Hello everyone, I’m trying to figure out how to support 103 Early Hints for WP, I’ve read a lot of things, but I haven’t figured out how to do it yet. I created a template for WP and added
## add 103 Early Hints
map $http_sec_fetch_mode $early_hints {
default "";
navigate $http2$http3;
}
and
location ~ [^/]\.php(/|$) {
early_hints $early_hints; #add 103 Early Hints
try_files $uri =404;
it turned out
## add 103 Early Hints
map $http_sec_fetch_mode $early_hints {
default "";
navigate $http2$http3;
}
##лимит по колличество запросов, 1000 мс*60 сек(мин) делим на 300(rate=300r/m) = 200 мс(или 5 запросов в секунду)
limit_req_zone $limit_key zone=quant:10m rate=300r/m;
## лимит подключения пo домену
limit_conn_zone $server_name zone=quantall:10m;
## ограничение количества соединений(по идее с 1 ip 1 соединение но В HTTP/2 и HTTP/3 каждый параллельный запрос считается отдельным соединением)
limit_conn_zone $limit_key zone=qantlim:10m;
geo $limit {
default 1; # По умолчанию — применять лимиты
213.108.6.232 0; # Для IP 213.108.6.232 — не применять лимиты
}
map $limit $limit_key {
0 ""; # Если $limit = 0, то limit_key пустой (разрешить)
1 $binary_remote_addr; # Если $limit = 1, то использовать IP-адрес клиента
}
server {
listen %ip%:%web_ssl_port% ssl;
listen %ip%:%web_ssl_port% quic reuseport;
server_name %domain_idn% %alias_idn%;
root %sdocroot%;
index index.php index.html index.htm;
access_log /var/log/nginx/domains/%domain%.log combined;
access_log /var/log/nginx/domains/%domain%.bytes bytes;
error_log /var/log/nginx/domains/%domain%.error.log error;
##Применяем ограничения ко всему серверу, с учетом исключений по IP
##лимит по колличество запросов, злая штука для HTTP2 и HTTP3
limit_req zone=quant burst=80 nodelay;
limit_req_dry_run off; #тестовый режим
limit_req_status 444; # вместо ответа 503
# limit_conn_log_level info | notice | warn | error; #изменить логи
##ограничение количества соединений(по IP в зависимости от протокола HTTP/2 и HTTP/3 каждый параллельный запрос считается отдельным соединением)
limit_conn qantlim 60;
limit_conn_dry_run off; #тестовый режим
## лимит подключения по домену
limit_conn quantall 1000;
limit_conn_status 429;#слишком много запросов(применяется ко всему limit_conn)
ssl_certificate %ssl_pem%;
ssl_certificate_key %ssl_key%;
# ssl_stapling off; #Отключение проверки в основном файле Nginx тоже отключено
# ssl_stapling_verify off;
# TLS 1.3 0-RTT anti-replay
if ($anti_replay = 307) { return 307 https://$host$request_uri; }
if ($anti_replay = 425) { return 425; }
include %home%/%user%/conf/web/%domain%/nginx.hsts.conf*;
#nginx-ultimate-bad-bot-blocker
include /etc/nginx/bots.d/blockbots.conf;
include /etc/nginx/bots.d/ddos.conf;
# HTTP/3 specific settings
ssl_protocols TLSv1.3;
ssl_prefer_server_ciphers off;
add_header Alt-Svc 'h3=":%web_ssl_port%"; ma=86400'; # Advertise that HTTP/3 is available
add_header QUIC-Status $http3;
location = /favicon.ico {
log_not_found off;
access_log off;
}
location = /robots.txt {
try_files $uri $uri/ /index.php?$args;
log_not_found off;
access_log off;
}
location ~ /\.(?!well-known\/) {
deny all;
return 404;
}
location = /xmlrpc.php {
deny all;
access_log off;
log_not_found off;
return 403;
}
location / {
try_files $uri $uri/ /index.php?$args;
location ~* ^.+\.(ogg|ogv|svg|svgz|swf|eot|otf|woff|woff2|mov|mp3|mp4|webm|flv|ttf|rss|atom|jpg|jpeg|gif|png|webp|ico|bmp|mid|midi|wav|rtf|css|js|pdf|jar)$ {
expires 365d;
fastcgi_hide_header "Set-Cookie";
}
location ~* /(?:uploads|files)/.*.php$ {
deny all;
return 404;
}
location ~ [^/]\.php(/|$) {
early_hints $early_hints; #add 103 Early Hints
try_files $uri =404;
include /etc/nginx/fastcgi_params;
fastcgi_index index.php;
fastcgi_param HTTP_HOST $host;
fastcgi_param HTTP_EARLY_DATA $rfc_early_data if_not_empty;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_pass %backend_lsnr%;
include %home%/%user%/conf/web/%domain%/nginx.fastcgi_cache.conf*;
if ($request_uri ~* "/wp-admin/|/wp-json/|wp-.*.php|xmlrpc.php|index.php|/store.*|/cart.*|/my-account.*|/checkout.*") {
set $no_cache 1;
}
if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_no_cache|wordpress_logged_in|woocommerce_items_in_cart|woocommerce_cart_hash|PHPSESSID") {
set $no_cache 1;
}
}
}
location /error/ {
alias %home%/%user%/web/%domain%/document_errors/;
}
location /vstats/ {
alias %home%/%user%/web/%domain%/stats/;
include %home%/%user%/web/%domain%/stats/auth.conf*;
}
proxy_hide_header Upgrade;
include /etc/nginx/conf.d/phpmyadmin.inc*;
include /etc/nginx/conf.d/phppgadmin.inc*;
include %home%/%user%/conf/web/%domain%/nginx.ssl.conf_*;
}
But I don’t see a response when making a request.
curl -I https://quantumtransition.angellive.ru/
HTTP/2 200
server: nginx
date: Tue, 29 Jul 2025 20:56:19 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://quantumtransition.angellive.ru/wp-json/>; rel="https://api.w.org/"
link: <https://quantumtransition.angellive.ru/wp-json/wp/v2/pages/786>; rel="alternate"; title="JSON"; type="application/json"
link: <https://quantumtransition.angellive.ru/>; rel=shortlink
strict-transport-security: max-age=31536000;
alt-svc: h3=":443"; ma=86400
Perhaps one of you has already set up this for yourself and will tell you what is wrong). Thanks