nginx的配置参考:
机器 A ip 123
#正式环境-微信端
server {
listen 80;
server_name www.dr2dr.cn;
rewrite ^(.*) https://$server_name$1 permanent;
}
server {
listen 443 ssl;
server_name www.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
access_log /var/log/nginx/www.access.log main;
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38081;
# root /usr/share/nginx/html/www/;
}
}
#正式环境-管理后台
#server {
# listen 80;
# server_name admin.dr2dr.cn;
# rewrite ^(.*) https://$server_name$1 permanent;
#}
server {
listen 80;
listen 443 ssl;
server_name admin.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
access_log /var/log/nginx/admin.access.log main;
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38083;
# root /usr/share/nginx/html/admin/;
}
}
#正式环境-api接口
server {
listen 80;
listen 443 ssl;
server_name apiprod.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38088;
#proxy_ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
#proxy_ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
}
}
#即将关闭
server {
listen 8088 ssl;
server_name api.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://127.0.0.1:38088;
}
}
#测试环境-api接口
server {
listen 80;
listen 443 ssl;
server_name apifrank.dr2dr.cn apitest.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38085;
}
}
#测试frank13环境-api接口
server {
listen 80;
listen 443 ssl;
server_name apifrank13.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38084;
}
}
#开发环境-api接口
server {
listen 80;
listen 443 ssl;
server_name apidev.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38086;
}
}
#代理api接口
server {
listen 80;
listen 443 ssl;
server_name apiproxy.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://127.0.0.1:38082;
}
}
#郑小伟临时测试用api
server {
listen 443 ssl;
server_name apitest1.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass https://127.0.0.1:38087;
#proxy_ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
#proxy_ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
}
}
#邮箱代理
server {
listen 25 ssl;
server_name localhost;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://smtp.exmail.qq.com:25;
}
}
#jenkins自动发布api
server {
listen 80;
listen 443 ssl;
server_name apiautotest.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location ~^/bt/ {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38089;
}
}
#可道云
server {
listen 80;
server_name ftp.dr2dr.cn;
access_log /var/log/nginx/ftp.access.log main;
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_set_header X-Real-Ip $remote_addr;
proxy_pass http://127.0.0.1:38082/kodexplorer/;
}
}
#禅道,不这样会有问题
server {
listen 80;
server_name zentao.dr2dr.cn;
rewrite ^(.*) https://$server_name/zentao$1 permanent;
}
server {
listen 443 ssl;
server_name zentao.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location /zentao {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://127.0.0.1:38081/zentao;
}
}
upstream nacos{
server 192.168.2.124:8848;
}
server {
listen 443 ssl;
server_name btnacos.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
location / {
proxy_pass http://nacos;
}
}
server {
listen 443 ssl;
server_name btadmin.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
add_header Content-Security-Policy upgrade-insecure-requests;
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.123:38000;
}
#location ~ .* {
# proxy_pass http://127.0.0.1:38000;
# proxy_set_header Host $http_host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
#}
}
#测试环境-静态页面,使用二级目录
server {
listen 80;
listen 443 ssl;
server_name test.dr2dr.cn;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
proxy_intercept_errors on;
error_page 400 401 402 403 404 405 408 410 412 413 414 415 500 501 502 503 504 506 /50x.html;
location = /50x.html {
root /usr/share/nginx/html;
}
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38082;
}
location ^~/frankadmin {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38082;
}
location ^~/frank {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38082;
}
location ^~/frank13admin {
access_log /var/log/nginx/frankadmin.access.log main;
root /usr/share/nginx/html/;
}
location ^~/frank13 {
access_log /var/log/nginx/frank.access.log main;
root /usr/share/nginx/html/;
}
location ^~/devadmin {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38082;
}
location ^~/dev {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38082;
}
location ^~/autotestadmin {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38082;
}
location ^~/autotest {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://192.168.2.124:38082;
}
}
#默认返回403
server {
listen 80 default_server;
listen 443 ssl default_server;
server_name _;
ssl_certificate /etc/nginx/ssl/4313816__dr2dr.cn.pem;
ssl_certificate_key /etc/nginx/ssl/4313816__dr2dr.cn.key;
return 403;
}
机器B ip 124:
#正式环境公众号
server {
listen 38081;
server_name localhost;
access_log /var/log/nginx/www.access.log main;
location / {
root /usr/share/nginx/html/www/;
}
}
#正式环境后台
server {
listen 38083;
server_name localhost;
access_log /var/log/nginx/admin.access.log main;
location / {
root /usr/share/nginx/html/admin/;
}
}
#测试环境-静态页面,使用二级目录
server {
listen 38082;
server_name localhost;
location = /50x.html {
root /usr/share/nginx/html;
}
location / {
access_log /var/log/nginx/frank.access.log main;
root /usr/share/nginx/html/frank/;
}
location ^~/frankadmin {
access_log /var/log/nginx/frankadmin.access.log main;
root /usr/share/nginx/html/;
}
location ^~/frank {
access_log /var/log/nginx/frank.access.log main;
root /usr/share/nginx/html/;
}
location ^~/frank13admin {
access_log /var/log/nginx/frankadmin.access.log main;
root /usr/share/nginx/html/;
}
location ^~/frank13 {
access_log /var/log/nginx/frank.access.log main;
root /usr/share/nginx/html/;
}
location ^~/devadmin {
access_log /var/log/nginx/devadmin.access.log main;
root /usr/share/nginx/html/;
}
location ^~/dev {
access_log /var/log/nginx/dev.access.log main;
root /usr/share/nginx/html/;
}
location ^~/autotestadmin {
access_log /var/log/nginx/autotestadmin.access.log main;
root /usr/share/nginx/html/;
}
location ^~/autotest {
access_log /var/log/nginx/autotest.access.log main;
root /usr/share/nginx/html/;
}
}