参考

基本命令

  • 安装
  1. yum install nginx

  • 查看安装目录

    1. whereis nginx

  • 查看版本号

  1. nginx -v
  2. nginx -V ## 查询版本及配置
  • 重启nginx
  1. nginx -s reload
  • 验证配置是否正确
  1.  ./nginx -t
  • Nginx正常启动:
  1. nginx
  • 快速停止或关闭Nginx
  1. ./nginx -s stop
  • 正常停止或关闭Nginx
  1. ./nginx -s quit
  • 配置文件修改重装载命令
  1. ./nginx -s reload

基本配置

完整的配置说明

image.png

目录结构

  1. |—— nginx.conf                       # 配置入口文件
  2. ├── conf.d                           # 放置所有的配置
  3.    ├── default.conf                 # http配置,通过307定向到https
  4.    ├── default_ssl.conf             # https配置
  5.    ├── ...                          # 更多的配置...

nginx.conf

  2. user root;
  4. # 设置工作进程的数量
  5. worker_processes  1;
  7. error_log /var/log/nginx/error.log;
  8. pid        /run/nginx.pid;
  9. include /usr/share/nginx/modules/*.conf;
  11. events {
  12.     #==最大连接数,一般设置为cpu*2048
  13.     worker_connections  1024;
  14. }
  16. http {
  17.     # 文件拓展名查找集合
  18.     include /etc/nginx/mime.types;
  19.     # 当查找不到对应类型的时候默认值
  20.     default_type  application/octet-stream;
  22.     log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
  23.     '$status $body_bytes_sent "$http_referer" '
  24.     '"$http_user_agent" "$http_x_forwarded_for"';
  26.     access_log  /var/log/nginx/access.log  main;
  28.     # 调用 sendfile 系统传输文件
  29.     sendfile        on;
  30.     #tcp_nopush     on;
  32.     # ==客户端链接超时时间
  33.     # keepalive_timeout  0;
  34.     keepalive_timeout  65;
  36.     # 开启gzip 压缩
  37.     gzip on;
  38.     # 设置gzip所需的http协议最低版本 (HTTP/1.1, HTTP/1.0)
  39.     gzip_http_version 1.1;
  40.     # 设置压缩级别,压缩级别越高压缩时间越长  (1-9)
  41.     gzip_comp_level 4;
  42.     # 设置压缩的最小字节数, 页面Content-Length获取
  43.     gzip_min_length 1000;
  44.     # 设置压缩文件的类型  (text/html)
  45.     gzip_types text/plain application/javascript text/css;
  48.     # 加载/etc/nginx/conf.d/下的所有配置
  49.     include /etc/nginx/conf.d/*.conf;
  50. }

default.conf

/etc/nginx/conf.d/default.conf;

  1. server {
  2.     #站点监听端口
  3.     listen       80 default_server;
  4.     listen       [::]:80 default_server;    #站点访问域名
  5.     server_name  forguo.cn www.forguo.cn;
  7.     #编码格式,避免url参数乱码
  8.     charset utf-8;
  10.     # 重定向到https
  11.     location / {
  12.         #location用来匹配同一域名下多个URI的访问规则
  13.         #比如动态资源如何跳转,静态资源如何跳转等
  14.         #location后面跟着的/代表匹配规则
  15.         return 307 https://forguo.cn$request_uri;
  16.     }
  17. }

default_ssl.conf

/etc/nginx/conf.d/default_ssl.conf;

  1. server {
  2.        listen 443 ssl http2; # 加一句 http2.
  3.     server_name  forguo.cn www.forguo.cn;
  5.     ssl_certificate      forguo.cn.crt;
  6.     ssl_certificate_key  forguo.cn.key;
  8.     ssl_session_cache    shared:SSL:10m;
  9.     ssl_session_timeout  10m;
  11.     ssl_ciphers     EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
  12.     ssl_prefer_server_ciphers  on;
  14.     location / {
  15.         #站点根目录,可以是相对路径,也可以使绝对路径
  16.         root   /root/www/;
  18.         #默认首页文件
  19.         index  index.html index.htm;
  20.         # 如果 URL 匹配不到任何静态资源,则应该返回同一个 index.html 页面
  21.         try_files $uri $uri/ /index.html;
  23.         #拒绝请求,返回403,一般用于某些目录禁止访问
  24.         #deny all;
  26.         #允许请求
  27.         #allow all;
  29.             # CORS
  30.         add_header 'Access-Control-Allow-Origin' '*';
  31.         add_header 'Access-Control-Allow-Credentials' 'true';
  32.         add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
  33.         add_header 'Access-Control-Allow-Headers' 'DNT, X-CustomHeader, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, Cache-Control, Content-Type';
  34.     }
  35.     #error_page  404              /404.html;
  37.     # redirect server error pages to the static page /50x.html
  38.     #
  39.     error_page   500 502 503 504  /50x.html;
  40.     location = /50x.html {
  41.         root html;
  42.     }
  44.     # 转发api到node服务
  46.     location /api/ {
  47.         proxy_pass   http://127.0.0.1:3333/api/;
  48.     }
  50.       # 开启目录浏览功能
  51.     location /brower/ {
  52.         charset utf-8;
  53.             # 浏览/root/www/brower/ 目录,只需要配置上一级即可
  54.         root /root/www/;
  55.         # alias /root/www/;
  56.         autoindex on;
  57.         # 开启目录浏览功能;
  58.         autoindex_exact_size off;
  59.         # 关闭详细文件大小统计,让文件大小显示MB,GB单位,默认为b;
  60.         autoindex_localtime on;
  61.         # 开启以服务器本地时区显示文件修改日期!
  62.     }
  63. }

