access_log /var/log/nginx/mydomain.com_access_log main;
error_log /var/log/nginx/mydomain.com_error_log info;

# simple catch-all server for the domain
server {
       # You might want to specify also the internal 
        server_name mydomain.com;
        # Port for users from outside
        listen 8443 ssl;
        # Port for users from inside
        listen 443 ssl;
        http2 on;

        # unauthenticated static landing page (maybe a "get off my lawn" GIF...)
        location / {
               root /var/www/html;
        }

       # include all sub-paths for mydomain.com:
       include serviceX.conf;

       # include HTTPS certs stuff:
       include org.gardiol/certbot.conf;
}

# include all sub-domains entry points:
include com.mydomain/y/y.conf;