diff --git a/docker-cloud/nginx/default.conf b/docker-cloud/nginx/default.conf
index df47321a..24b5af48 100644
--- a/docker-cloud/nginx/default.conf
+++ b/docker-cloud/nginx/default.conf
@@ -18,3 +18,19 @@ server {
     proxy_pass http://localhost:8086;
   }
 }
+
+# docker连接ssl安全代理
+server {
+  listen 443 ssl;
+  server_name docker-tools.klkics.com;
+
+  ssl_certificate         /secret/139.9.72.189/server-cert.pem;
+  ssl_certificate_key     /secret/139.9.72.189/server-key.pem;
+  # 启用客户端证书验证
+  ssl_client_certificate  /secret/139.9.72.189/ca.pem;
+  ssl_verify_client on;
+
+  location / {
+    proxy_pass http://localhost:2279;
+  }
+}
diff --git a/docker-cloud/nginx/secret/139.9.72.189/ca.pem b/docker-cloud/nginx/secret/139.9.72.189/ca.pem
new file mode 100644
index 00000000..e69de29b
diff --git a/docker-cloud/nginx/secret/139.9.72.189/cert.pem b/docker-cloud/nginx/secret/139.9.72.189/cert.pem
new file mode 100644
index 00000000..e69de29b
diff --git a/docker-cloud/nginx/secret/139.9.72.189/docker-ssl-server.sh b/docker-cloud/nginx/secret/139.9.72.189/docker-ssl-server.sh
new file mode 100644
index 00000000..e69de29b
diff --git a/docker-cloud/nginx/secret/139.9.72.189/docker-ssl.sh b/docker-cloud/nginx/secret/139.9.72.189/docker-ssl.sh
new file mode 100644
index 00000000..e69de29b
diff --git a/docker-cloud/nginx/secret/139.9.72.189/key.pem b/docker-cloud/nginx/secret/139.9.72.189/key.pem
new file mode 100644
index 00000000..e69de29b
diff --git a/docker-cloud/nginx/secret/139.9.72.189/server-cert.pem b/docker-cloud/nginx/secret/139.9.72.189/server-cert.pem
new file mode 100644
index 00000000..e69de29b
diff --git a/docker-cloud/nginx/secret/139.9.72.189/server-key.pem b/docker-cloud/nginx/secret/139.9.72.189/server-key.pem
new file mode 100644
index 00000000..e69de29b