server { listen 2095; server_name localhost; # Disabled forced ssl, uncomment if you want to force ssl #if ($host != "localhost"){ # return 301 https://$host:2096$request_uri; #} location / { root /usr/local/cwpsrv/var/services/roundcube; index index.html index.htm index.php; location ~ \.php$ { try_files $uri =404; fastcgi_split_path_info ^(.+\.php)(/.+)$; fastcgi_read_timeout 600; fastcgi_pass unix:/usr/local/cwp/php71/var/sockets/cwpsvc.sock; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_param SCRIPT_NAME $fastcgi_script_name; fastcgi_param PHP_ADMIN_VALUE "open_basedir = /usr/local/cwpsrv/var/services/roundcube/:/tmp/:/usr/local/cwp/php71/lib/"; include fastcgi_params; } } } server { listen 2096 ssl; server_name localhost; ssl_session_timeout 90m; ssl_certificate /etc/pki/tls/certs/hostname.bundle; ssl_certificate_key /etc/pki/tls/private/hostname.key; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on; location / { root /usr/local/cwpsrv/var/services/roundcube; index index.html index.htm index.php; location ~ \.php$ { try_files $uri =404; fastcgi_split_path_info ^(.+\.php)(/.+)$; fastcgi_read_timeout 600; fastcgi_pass unix:/usr/local/cwp/php71/var/sockets/cwpsvc.sock; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_param SCRIPT_NAME $fastcgi_script_name; fastcgi_param PHP_ADMIN_VALUE "open_basedir = /usr/local/cwpsrv/var/services/roundcube/:/tmp/:/usr/local/cwp/php71/lib/"; include fastcgi_params; } } }