Nginx is a free and open-source web server software that facilitates the hosting of static and dynamic web applications or services on your server. It can function as a web server, load balancer, reverse proxy, or HTTP cache, enabling integration with other applications to form a complete stack or to serve web applications through your server’s IP address or domain.
This article explains the process for installing Nginx on Ubuntu 25.04 and configuring sample web applications to ensure optimal performance on your server.
Prerequisites
Before you begin, you need to:
- Have access to an Ubuntu 25.04 instance as a non-root user with sudo privileges.
- Create a domain A record pointing to the instance's public IP address. For example,
app.example.com.
Install Nginx on Ubuntu 25.04
Nginx is included in the default APT repositories for Ubuntu 25.04. To install the latest version of Nginx, follow the steps below to update your server's package list and install the web server.
Update the package index on your server.
console$ sudo apt update
Install the Nginx web server.
console$ sudo apt install nginx -y
View the installed version of Nginx web server.
console$ nginx -version
Your output should be similar to the one below:
nginx version: nginx/1.26.3 (Ubuntu)
Manage the Nginx System Service
Nginx operates as a systemd service on Ubuntu, which allows you to control its processes and manage its runtime. Follow the steps below to enable the nginx service start automatically on boot and control the Nginx system service.
Enable the Nginx service to start automatically on boot.
console$ sudo systemctl enable nginx
Your output should be similar to the one below:
Synchronizing state of nginx.service with SysV service script with /usr/lib/systemd/systemd-sysv-install. Executing: /usr/lib/systemd/systemd-sysv-install enable nginxStart the Nginx service.
console$ sudo systemctl start nginx
Stop the Nginx service.
console$ sudo systemctl stop nginx
Restart the Nginx service.
console$ sudo systemctl restart nginx
View the status of the Nginx service to confirm it's running.
console$ sudo systemctl status nginx
Your output should be similar to the one below:
● nginx.service - A high performance web server and a reverse proxy server Loaded: loaded (/usr/lib/systemd/system/nginx.service; enabled; preset: enabled) Active: active (running) since Wed 2025-04-23 16:27:12 UTC; 8s ago Invocation: 83add31885be44869b2e3573230fbdee Docs: man:nginx(8) Process: 5578 ExecStartPre=/usr/sbin/nginx -t -q -g daemon on; master_process on; (code=exited, status=0/SUCCESS) Process: 5580 ExecStart=/usr/sbin/nginx -g daemon on; master_process on; (code=exited, status=0/SUCCESS) Main PID: 5581 (nginx) Tasks: 5 (limit: 8761) Memory: 4.4M (peak: 5M) CPU: 35ms CGroup: /system.slice/nginx.service ├─5581 "nginx: master process /usr/sbin/nginx -g daemon on; master_process on;" ├─5582 "nginx: worker process" ├─5583 "nginx: worker process" ├─5584 "nginx: worker process" └─5585 "nginx: worker process"Based on the output value Active: active (running), Nginx is running on your server. If the service status shows Active: active (failed), it indicates an issue. In such cases, stop any processes currently occupying HTTP port 80 and then restart the Nginx service to resolve the issue.
Create a New Nginx Virtual Host
Nginx virtual hosts allow you to configure the server to deliver specific web application files based on the domain and directory structure of your server. Follow the steps below to create a new virtual host configuration for securely serving web applications.
Create a new Nginx virtual host configuration file in the sites available directory.
console$ sudo nano /etc/nginx/sites-available/app.example.com.conf
Add the following code to define the virtual host settings.
iniserver { listen 80; listen [::]:80; server_name app.example.com; root /var/www/app.example.com; index index.html; location / { try_files $uri $uri/ =404; } }
Save and close the file.
The above configuration ensures that Nginx listens for requests to the
app.example.comdomain and serves the content from the/var/www/app.example.comweb root directory.Link the virtual host configuration to the
/etc/nginx/sites-enableddirectory to activate in on the server.console$ sudo ln -s /etc/nginx/sites-available/app.example.com.conf /etc/nginx/sites-enabled/
Set up a new directory at
/var/www/app.example.comto store your web application’s filesconsole$ sudo mkdir -p /var/www/app.example.com
Create an HTML file (e.g.,
index.html) in the web root directory.console$ sudo nano /var/www/app.example.com/index.html
Add the following HTML content to the file.
html<html> <head></head> <body> <h1>Greetings from Vultr</h1> </body> </html>
Save and close the file.
The above HTML application displays a
Greetings from Vultrmessage when accessed in a web browser.Run the following command to check for any configuration errors.
console$ sudo nginx -t
Your output should be similar to the one below:
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successfulRestart the nginx service to apply the new virtual host configuration.
console$ sudo systemctl restart nginx
Access your domain defined in the virtual host using
curlto confirm that the Nginx virtual host is working correctly.console$ curl http://app.example.com
If configured correctly, the command returns the following response:
<html> <head></head> <body> <h1>Greetings from Vultr</h1> </body> </html>
Secure the Nginx Web Server
SSL certificates protect data by encrypting communication between a user's browser and the Nginx web server over the HTTPS protocol. Since Nginx listens on the unencrypted HTTP port 80 by default, you can enhance security by generating a trusted SSL certificate with Let's Encrypt using Certbot. Follow the steps below to secure your Nginx server with HTTPS support.
Install the Certbot Let's Encrypt client using Snap.
console$ sudo snap install --classic certbot
VIew the installed Certbot version.
console$ certbot --version
Your output should be similar to the one below:
certbot 4.0.0Allow HTTP connections on port
80for Certbot's ACME verification.console$ sudo ufw allow 80/tcp
Generate an SSL certificate for your domain. Replace
app.example.comwith your actual domain name configured in the Nginx virtual host file.console$ sudo certbot --nginx -d app.example.com --agree-tos
Your output should be similar to the one below:
Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/app.example.com/fullchain.pem Key is saved at: /etc/letsencrypt/live/app.example.com/privkey.pem This certificate expires on 2025-07-22. These files will be updated when the certificate renews. Certbot has set up a scheduled task to automatically renew this certificate in the background. Deploying certificate Successfully deployed certificate for app.example.com to /etc/nginx/sites-enabled/app.example.com.conf Congratulations! You have successfully enabled HTTPS on https://app.example.com
Set Up Firewall Rules
Uncomplicated Firewall (UFW) is installed and enabled by default on Ubuntu 25.04. Use the following steps to configure the UFW firewall and allow secure connections to your Nginx web server.
Allow HTTPS traffic on port
443.console$ sudo ufw allow 443/tcp
View the UFW status and verify that the updated firewall rules are active.
console$ sudo ufw status
Your output should be similar to the one below:
Status: active To Action From -- ------ ---- 22/tcp ALLOW Anywhere 80/tcp ALLOW Anywhere 443/tcp ALLOW Anywhere 22/tcp (v6) ALLOW Anywhere (v6) 80/tcp (v6) ALLOW Anywhere (v6) 443/tcp (v6) ALLOW Anywhere (v6)
Conclusion
You have installed Nginx on your Ubuntu 25.04 server and configured it to securely serve applications over HTTPS using a trusted Let's Encrypt SSL certificate. Nginx supports multiple virtual host configurations and can be integrated with other services such as MySQL and PHP to deploy dynamic web applications. For additional configuration options, visit the official Nginx documentation.
No comments yet.