Nginx uses proxy to forward request instance

Sunshine island Master 2020-11-13 10:32:51
nginx uses proxy forward request


We MIPO technology Our business is all over the world , Sometimes foreign customers can't visit the services we build at home , This requires us to build a proxy forwarding service on foreign servers , User requests domain name of foreign server , Then the agent forwards it to the domestic , After processing the request, return the result to the foreign customer .Nginx Not only can load balancing be achieved , It can also realize reverse proxy forwarding , It is very suitable for our use scenario , So we MIPO technology use  Nginx Forwarding request instances by proxy .

MIPO blog original :Nginx Forwarding request instances by proxy

 

Nginx Forwarding request instances by proxy

nginx  As the most popular web One of the servers , It is very convenient to implement reverse proxy .

nginx  Reverse proxy official document : NGINX REVERSE PROXY

When a host is deployed with multiple different web The server , And need to be able to 80 and 443 Ports access these at the same time web Server time , have access to  nginx  The reverse proxy function of , use  nginx  stay 80 Port listens for all requests , And forward it to 443 port , Again by 443 The port forwards to the corresponding country according to the forwarding rules web Server .

 

Example :

proxy.mimvp.com  Domain name in Alibaba cloud Keep on record , Deployed in China Beijing Aliyun server

proxy.mimgu.cn      Domain name in Tencent cloud Keep on record , Deployed abroad Singapore Tencent cloud server ( Foreign domain name can not be filed )

 

1. Alibaba cloud server in Beijing, China proxy.mimvp.com

vim mimvp_proxy.conf

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
server {
    listen       80 ;
server_name   proxy.mimvp.com;       # Domain name can have multiple , Space off
root      www / mimvp_proxy;
    rewrite ^(. * )$  https: / / $host$ 1 permanent;
 
location / {
root        www / mimvp_proxy;
index       index.php index.html index.htm;
}
 
location ~ \.php$ {
root                www / mimvp_proxy;
fastcgi_pass        127.0 . 0.1 : 9000 ;
fastcgi_index   index.php;
fastcgi_param   SCRIPT_FILENAME / scripts$fastcgi_script_name;
include         fastcgi.conf;
}
 
     location ~ * ^ / (images|img|javascript|js|css|blog|flash|media|static) / {
         root        www / mimvp_proxy;
         expires     30d ;
     }
 
     location ~ * ^ / (robots\.txt) {
         root        www / mimvp_proxy;
         expires     365d ;
     }
 
     location ~ * ^ / favicon\.ico {
         root        www / mimvp_proxy;
         expires     365d ;
     }
 
     location ~ * ^ / img / logo\.png {
         root        www / mimvp_proxy;
         expires     365d ;
     }
 
     location ~ / \.ht {
         deny  all ;
     }
}
 
 
server {
     listen          443 ssl http2;
     server_name     proxy.mimvp.com;       # Domain name can have multiple , Space off
     root            www / mimvp_proxy;
     ssl             on;
 
     ssl_certificate      proxy.mimvp.com.crt;
     ssl_certificate_key  proxy.mimvp.com.key;
 
     ssl_session_cache    shared:SSL: 1m ;
     ssl_session_timeout  10m ;
 
     ssl_protocols TLSv1 TLSv1. 1 TLSv1. 2 ;
 
     ssl_ciphers ECDHE - RSA - AES128 - GCM - SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
     ssl_prefer_server_ciphers on;
 
location / {
root        www / mimvp_proxy;
index       index.php index.html index.htm;
}
 
location ~ \.php$ {
root                www / mimvp_proxy;
fastcgi_pass        127.0 . 0.1 : 9000 ;
fastcgi_index   index.php;
fastcgi_param   SCRIPT_FILENAME / scripts$fastcgi_script_name;
include         fastcgi.conf;
}
 
     location ~ * ^ / (images|img|javascript|js|css|blog|flash|media|static) / {
         root        www / mimvp_proxy;
         expires     30d ;
     }
 
     location ~ * ^ / (robots\.txt) {
         root        www / mimvp_proxy;
         expires     365d ;
     }
 
     location ~ * ^ / favicon\.ico {
         root        www / mimvp_proxy;
         expires     365d ;
     }
 
     location ~ * ^ / img / logo\.png {
         root        www / mimvp_proxy;
         expires     365d ;
     }
 
     location ~ / \.ht {
         deny  all ;
     }
}

 

 

2. Tencent cloud server in Singapore proxy.mimgu.cn

vim mimvp_proxy2.conf

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
server {
    listen       80 ;
server_name   proxy.mimgu.cn;      
root      www / mimvp_proxy;
    rewrite ^(. * )$  https: / / $host$ 1 permanent;   ## All requests force jump to https
}
 
 
server {
     listen          443 ssl http2;
     server_name     proxy.mimgu.cn;      
     root            www / mimvp_proxy;
     ssl             on;
 
     ssl_certificate      proxy.mimgu.cn.crt;
     ssl_certificate_key  proxy.mimgu.cn.key;
 
     ssl_session_cache    shared:SSL: 1m ;
     ssl_session_timeout  10m ;
 
     ssl_protocols TLSv1 TLSv1. 1 TLSv1. 2 ;
 
     ssl_ciphers ECDHE - RSA - AES128 - GCM - SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
     ssl_prefer_server_ciphers on;
 
location / {
proxy_pass          https: / / proxy.mimvp.com;    ## All requests are forced to jump to the domestic server https://proxy.mimvp.com
}
 
location ~ \.php$ {
proxy_pass          https: / / proxy.mimvp.com;
}
 
     location ~ * ^ / (images|img|javascript|js|css|blog|flash|media|static) / {
         proxy_pass          https: / / proxy.mimvp.com;    ## css,js,img Wait for all to be forced to forward , Otherwise, the layout may be disordered
     }
 
     location ~ * ^ / (robots\.txt) {
         proxy_pass          https: / / proxy.mimvp.com;
     }
 
     location ~ * ^ / favicon\.ico {
         proxy_pass          https: / / proxy.mimvp.com;
     }
 
     location ~ * ^ / img / logo\.png {
         proxy_pass          https: / / proxy.mimvp.com;
     }
 
     location ~ / \.ht {
         deny  all ;
     }
}

 

