Nginx 配置文件备忘单
Nginx 是用于 Web 服务、反向代理、缓存、负载平衡、媒体流等的开源软件。在这篇文章中,我将提到一些我们经常使用的 Nginx 配置。
监听端口
server {
Standard HTTP Protocol
listen 80;
Standard HTTPS Protocol
listen 443 ssl;
For http2
listen 443 ssl http2;
Listen on 80 using IPv6
listen [::]:80;
Listen only on using IPv6
listen [::]:80 ipv6only=on;
}
访问日志
server {
Relative or full path to log file
access_log /path/to/file.log;
Turn ‘on’ or ‘off’
access_log on;
}
域名
server {
Listen to yourdomain.com
server_name yourdomain.com;
Listen to multiple domains
server_name yourdomain.com www.yourdomain.com;
Listen to all domains
server_name *.yourdomain.com;
Listen to all top-level domains
server_name yourdomain.*;
Listen to unspecified Hostnames (Listens to IP address itself)
server_name “”;
}
静态资源
server {
listen 80;
server_name yourdomain.com;
location / {
root /path/to/website;
}
}
重定向
server {
listen 80;
server_name www.yourdomain.com;
return 301 http://yourdomain.com$request_uri;
}
server {
listen 80;
server_name www.yourdomain.com;
location /redirect-url {
return 301 http://otherdomain.com;
}
}
反向代理
server {
listen 80;
server_name yourdomain.com;
location / {
proxy_pass http://0.0.0.0:3000;
where 0.0.0.0:3000 is your application server (Ex: node.js) bound on 0.0.0.0 listening on port 3000
}
}
负载均衡
upstream node_js {
server 0.0.0.0:3000;
server 0.0.0.0:4000;
server 123.131.121.122;
}
server {
listen 80;
server_name yourdomain.com;
location / {
proxy_pass http://node_js;
}
}
SSL协议证书
server {
listen 443 ssl;
server_name yourdomain.com;
ssl on;
ssl_certificate /path/to/cert.pem;
ssl_certificate_key /path/to/privatekey.pem;
ssl_stapling on;
ssl_stapling_verify on;
ssl_trusted_certificate /path/to/fullchain.pem;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_session_timeout 1h;
ssl_session_cache shared:SSL:50m;
add_header Strict-Transport-Security max-age=15768000;
}
Permanent Redirect for HTTP to HTTPS
server {
listen 80;
server_name yourdomain.com;
return 301 https:// h o s t host hostrequest_uri;
}
posted on 2021-12-04 14:13 JavaCoderPan 阅读(2) 评论(0) 编辑 收藏 举报 来源