NGINX安装
参照:https://blog.csdn.net/qq_42815754/article/details/82980326
大致步骤:
下载
wget -c https://nginx.org/download/nginx-1.10.1.tar.gz
下载安装依赖
yum install gcc-c++
yum install -y pcre pcre-devel
yum install -y zlib zlib-devel
yum install -y openssl openssl-devel
解压安装
tar -zxvf nginx-1.10.1.tar.gz
make
make install
启动、关闭、重启目录
目录/usr/local/nginx/sbin下
./nginx
./nginx -s quit 或者 ./nginx -s stop
./nginx -s reload
查看进程
ps aux|grep nginx
搭建负载均衡
修改/usr/local/nginx/conf/nginx.conf文件配置,在http里面加入如下内容
upstream www.domain.com {
ip_hash;
server 10.1.10.77:1111 weight=2;
server 10.1.10.76:2222 weight=1;
}
serve_name修改成 server_name www.domain.com;
且加入
location / {
proxy_pass http://www.domain.com;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
Nginx 跨域配置支持
#允许跨域请求的域,*代表所有
add_header 'Access-Control-Allow-Origin' *;
#允许带上cookie请求
add_header 'Access-Control-Allow-Credentials' 'true';
#允许请求的方法,比如 GET/POST/PUT/DELETE
add_header 'Access-Control-Allow-Methods' *;
#允许请求的header
add_header 'Access-Control-Allow-Headers' *;
Nginx 防盗链配置支持
#对源站点验证
valid_referers *.xxx.com;
#非法引入会进入下方判断
if ($invalid_referer) {
return 404;
}
Nginx的反向代理缓存
# proxy_cache_path 设置缓存目录
# keys_zone 设置共享内存以及占用空间大小
# max_size 设置缓存大小
# inactive 超过此时间则被清理
# use_temp_path 临时目录,使用后会影响nginx性能
proxy_cache_path /usr/local/nginx/upstream_cache keys_zone=mycache:5m max_size=1g inactive=1m use_temp_path=
location / {
proxy_pass http://tomcats;
# 启用缓存,和keys_zone一致
proxy_cache mycache;
# 针对200和304状态码缓存时间为8小时
proxy_cache_valid 200 304 8h;
}
https配置
yum install openssl
yum install openssl-devel
./configure --prefix=/usr/local/nginx --with-http_ssl_module
make
make install