【Https:// 配置】
server { listen 443 ssl; server_name wx.mysite1.com; ssl on; ssl_certificate /etc/nginx/conf.d/ssl/mysite1.crt; ssl_certificate_key /etc/nginx/conf.d/ssl/mysite1.key; ssl_session_cache shared:SSL:200m; ssl_session_timeout 20m; ssl_prefer_server_ciphers on; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4; location / { #proxy_set_header Host $http_host; #proxy_set_header Host $http_host; #proxy_set_header X-Forwarded-For $remote_addr; # online #proxy_redirect http://192.168.1.22/ http://$http_host/; #proxy_pass http://shmc.mysite1.com; #proxy_pass http://192.168.1.22/; #index index.html; #root /data/www/; # if ( $cookie_COOKIE ~* "(.*)$") { # set $all_cookie $1; # } # proxy_set_header Cookie "$http_cookie; node_id=018"; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Host $http_host; add_header Access-Control-Allow-Origin *; proxy_pass http://192.168.1.22; proxy_redirect off; } } server { listen 80; server_name wx.mysite1.com; location / { proxy_set_header Host $host; # online #proxy_redirect http://192.168.1.22/ http://$http_host/; #proxy_pass http://shmc.mysite1.com; proxy_pass http://192.168.1.22/; #index index.html; #root /data/www/; } } |
如上参考,应该可以解决大部分配置情况。
需要注意的是,nginx作为反向代理服务器,很多变量需要作特别转发,如ip地址,有问题可以先查看日志,如果语法错误,则不会被保存,这个比较好!
nginx作为负载均衡的重要软件,略加掌握总归是好的吧。
其实也不难,但是没有实战的谈话总是显得苍白无力!要做到好也不简单,一个简单的优化,可以让你的用户体验更好,服务器利用率更高,有得搞!
勉励吧诸君!
上文内容不用于商业目的,如涉及知识产权问题,请权利人联系博为峰小编(021-64471599-8017),我们将立即处理。
