📅 February 02, 2026
10 min de lecture
DevOps / Infrastructure

How to Set Up Nginx as a Reverse Proxy

A guide to configuring Nginx as a reverse proxy, explaining installation, server │ block setup, proxying requests to backend servers, header management, and │ optional SSL/TLS configuration for enhanced security and performance.

Intermediate

Nginx is a powerful web server that can also function effectively as a reverse proxy. Setting it up as a reverse proxy allows it to sit in front of your application servers, handling incoming client requests and forwarding them to the appropriate backend servers. This setup can improve performance, security, and scalability.

Benefits of Using Nginx as a Reverse Proxy

  • Load Balancing: Distribute incoming traffic across multiple backend servers.
  • Improved Security: Hide the internal network structure and backend servers from direct client access.
  • SSL/TLS Termination: Handle HTTPS encryption and decryption, offloading this task from backend applications.
  • Caching: Cache static and dynamic content to reduce server load and improve response times.
  • Compression: Compress responses to speed up delivery.
  • Serving Static Content: Efficiently serve static files directly, without burdening application servers.

1. Install Nginx

If Nginx is not already installed on your server, you can install it using your distribution's package manager.

  • For Ubuntu/Debian: bash sudo apt update sudo apt install nginx
  • For CentOS/RHEL/Fedora: bash sudo dnf install nginx # or yum for older versions

After installation, start the Nginx service and enable it to start on boot:

sudo systemctl start nginx
sudo systemctl enable nginx

You can verify that Nginx is running by navigating to http://localhost in your web browser.

2. Locate Nginx Configuration Files

Nginx configuration files are typically found in /etc/nginx/. The main configuration file is usually nginx.conf. You'll often find a sites-available directory containing individual site configurations, which are then symlinked to sites-enabled to activate them.

3. Configure the Server Block

You'll need to create or modify a server block within your Nginx configuration. This block defines how Nginx handles requests for a specific domain or IP address.

A basic server block for a reverse proxy looks like this:

server {
    listen 80; # Nginx listens on port 80 for incoming HTTP requests
    server_name your_domain.com www.your_domain.com; # Replace with your domain name

    location / {
        proxy_pass http://backend_server_ip:port; # Forward requests to your backend server
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

Explanation of directives:

  • listen 80;: Nginx will listen for incoming HTTP requests on port 80.
  • server_name: Specifies the domain names this server block should respond to.
  • location /: This block defines how requests matching the root path (/) are handled. You can create more specific location blocks for different paths (e.g., location /api/).
  • proxy_pass: This is the core directive for reverse proxying. It tells Nginx to forward requests to the specified backend server's IP address and port.
  • proxy_set_header: These directives are crucial for passing original client information (like IP address and host) to the backend server, which can be useful for logging and application logic.

4. Enable the Configuration

If you've created a new configuration file in sites-available/, you need to enable it by creating a symbolic link to sites-enabled/:

sudo ln -s /etc/nginx/sites-available/my_reverse_proxy /etc/nginx/sites-enabled/

5. Test Nginx Configuration

Before restarting Nginx, always test your configuration for syntax errors:

sudo nginx -t

If the test passes, you'll see a message indicating that the syntax is okay and the test is successful.

6. Reload Nginx

To apply the new configuration, reload Nginx:

sudo systemctl reload nginx

7. Test Your Reverse Proxy

Open a web browser and navigate to http://your_domain.com (or your server's IP address if you don't have a domain set up). Nginx should now be forwarding your request to the backend server, and you should see the content served by your backend application.

This basic setup provides a foundation for using Nginx as a reverse proxy. You can further customize it with features like SSL/TLS termination, load balancing, caching, and more advanced routing rules.