1、应用场景
一台服务器建立多个Web站点,通过泛域名方式,给每个站点绑定不同的域名,通过nginx实现。
2、基本要求
(1)比方说我们有一个ddAndzz.com的域名,可以生出多个子域名:www.ddAndzz.com;mqtt.ddAndzz.com;live.ddAndzz.com...................
(2) 我们有一台公网服务器,比方说ecs
3、配置
(1)域名配置映射 多个子域名 映射到公网ip (记得*可以通用匹配映射)
(2)主机配置
域名的请求到达主机之后,一切才可以交给Nginx处理。默认配置文件(etc/nginx/nginx.config,),可以在某个目录下新建独立的配置文件,然后include
user www-data; #用户组
worker_processes auto; #工作进程数量
pid /run/nginx.pid; pid文件的作用是防止nginx服务被启动多次
include /etc/nginx/modules-enabled/*.conf;
events { #设置工作模式和连接数
worker_connections 1024; #每个工作进程worker允许连接客户端的最大连接数
# multi_accept on;
}
http {
##
# Basic Settings
##
#开启高效文件传输模式 sendfile启用后才能使用tcp_nopush是指当数据包累积一定大小后才发送,这样有助于解决网络阻塞,提供阿勒效率。
sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
# server_tokens off;
# server_names_hash_bucket_size 64;
# server_name_in_redirect off;
include /etc/nginx/mime.types;
default_type application/octet-stream;
##
# SSL Settings
##
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;
##
# Logging Settings
##
access_log /var/log/nginx/access.log;
error_log /var/log/nginx/error.log;
##
# Gzip Settings
##
#开启gzip压缩功能
gzip on;
# gzip_vary on;
# gzip_proxied any;
# gzip_comp_level 6;
# gzip_buffers 16 8k;
# gzip_http_version 1.1;
# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
##
# Virtual Host Configs
##
include /etc/nginx/conf.d/*.conf;
include /etc/nginx/sites-enabled/*;
}
Nginx的读取配置文件的格式,通常写在http(}块里,加上 server块,server块可以写在一个单独文件里,在nginx conf里包含该文件
server {
listen 80;
server name www.ddAndzz.com;
location /{
proxy pass http://127.0.0.1:8008:
proxy redirect off;
proxy set header Host $host;
proxy set header X-Real-Ip $remote addr;
proxy set header X-Forwarded-For $proxy add x forwarded for;
#access log logs/p access.log;
}
server {
listen 443 ssl;
server_name www.ddAndzz.com;
charset utf-8;
client_max_body_size 1024M;
keepalive_timeout 3600;
client_header_timeout 3600;
client_body_timeout 3600;
ssl_certificate /etc/nginx/ssl/ddAndzz.com.pem;
ssl_certificate_key /etc/nginx/ssl/ddAndzz.com.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
# Enable SSL session cache to improve SSL performance
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 10m;
# 允许跨域
#add_header 'Access-Control-Allow-Origin' '*';
#add_header 'Access-Control-Allow-Credentials' 'true';
#add_header 'Access-Control-Allow-Methods' '*';
#add_header 'Access-Control-Allow-Headers' '*';
location / {
root /data/html/ddAndzz;
try_files $uri $uri/ /index.html;
index index.html index.htm;
}
}
这里server_name对应配置的域名,proxy_pass对应代理的真实地址(可省略) 多域名,可以多设置几个server块,通过监听端口,location到对应的前端目录