Docker中运行nginx并挂载本地目录到镜像中并且包含ssl证书挂载

1.首先第一步先从hub上挂载镜像

docker pull nginx

2. 创建将要挂载的目录

mkdir -p /data/nginx/{conf,conf.d,html,logs,ssl}

3.创建配置文件

3.1

vim /data/nginx/conf/nginx.conf

user  nginx;
worker_processes  1;

error_log  /var/log/nginx/error.log warn;
pid        /var/run/nginx.pid;


events {
    worker_connections  1024;
}


http {
    include       /etc/nginx/mime.types;
    default_type  application/octet-stream;

    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile        on;
    #tcp_nopush     on;

    keepalive_timeout  65;

    #gzip  on;

    include /etc/nginx/conf.d/*.conf;
}

3.2

 vim /data/nginx/conf.d/default.conf

这个要分为两部分第一部分配置本地域名链接

server {  
    listen       80;  
    server_name  localhost;  
  
    #charset koi8-r;  
    #access_log  /var/log/nginx/log/host.access.log  main;  
  
    location / {  
        #root   /data/nginx/html;  
        root   /usr/share/nginx/html;  
        index  index.html index.htm;  
        #autoindex  on;  
        #try_files $uri /index/index/page.html;  
        #try_files $uri /index/map/page.html;  
    }  
  
    #error_page  404              /404.html;  
  
    # redirect server error pages to the static page /50x.html  
    #  
    error_page   500 502 503 504  /50x.html;  
    location = /50x.html {  
        root   /usr/share/nginx/html;  
    }  
  
    # proxy the PHP scripts to Apache listening on 127.0.0.1:80  
    #  
    #location ~ \.php$ {  
    #    proxy_pass   http://127.0.0.1;  
    #}  
  
    # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000  
    #  
    #location ~ \.php$ {  
    #    root           html;  
    #    fastcgi_pass   127.0.0.1:9000;  
    #    fastcgi_index  index.php;  
    #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;  
    #    include        fastcgi_params;  
    #}  
  
    # deny access to .htaccess files, if Apache's document root  
    # concurs with nginx's one  
    #  
    #location ~ /\.ht {  
    #    deny  all;  
    #}  
}

关键的是这部分配置要正确

server {
    listen       443 ssl;
    server_name  baidu.com;   //这里放自己的服务器域名
 
    ssl_certificate      /ssl/1.crt;    //证书路径 可以放到/data/nginx/ssl  目录下docker run的时候进行映射，避免找不到证书的情况
    ssl_certificate_key  /ssl/1.key;  

    ssl_session_cache    shared:SSL:1m;
    ssl_session_timeout  5m;

    ssl_ciphers  HIGH:!aNULL:!MD5;
    ssl_prefer_server_ciphers  on;

    location / {
        proxy_pass  http://xx.xx.xx.xx:9999;   //服务器的公网ip地址 
    }
}

3.3 /data/nginx/html/

前端打包后的文件就放在这个目录下 上传文件到linux服务器我推荐用filezila  开源的一个软件，上传连接也很方便。

4.启动容器

docker run --name ftpnginx -d -p 80:80 -p 443:443 -v /data/nginx/html:/usr/share/nginx/html -v /data/nginx/conf.d:/etc/nginx/conf.d -v /data/nginx/conf/nginx.conf:/etc/nginx/nginx.conf -v /data/nginx/logs:/var/log/nginx -v /data/nginx/ssl:/ssl nginx

命令有点长，注意证书的对应关系就可以了，比如证书其实放在/data/nginx/ssl   目录下，可以映射配置的 /ssl路径。

5.查看容器

docker ps -a