server {
    listen      80 default_server ;
    return 403;
    if ($request_method !~ ^(HEAD)$) {
        return '405';
    }
}

server {
    listen      443 ssl default_server;
    return 403;
    if ($request_method !~ ^(HEAD)$) {
        return '405';
    }

    ssl_certificate /etc/nginx/ssl/nginx.crt;
    ssl_certificate_key /etc/nginx/ssl/nginx.key;
    ssl_stapling off;
}