Docker 容器中的Nginx配置Demo

nginx.conf

  1. user  nginx;
  3. worker_processes  auto;
  5. error_log  /var/log/nginx/error.log warn;
  6. pid        /var/run/nginx.pid;
  8. events {
  9.     worker_connections  1024;
  10. }
  12. http {
  13.     include       /etc/nginx/mime.types;
  14.     default_type  application/octet-stream;
  16.     access_log  /var/log/nginx/access.log;
  18.     #配置了多个server的时候,一定要设置该参数
  19.     server_names_hash_bucket_size 64;
  21.     #处理请求request_line/request_header缓存大小,首先根据client_header_buffer_size分配大小,大小超出后会根据large_client_header_buffers分配大小
  22.     #所以基本client_header_buffer_size用来应对小的request_line/request_header,large_client_header_buffers应对大的请求
  23.     #如果http主配置没有设置,在server中配置的话,需要设置listen 80 default_server;默认服务,因为在处理请求头信息的时候,还没解析到server去,直接从默认服务取值
  24.     client_header_buffer_size 32k;
  25.     large_client_header_buffers 4 32k;
  27.     #设置请求主体内存大小,文件上传很容易受影响
  28.     client_max_body_size 50m;
  30.     #开启高效传输文件模式
  31.     sendfile    on;
  33.     #优化带宽利用率
  34.     tcp_nopush  on;
  35.     tcp_nodelay on;
  37.     #大文件传输的时候,需要兼顾,太大的话,普通请求完成了又不释放http连接,占用worker_connections,worker_connections达到上限后会宕机
  38.     keepalive_timeout  60;
  40.     #优化fastcgi
  41.     fastcgi_connect_timeout 60;
  42.     fastcgi_send_timeout 60;
  43.     fastcgi_read_timeout 60;
  44.     fastcgi_buffer_size 4k;
  45.     fastcgi_buffers 8 4k;
  46.     fastcgi_busy_buffers_size 8k;
  47.     fastcgi_temp_file_write_size 256k;
  49.     #server
  50.     #{
  51.     #    listen 80 default;
  52.     #    return 403;
  53.     #}
  54.       # 加载/etc/nginx/conf.d/下的所有配置
  55.     include /etc/nginx/conf.d/*.conf;
  56. }

default.conf

/etc/nginx/conf.d/default.conf内容

  1. server {
  2.     listen       80;
  3.     listen  [::]:80;
  4.     server_name  localhost;
  6.     #access_log  /var/log/nginx/host.access.log  main;
  8.     location / {
  9.         root   /usr/share/nginx/html;
  10.         index  index.html index.htm;
  11.     }
  13.     #error_page  404              /404.html;
  15.     # redirect server error pages to the static page /50x.html
  16.     #
  17.     error_page   500 502 503 504  /50x.html;
  18.     location = /50x.html {
  19.         root   /usr/share/nginx/html;
  20.     }
  22.     # proxy the PHP scripts to Apache listening on 127.0.0.1:80
  23.     #
  24.     #location ~ \.php$ {
  25.     #    proxy_pass   http://127.0.0.1;
  26.     #}
  28.     # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
  29.     #
  30.     #location ~ \.php$ {
  31.     #    root           html;
  32.     #    fastcgi_pass   127.0.0.1:9000;
  33.     #    fastcgi_index  index.php;
  34.     #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
  35.     #    include        fastcgi_params;
  36.     #}
  38.     # deny access to .htaccess files, if Apache's document root
  39.     # concurs with nginx's one
  40.     #
  41.     #location ~ /\.ht {
  42.     #    deny  all;
  43.     #}
  44. }