Nginx 配置禁止IP与非本站域名访问

    server {
        listen       80 default_server;
        return 301 https://$host$request_uri;
    } 
    #deny lts 非法解析拒绝lts握手
    server {
        listen       443 default_server;
        server_name  _;
        include web/ssl.conf;
        ssl_reject_handshake on;
    }
    include       web/archs.conf;

默认跳转443 https访问，default_server,_匹配未指定的域名,ssl_reject_handshake on阻断ssl握手防止ssl证书信息暴露域名