域名 1.31.tw 怎么添加反代可以正常访问 127.0.0.1:5000 端口? 我自己加的反代在域名开启 ssl 下 css 不正常,错位。弄一天了没弄明白,求大佬。谢谢 下面是配置文件:
server {
listen 80;
listen 443 ssl http2;
ssl_certificate /usr/local/nginx/conf/ssl/1.31.tw.crt;
ssl_certificate_key /usr/local/nginx/conf/ssl/1.31.tw.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
ssl_ciphers TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES-128-CCM-8-SHA256:TLS13-AES-128-CCM-SHA256:EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
ssl_prefer_server_ciphers on;
ssl_session_timeout 10m;
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_buffer_size 1400;
add_header Strict-Transport-Security max-age=15768000;
ssl_stapling on;
ssl_stapling_verify on;
server_name 1.31.tw;
access_log /data/wwwlogs/1.31.tw_nginx.log combined;
index index.html index.htm index.php;
root /data/wwwroot/1.31.tw;
if ($ssl_protocol = "") { return 301 https://$host$request_uri; }
include /usr/local/nginx/conf/rewrite/none.conf;
#error_page 404 /404.html;
#error_page 502 /502.html;
location ~ [^/].php(/|$) {
#fastcgi_pass remote_php_ip:9000;
fastcgi_pass unix:/dev/shm/php-cgi.sock;
fastcgi_index index.php;
include fastcgi.conf;
}
location ~ .*.(gif|jpg|jpeg|png|bmp|swf|flv|mp4|ico)$ {
expires 30d;
access_log off;
}
location ~ .*.(js|css)?$ {
expires 7d;
access_log off;
}
location ~ /.ht {
deny all;
}
}
1
testsec 2019-05-12 01:37:08 +08:00 via iPhone
|
3
zhengjian 2019-05-12 02:02:45 +08:00
恕我眼拙,你贴出来的配置文件没有反代的部分啊
location / { proxy_pass http://127.0.0.1:5000; } |
4
jpengwu 2019-05-12 02:07:36 +08:00 via Android
同楼上,
proxy_pass |
5
KasuganoSoras 2019-05-12 02:19:02 +08:00
你用的是 OneinStack 安装的 Nginx 吧,反代配置文件示例如下:
location / { proxy_pass http://127.0.0.1:5000$request_uri; proxy_redirect off; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; client_max_body_size 1024m; client_body_buffer_size 128k; proxy_connect_timeout 300; proxy_send_timeout 300; proxy_read_timeout 300; proxy_buffer_size 4k; proxy_buffers 4 32k; proxy_busy_buffers_size 64k; proxy_temp_file_write_size 64k; } |
6
MonoLogueChi 2019-05-12 02:30:55 +08:00 via Android
反代配置大概就是楼上写的,而且我好像也没看到你绑定域名???
|
7
jtnetcc OP @MonoLogueChi
@KasuganoSoras @jpengwu @zhengjian 我已经败了。 域名 1.0531.tw 现在 ssl 没强制跳转,打算不用宝塔研究下这个项目,https://github.com/Hackxiaoya/CuteOne 宝塔正常,oneinstack 就不行。愁死了。 |
8
autogen 2019-05-12 03:13:32 +08:00
|
9
jtnetcc OP |
11
jtnetcc OP @autogen 你看看 www.mzd.tw 这个 再看看我的 0531 的代码,路径是一样的 ,只是环境不一样,她是宝塔,我是 oneinstck
|
12
irblu 2019-05-12 09:21:47 +08:00 via Android
用宝塔面板可以可视化地配置
|
13
stille 2019-05-12 09:26:33 +08:00 via iPhone
|
14
nfroot 2019-05-12 12:22:35 +08:00 via Android
还是 caddy 好,简洁美,入门易,基础功能都有,ssl 自动获取和配置(免设置)
|