Nginx禁止未绑定域名和IP访问服务器

nginx的配置文件参考如下思路

server {
 listen 80 default_server;
 listen 443 ssl default_server;
 server_name _;
 return 444;
 ssl_certificate default_server.com_bundle.crt;
 ssl_certificate_key default_server.com.key;
}

server {
    listen 80;
    server_name default_server;
    rewrite ^(.*)$ https://${server_name}$1 permanent;
}
server {
    listen       443 ssl;
    server_name  tool.os000.com;
        index _;
        root /alidata/www/tool;
        ssl on;
        ssl_certificate 1default_server_bundle.crt;
        ssl_certificate_key default_server.key;
        ssl_session_timeout 5m;
        ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256::!MD5;
        ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
        ssl_prefer_server_ciphers on;
        add_header Strict-Transport-Security "max-age=31536000";
        location / {
                proxy_pass http://127.0.0.1:8980/;
                #proxy_redirect off;
                proxy_set_header Host $host;
                #proxy_set_header X-Real-Ip $remote_addr;
                #proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
                proxy_set_header X-Forwarded-Proto $scheme;
                proxy_redirect http:// https//;
       }

        location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$
        {
                expires 30d;
        }

        location ~ .*\.(js|css)?$
        {
                expires 1h;
        }

        access_log  /alidata/log/nginx/access/default.log;
}

参考来源：
https://zhuanlan.zhihu.com/p/616732358
https://cloud.tencent.com/developer/article/2189226
https://www.cnblogs.com/mayanan/p/16727764.html