diff --git a/default.conf b/default.conf
index 745a80d..bdc1e2f 100644
--- a/default.conf
+++ b/default.conf
@@ -17,6 +17,114 @@ server {
   ssl_certificate /etc/nginx/certs/live/pena.digital/fullchain.pem; # managed by Certbot
   ssl_certificate_key /etc/nginx/certs/live/pena.digital/privkey.pem; # managed by Certbot
 
+}
+server {
+	root /usr/share/nginx/html;
+
+	index index.html index.htm index.nginx-debian.html;
+  server_name hub.pena.digital; # managed by Certbot
+  client_max_body_size 70M;
+
+  location /404 {
+     try_files $uri $uri/ /index.html;
+  }
+
+  location / {
+    proxy_pass http://hub;
+	}
+
+  location /auth {
+    proxy_hide_header Access-Control-Allow-Origin;
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    proxy_pass http://10.8.0.8:59300;
+  }
+  
+  location /user/ {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type,authorization always;
+    add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE;
+    proxy_pass http://10.8.0.8:59300;
+  }
+
+  location /heruvym/ {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type,authorization,sess always;
+    add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE;
+    proxy_set_header Referer $host;
+    proxy_set_header Origin $http_origin;
+    proxy_set_header Connection '';
+    proxy_http_version 1.1;
+    chunked_transfer_encoding off;
+    proxy_buffering off;
+    proxy_cache off;
+    proxy_pass https://10.8.0.8:1488/;
+  }
+
+  location /strator/ {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type,authorization always;
+    add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE;
+    proxy_pass http://10.8.0.8:59303/;
+  }
+
+  location /customer/ {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type,authorization always;
+    add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE;
+    proxy_pass http://10.8.0.8:8065/;
+  }
+
+  location /codeword/ {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type,authorization always;
+    add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE;
+    proxy_pass http://10.8.0.8:59664/;
+  }
+
+  location /price/ {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type,authorization always;
+    add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE;
+    proxy_pass http://10.8.0.8:8001/;
+  }
+
+  location /verification1 {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type always;
+    add_header Access-Control-Allow-Methods GET;
+    chunked_transfer_encoding off;
+    proxy_buffering off;
+    proxy_cache off;
+    proxy_pass https://storage.yandexcloud.net;
+  }
+
+  location /verification/ {
+    add_header Access-Control-Allow-Origin hub.pena.digital always;
+    add_header Access-Control-Allow-Credentials true always;
+    add_header Access-Control-Allow-Headers content-type,authorization always;
+    add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE;
+    proxy_set_header Referer $host;
+    proxy_set_header Origin $http_origin;
+    proxy_set_header Connection '';
+    proxy_http_version 1.1;
+    chunked_transfer_encoding off;
+    proxy_buffering off;
+    proxy_cache off;
+    proxy_pass http://10.8.0.8:7035/;
+  }
+
+  listen 443 ssl; # managed by Certbot
+  ssl_certificate /etc/nginx/certs/live/pena.digital/fullchain.pem; # managed by Certbot
+  ssl_certificate_key /etc/nginx/certs/live/pena.digital/privkey.pem; # managed by Certbot
+
 }
 server {
 	root /usr/share/nginx/html;