Nginx Config Generator
Build a production-ready nginx.conf server block. Pick a server type, toggle SSL, security headers, compression, and rate limiting — everything runs in your browser.
Generated nginx.conf
# Main server block — static-spa
server {
listen 80;
listen [::]:80;
server_name example.com;
# Security headers
add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-Content-Type-Options "nosniff" always;
add_header Referrer-Policy "strict-origin-when-cross-origin" always;
add_header Permissions-Policy "geolocation=(), microphone=(), camera=()" always;
# Gzip compression
gzip on;
gzip_vary on;
gzip_comp_level 6;
gzip_min_length 1024;
gzip_proxied any;
gzip_types text/plain text/css text/javascript application/javascript application/json application/xml application/xml+rss image/svg+xml font/woff font/woff2;
root /var/www/spa;
index index.html;
# SPA fallback
location / {
try_files $uri /index.html;
}
# Cache static assets
location ~* \.(?:css|js|woff2?|ttf|eot|svg|png|jpg|jpeg|gif|webp|ico)$ {
expires 1y;
add_header Cache-Control "public, immutable";
}
# Logging
access_log /var/log/nginx/example.com.access.log;
error_log /var/log/nginx/example.com.error.log;
}
About the Nginx Config Builder
Nginx configuration syntax is powerful but dense — server blocks, location blocks, upstream definitions, SSL directives, and proxy headers all interact in non-obvious ways. A misconfigured Nginx can silently serve wrong content, break WebSocket connections, or expose security vulnerabilities. This builder generates correct, production-ready Nginx configurations for common use cases through a visual interface.
What this tool generates
Reverse Proxy
Proxy configuration for Node.js, Python, Java, and other application servers with correct proxy headers (X-Real-IP, X-Forwarded-For).
SSL/TLS
HTTPS configuration with modern cipher suites, HSTS headers, and HTTP-to-HTTPS redirect. Compatible with Let's Encrypt certificates.
Static File Serving
Optimized static file configuration with gzip compression, cache headers, and correct MIME types for SPAs and static sites.
Load Balancing
Upstream block with multiple backends and load balancing strategies: round-robin, least connections, and IP hash.
Pipeline
- Docker Compose Builder — add Nginx as a service in your Compose stack.
- CSP Builder — generate the Content-Security-Policy header to add to your Nginx config.
- HTTP Codes — reference status codes for Nginx error_page directives.
Frequently asked
- Is my Nginx config data sent to a server?
- No. All config generation runs 100% in your browser. Your domain names, SSL settings, and proxy configuration never leave your device.
- What is Nginx used for?
- Nginx is a high-performance web server and reverse proxy. Common uses: serving static files, reverse proxying to application servers (Node.js, Python, Java), SSL/TLS termination, load balancing across multiple backends, and HTTP caching.
- What is the difference between a reverse proxy and a forward proxy?
- A reverse proxy sits in front of your servers and forwards client requests to them — clients talk to the proxy, not the server directly. A forward proxy sits in front of clients and forwards their requests to the internet — used for caching, filtering, and anonymization.
- What is SSL termination?
- SSL termination means the reverse proxy (Nginx) handles the HTTPS encryption/decryption, and communicates with the backend over plain HTTP on the internal network. This offloads the SSL overhead from application servers and centralizes certificate management.
- What is the difference between "proxy_pass" and "alias" in Nginx?
- "proxy_pass" forwards requests to an upstream server (another HTTP server or application). "alias" serves files from a local directory, replacing the location prefix with the alias path. Use proxy_pass for application backends; use alias for serving static files from a non-root path.