From ff7a83925e04777c1e9b9b960408322c2f970e57 Mon Sep 17 00:00:00 2001
From: nutra-bot <nutradigest@gmail.com>
Date: Wed, 24 Dec 2025 10:59:33 +0000
Subject: [PATCH] http3/quic

---
 etc/nginx/conf.d/default.conf | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/etc/nginx/conf.d/default.conf b/etc/nginx/conf.d/default.conf
index dac6a60..ed57028 100644
--- a/etc/nginx/conf.d/default.conf
+++ b/etc/nginx/conf.d/default.conf
@@ -39,8 +39,23 @@ server {
   server_name nutra.tk;
   #listen 80 default_server;
   #listen [::]:80 ipv6only=on;
-  listen 443 ssl http2 default_server;
-  listen [::]:443 ssl ipv6only=on; # managed by Certbot
+  # listen 443 ssl http2 default_server;
+  # listen [::]:443 ssl ipv6only=on; # managed by Certbot
+
+  # HTTP/3 (QUIC) - UDP
+  listen 443 quic reuseport default_server;
+  listen [::]:443 quic reuseport default_server;
+
+  # HTTP/2 & 1.1 (Fallback) - TCP
+  listen 443 ssl default_server;
+  listen [::]:443 ssl default_server;
+
+  # Enable HTTP/2 (New syntax for Nginx 1.25+)
+  http2 on;
+
+  # Advertise HTTP/3 availability to browsers
+  add_header Alt-Svc 'h3=":443"; ma=86400';
+
   # HSTS
   add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
   # OCSP stapling
-- 
2.52.0