我将nginx用作ssl的端口80和443的代理服务器,将Apache用作端口8082的代理服务器,并将Varnish用作端口81的代理服务器
使用nginx将http和https请求发送到varnish,然后使用varnish的目的会将其发送到Apache服务器。
以下是我的默认Nginx文件:
#Redirect http www to https no-www
server {
server_name _;
access_log off;
}
#Redirect http no-www to https no-www
server {
// listening to port 80
listen "actual-server-ip";
listen [::]:80;
server_name localhost;
root /home/maindir;
index index.php;
access_log off;
port_in_redirect off;
location / {
allow 127.0.0.1;
auth_basic "Please enter username";
auth_basic_user_file /etc/nginx/.passfile1;
}
}
server {
// listening to port 443 for https requests
listen 443 ssl default_server;
listen [::]:443 ssl default_server;
server_name localhost;
port_in_redirect off;
access_log off;
ssl_certificate /main/ssl/eth0___localhost.pem;
ssl_certificate_key /main/ssl/eth0___localhost.key;
ssl_trusted_certificate /main/ssl/eth0___localhost.ca;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_dhparam /root/dhparams.pem;
ssl_prefer_server_ciphers on;
ssl_ecdh_curve secp384r1;
root /home/maindir;
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload";
add_header X-Frame-Options SAMEORIGIN;
add_header X-Content-Type-Options nosniff;
index index.php index.html index.htm;
location / {
proxy_pass http://127.0.0.1:81; // to direct requests to varnish
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_set_header X-Forwarded-Port 443;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-Host $http_host;
proxy_set_header HTTPS "on";
proxy_read_timeout 90;
proxy_connect_timeout 90;
proxy_redirect off;
}
location ~ /\.ht {
deny all;
}
}
但是我有以下问题:
1-它不会将http请求定向到https
2-它不会将非www指向www
是以下命令权限:
proxy_pass http://127.0.0.1:81;
将请求从nginx定向到清漆或127.0.0.1应该是实际的服务器地址吗?
请,您能给我正确的默认nginx文件配置吗? 谢谢