nginx反向代理网上资料也很多,最主要的是proxy_set_header Host 设置 和 proxy_pass 设置,这里设置为natapp分配的域名(免费域名当天有效,所以每天都要重启并重新设置代理)。这里是https的配置,http也是类似
# HTTPS 证书配置 by liucongkuan
server {
listen 443;
server_name www.ancye.com;
charset uft-8;
#访问拦截
location /a/h5/diversion {
return 403;
}
location ~ ^/(.*)/(accountRegister|GenerateOrderId) {
return 403;
}
location / {
# root /var/www;
# index index.html index.htm index.php;
# login.php;
client_max_body_size 50m;
client_body_buffer_size 256k;
# proxy_redirect off;
proxy_set_header Host ut2tgs.natappfree.cc:80;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header REMOTE-HOST $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_connect_timeout 600s;
proxy_send_timeout 600s;
proxy_read_timeout 600s;
proxy_buffer_size 256k;
proxy_buffers 4 256k;
proxy_busy_buffers_size 256k;
proxy_temp_file_write_size 256k;
proxy_next_upstream error timeout invalid_header http_500 http_503 http_404;
proxy_max_temp_file_size 128m;
proxy_pass http://ut2tgs.natappfree.cc:80;
proxy_redirect http:// https://;
}
#这部分是https证书安装
ssl on; # 开启ssl
ssl_certificate /home/Nginx_SSL/server.pem; # 证书位置
ssl_certificate_key /home/Nginx_SSL/server.key; # 私钥位置
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1; # 指定密码为openssl支持的格式
ssl_ciphers HIGH:!aNULL:!MD5; # 密码加密方式
ssl_prefer_server_ciphers on; # 依赖SSLv3和TLSv1协议的服务器密码将优先于客户端密码
}