Your Nginx config does not include the necessary changes due do a Nginx + php-fpm security issue, see: Urgent security issue in NGINX/php-fpm
Your hosts file has two conflicting entries (same IP), I would add your external domain as alias (or the other way round, your local hostname as alias instead) for 127.0.1.1, so 127.0.0.1 is used for localhost only? Not sure who two entries with same IP are handled, I guess one just overrides the other.