3. See the effect

http://proxy.mimvp.com          // Force jump to   https://proxy.mimvp.com

https://proxy.mimvp.com        // The only domain address shown to the public

http://proxy.mimgu.cn            // Force jump to   https://proxy.mimgu.cn, Then continue to force the jump to  https://proxy.mimvp.com

https://proxy.mimgu.cn          // Force jump to   https://proxy.mimvp.com

 

Summary

1. Four domain names , The unified jump points to the only service  https://proxy.mimvp.com

2. http Forced jump to https , The whole website uses ssl encryption

3. Tencent cloud domain name abroad (proxy.mimgu.cn),nginx The agent forwards the domain name to Alibaba cloud in China (proxy.mimvp.com

4. above nginx The configuration file , It's a classic configuration , A lot of information , It's worth studying MIPO technology Service with ingenuity

 

 

Reference recommendation :

Nginx Redirect Redirect all subdomains to www

Nginx Configuration files prohibit access to directories or files

Nginx Blocking access is too frequent IP

Mac OS X install Nginx

 

版权声明
本文为[Sunshine island Master]所创,转载请带上原文链接,感谢

  1. [front end -- JavaScript] knowledge point (IV) -- memory leakage in the project (I)
  2. This mechanism in JS
  3. Vue 3.0 source code learning 1 --- rendering process of components
  4. Learning the realization of canvas and simple drawing
  5. gin里获取http请求过来的参数
  6. vue3的新特性
  7. Get the parameters from HTTP request in gin
  8. New features of vue3
  9. vue-cli 引入腾讯地图(最新 api,rocketmq原理面试
  10. Vue 学习笔记(3,免费Java高级工程师学习资源
  11. Vue 学习笔记(2,Java编程视频教程
  12. Vue cli introduces Tencent maps (the latest API, rocketmq)
  13. Vue learning notes (3, free Java senior engineer learning resources)
  14. Vue learning notes (2, Java programming video tutorial)
  15. 【Vue】—props属性
  16. 【Vue】—创建组件
  17. [Vue] - props attribute
  18. [Vue] - create component
  19. 浅谈vue响应式原理及发布订阅模式和观察者模式
  20. On Vue responsive principle, publish subscribe mode and observer mode
  21. 浅谈vue响应式原理及发布订阅模式和观察者模式
  22. On Vue responsive principle, publish subscribe mode and observer mode
  23. Xiaobai can understand it. It only takes 4 steps to solve the problem of Vue keep alive cache component
  24. Publish, subscribe and observer of design patterns
  25. Summary of common content added in ES6 + (II)
  26. No.8 Vue element admin learning (III) vuex learning and login method analysis
  27. Write a mini webpack project construction tool
  28. Shopping cart (front-end static page preparation)
  29. Introduction to the fluent platform
  30. Webpack5 cache
  31. The difference between drop-down box select option and datalist
  32. CSS review (III)
  33. Node.js学习笔记【七】
  34. Node.js learning notes [VII]
  35. Vue Router根据后台数据加载不同的组件(思考->实现->不止于实现)
  36. Vue router loads different components according to background data (thinking - & gt; Implementation - & gt; (more than implementation)
  37. 【JQuery框架,Java编程教程视频下载
  38. [jQuery framework, Java programming tutorial video download
  39. Vue Router根据后台数据加载不同的组件(思考->实现->不止于实现)
  40. Vue router loads different components according to background data (thinking - & gt; Implementation - & gt; (more than implementation)
  41. 【Vue,阿里P8大佬亲自教你
  42. 【Vue基础知识总结 5,字节跳动算法工程师面试经验
  43. [Vue, Ali P8 teaches you personally
  44. [Vue basic knowledge summary 5. Interview experience of byte beating Algorithm Engineer
  45. 【问题记录】- 谷歌浏览器 Html生成PDF
  46. [problem record] - PDF generated by Google browser HTML
  47. 【问题记录】- 谷歌浏览器 Html生成PDF
  48. [problem record] - PDF generated by Google browser HTML
  49. 【JavaScript】查漏补缺 —数组中reduce()方法
  50. [JavaScript] leak checking and defect filling - reduce() method in array
  51. 【重识 HTML (3),350道Java面试真题分享
  52. 【重识 HTML (2),Java并发编程必会的多线程你竟然还不会
  53. 【重识 HTML (1),二本Java小菜鸟4面字节跳动被秒成渣渣
  54. [re recognize HTML (3) and share 350 real Java interview questions
  55. [re recognize HTML (2). Multithreading is a must for Java Concurrent Programming. How dare you not
  56. [re recognize HTML (1), two Java rookies' 4-sided bytes beat and become slag in seconds
  57. 【重识 HTML ,nginx面试题阿里
  58. 【重识 HTML (4),ELK原来这么简单
  59. [re recognize HTML, nginx interview questions]
  60. [re recognize HTML (4). Elk is so simple