使用Docker快速搭建Nginx用于反代

admin · 发表于 2024-6-20 10:02:33

mkdir -p /opt/docker/nginx/logs
mkdir -p /opt/docker/nginx/conf
mkdir -p /opt/docker/nginx/vhosts
mkdir -p /opt/docker/nginx/wwwroot
mkdir -p /opt/docker/acme.sh
docker run --name nginx-default-conf -p 6680:80 -d nginx
docker cp nginx-default-conf:/etc/nginx/conf.d/default.conf /opt/docker/nginx/conf/default.conf
docker cp nginx-default-conf:/usr/share/nginx/html/index.html /opt/docker/nginx/wwwroot/index.html
docker cp nginx-default-conf:/usr/share/nginx/html/50x.html /opt/docker/nginx/wwwroot/50x.html
docker cp nginx-default-conf:/etc/nginx/nginx.conf /opt/docker/nginx/nginx.conf
docker stop nginx-default-conf
docker rm nginx-default-conf
docker run --name nginx -p 80:80 -p 443:443 --restart=unless-stopped -v /opt/docker/nginx/logs:/var/log/nginx -v /opt/docker/nginx/wwwroot:/usr/share/nginx/html -v /opt/docker/nginx/vhosts:/etc/nginx/conf.d -v /opt/docker/acme.sh:/acme.sh -d nginx
cd /opt/docker/acme.sh
openssl dhparam -out dhparams.pem 4096

复制代码

在/opt/docker/nginx/vhosts中添加*.conf的文件创建虚拟主机

V2

mkdir -p /opt/docker/nginx/wwwroot
mkdir -p /opt/docker/nginx/vhosts
mkdir -p /opt/docker/nginx/logs
mkdir -p /opt/docker/acme.sh
mkdir -p /opt/ssl/cf
docker cp nginx-default-conf:/etc/nginx /opt/docker
docker cp nginx-default-conf:/usr/share/nginx/html/index.html /opt/docker/nginx/wwwroot/index.html
docker cp nginx-default-conf:/usr/share/nginx/html/50x.html /opt/docker/nginx/wwwroot/50x.html
docker stop nginx-default-conf
docker rm nginx-default-conf
docker run --name nginx -p 80:80 -p 443:443 --restart=unless-stopped -v /opt/docker/nginx/logs:/var/log/nginx -v /opt/docker/nginx/wwwroot:/usr/share/nginx/html -v /opt/docker/nginx:/etc/nginx -v /opt/docker/nginx/vhosts:/etc/nginx/conf.d/vhosts -v /opt/ssl/cf:/ssl -v /opt/docker/acme.sh:/acme.sh -d nginx

复制代码

vhosts反代demo

server {
listen 80;
server_name sub.demo.la;
# if ($scheme = http ) {
# return 301 https://$host$request_uri;
# }
#access_log /home/wwwlogs/demo.la.log;
location / {
if ($host != 'sub.demo.la') {
return 301 https://demo.la;
}
proxy_pass http://your backend ip:7788/;
proxy_set_header Host sub.vps.la;
proxy_ssl_server_name on;
proxy_ssl_name sub.vps.la;
gzip_proxied any;
#sed -i "s/cdn.jsdelivr.net/us.demo.at/g" `grep -rl "cdn.jsdelivr.net" ./`
#proxy_set_header Host $host;
#proxy_set_header Host fastly.jsdelivr.net;
proxy_set_header Referer $http_referer;
proxy_set_header User-Agent $http_user_agent;
proxy_redirect off;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header REMOTE-HOST $remote_addr;
add_header X-Cache $upstream_cache_status;
proxy_ignore_headers Set-Cookie Cache-Control expires;
#proxy_cache jsdelivr;
#proxy_cache_key $host$uri$is_args$args;
#proxy_cache_valid 200 365d;
#expires 365d;
}
}
server {
listen 443 ssl;
server_name sub.vps.la;
#ssl on;
ssl_certificate /ssl/demo.la.pem;
ssl_certificate_key /ssl/demo.la.key;
ssl_session_timeout 5m;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
location / {
if ($host != 'sub.demo.la') {
return 301 https://demo.la;
}
proxy_pass http://your backend ip:7788/;
proxy_set_header Host sub.vps.la;
proxy_ssl_server_name on;
proxy_ssl_name sub.vps.la;
gzip_proxied any;
#sed -i "s/cdn.jsdelivr.net/us.demo.at/g" `grep -rl "cdn.jsdelivr.net" ./`
#proxy_set_header Host $host;
#proxy_set_header Host fastly.jsdelivr.net;
proxy_set_header Referer $http_referer;
proxy_set_header User-Agent $http_user_agent;
proxy_redirect off;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header REMOTE-HOST $remote_addr;
add_header X-Cache $upstream_cache_status;
proxy_ignore_headers Set-Cookie Cache-Control expires;
#proxy_cache jsdelivr;
#proxy_cache_key $host$uri$is_args$args;
#proxy_cache_valid 200 365d;
#expires 365d;
}
}

复制代码

		自动登录	找回密码
密码			立即注册