Nginx 是一个高性能的 Http和反向代理服务器, 它具有有很多非常优越的特性
Nginx Linux服务器安装
1.wget http://nginx.org/download/nginx-1.6.2.tar.gz
2.tar zxvf nginx-1.6.2.tar.gz
3. ./configure --prefix=/usr/local/nginx #指定安装路径
4.make install
5.启动nginx 进入安装目录sbin下执行./nginx命令,指定配置文件启动 ./nginx -c
Nginx基础功能
1.处理静态文件,索引文件以及自动索引
2.正向、反向代理,负载均衡
3.SSL证书支持,keep-alive支持
Nginx动静分离配置及相关配置含义
#指定nginx用户组
#user nobody;
#开启的进程数
worker_processes 1;
#日志文件存放位置
#error_log logs/error.log;
#error_log logs/error.log notice;
#error_log logs/error.log info;
#指定进程id存储位置
#pid logs/nginx.pid;
#nginx工作模式
events {
#epoll工作模式是高效模式
#use epoll
#每个进程的最大连接数
worker_connections 1024;
#keepalive超时时间,默认60s
#keepalive_timeout
}
#http模块
http {
#文件扩展名与文件类型对应关系
include mime.types;
#文件类型,默认二进制流
default_type application/octet-stream;
#上传文件大小限制
#client_max_body_size 356m;
#指定日志文件输出格式
#log_format main '$remote_addr - $remote_user [$time_local] "$request" '
# '$status $body_bytes_sent "$http_referer" '
# '"$http_user_agent" "$http_x_forwarded_for"';
#访问日志存放位置
#access_log logs/access.log main;
#开启高效文件传输模式
sendfile on;
#tcp_nopush on;
#客户端保持活跃超时时间
#keepalive_timeout 0;
keepalive_timeout 65;
#开启zip
#gzip on;
#负载均衡
#upstream proxy {
#通过ip分发请求
#ip_hash;
#server 127.0.0.1:8080;
#server 127.0.0.1:8082;
#}
#server模块可配置多个
server {
#监听端口
listen 8081;
#监听地址
server_name 192.168.1.250;
#ssl证书
ssl on;
ssl_certificate /home/nginx-1.10.3/214421901390864.pem;
ssl_certificate_key /home/nginx-1.10.3/214421901390864.key;
ssl_session_timeout 5m;
ssl_session_cache shared:SSL:50m;
ssl_protocols SSLv3 SSLv2 TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
underscores_in_headers on;
#编码设置
#charset koi8-r;
#access_log logs/host.access.log main;
#对url进行正则匹配
#静态文件交给nginx处理
location ~ .*\.(htm|html|gif|jpg|jpeg|png|bmp|swf|ioc|rar|zip|txt|flv|mid|doc|ppt|pdf|xls|mp3|wma)${
#访问路径,根目录
root /home/xiangx/html/;
#首页地址
index index.html index.htm;
#开启目录浏览
autoindex on;
#有效时间
expires 30d;
#防盗链
valid_referers none blocked *.nginxcn.com;
if ($invalid_referer) {
rewrite ^/ www.nginx.cn
#return 404;
}
}
#拦截进行负载均衡
#location / {
#请求转向自定义upstream
#proxy_pass http://proxy;
#下面配置可用于长连接
#proxy_http_version 1.1;
#proxy_set_header Upgrade $http_upgrade;
#proxy_set_header Connection "Upgrade";
#返回客户端重定向
#proxy_redirect off;
#后端服务器获取用户的主机名或真实IP地址
#proxy_set_header Host $host;
#proxy_set_header X-Real-IP $remote_addr;
#proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
#}
#错误404返回页面
#error_page 404 /404.html;
# redirect server error pages to the static page /50x.html
#错误返回页面
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
# proxy the PHP scripts to Apache listening on 127.0.0.1:80
#
#location ~ \.php$ {
# proxy_pass http://127.0.0.1;
#}
# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
#
#location ~ \.php$ {
# root html;
# fastcgi_pass 127.0.0.1:9000;
# fastcgi_index index.php;
# fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
# include fastcgi_params;
#}
# deny access to .htaccess files, if Apache's document root
# concurs with nginx's one
#
#location ~ /\.ht {
# deny all;
#}
}
# another virtual host using mix of IP-, name-, and port-based configuration
#
#server {
# listen 8000;
# listen somename:8080;
# server_name somename alias another.alias;
# location / {
# root html;
# index index.html index.htm;
# }
#}
# HTTPS server
#
#server {
# listen 443;
# server_name localhost;
# ssl on;
# ssl_certificate cert.pem;
# ssl_certificate_key cert.key;
# ssl_session_timeout 5m;
# ssl_protocols SSLv2 SSLv3 TLSv1;
# ssl_ciphers HIGH:!aNULL:!MD5;
# ssl_prefer_server_ciphers on;
# location / {
# root html;
# index index.html index.htm;
# }
#}
}