gzip_disable "MSIE [1-6]\.";`
			`gzip_vary on;`

			`server {`
nginx.conf Improvements/Corrections Don't think it makes sense to turn this off for a single worker and it's on by default. The docs indicate that Nginx will use the best method based on the available methods Keepalive of 5 seems very low - i've seen recommendations of 10-20 gzip_proxied was set twice gzip_static should be off unless actually used default is deprecated server_name _; shouldn't be used Shoudn't use expires in the server {} block - should be inside location {} Extra root lines not needed gzip_comp_level seems too low gzip_min_length seems too high 2011-07-07 02:11:50 +02:00			`# listen 80 default_server deferred; # for Linux`
			`# listen 80 default_server accept_filter=httpready; # for FreeBSD`
			`listen 80 default_server;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00
			`# e.g. "localhost" to accept all connections, or "www.example.com"`
			`# to handle the requests for "example.com" (and www.example.com)`
nginx.conf Improvements/Corrections Don't think it makes sense to turn this off for a single worker and it's on by default. The docs indicate that Nginx will use the best method based on the available methods Keepalive of 5 seems very low - i've seen recommendations of 10-20 gzip_proxied was set twice gzip_static should be off unless actually used default is deprecated server_name _; shouldn't be used Shoudn't use expires in the server {} block - should be inside location {} Extra root lines not needed gzip_comp_level seems too low gzip_min_length seems too high 2011-07-07 02:11:50 +02:00			`# server_name www.example.com;`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00
			`# Path for static files`
			`root /sites/example.com/public;`

Specify a charset. 2011-11-22 13:45:33 +01:00			`#Specify a charset`
			`charset utf-8;`

specify 404 page 2011-04-13 22:23:10 +02:00			`# Custom 404 page`
			`error_page 404 /404.html;`

add expire rules mimicking that of the apache config These rules are closer to the expire logic defined for apache, and also use a none-capturing regex which will be (unnoticably) faster. Added a comment as to why there is no default expire header defined. 2012-01-30 18:19:22 +01:00			`# No default expire rule. This config mirrors that of apache as outlined in the`
			`# html5-boilerplate .htaccess file. However, nginx applies rules by location, the apache rules`
			`# are defined by type. A concequence of this difference is that if you use no file extension in`
			`# the url and serve html, with apache you get an expire time of 0s, with nginx you'd get an`
			`# expire header of one month in the future (if the default expire rule is 1 month).`
			`# Therefore, do not use a default expire rule with nginx unless your site is completely static`

			`# cache.appcache, your document html and data`
			`location ~* \.(?:manifest\|appcache\|html\|xml\|json)$ {`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00			`expires -1;`
			`access_log logs/static.log;`
			`}`

add expire rules mimicking that of the apache config These rules are closer to the expire logic defined for apache, and also use a none-capturing regex which will be (unnoticably) faster. Added a comment as to why there is no default expire header defined. 2012-01-30 18:19:22 +01:00			`# Feed`
			`location ~* \.(?:rss\|atom)$ {`
			`expires 1h;`
			`add_header Cache-Control "public";`
			`}`

			`# Favicon`
			`location ~* \.ico$ {`
			`expires 1w;`
			`access_log off;`
			`add_header Cache-Control "public";`
			`}`

			`# Media: images, video, audio, HTC, WebFonts`
			`location ~* \.(?:jpg\|jpeg\|gif\|png\|ico\|gz\|svg\|svgz\|ttf\|otf\|woff\|eot\|mp4\|ogg\|ogv\|webm)$ {`
			`expires 1M;`
			`access_log off;`
			`add_header Cache-Control "public";`
			`}`
do not set a default expire Unless your entire site is static it's inappropriate to do so - dynamic requests will be cached by the browser unless your application code overrides the expires which nginx is setting by default. 2012-01-27 15:18:18 +01:00
add expire rules mimicking that of the apache config These rules are closer to the expire logic defined for apache, and also use a none-capturing regex which will be (unnoticably) faster. Added a comment as to why there is no default expire header defined. 2012-01-30 18:19:22 +01:00			`# CSS and Javascript`
			`location ~* \.(?:css\|js)$ {`
whoops - 1Y is not valid one year is 1y 2012-02-05 01:39:24 +01:00			`expires 1y;`
Remove access logging for static files to save disk writes. 2011-02-04 11:05:54 +01:00			`access_log off;`
add expire rules mimicking that of the apache config These rules are closer to the expire logic defined for apache, and also use a none-capturing regex which will be (unnoticably) faster. Added a comment as to why there is no default expire header defined. 2012-01-30 18:19:22 +01:00			`add_header Cache-Control "public";`
whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00			`}`
X-UA-Compatible for nginx. thanks mucho joshgillies 2011-01-31 19:35:18 +01:00
			`# opt-in to the future`
			`add_header "X-UA-Compatible" "IE=Edge,chrome=1";`

whats up, sweetass configurations? boom boom. 2010-12-15 06:12:17 +01:00			`}`
			`}`