目录
献上一个一个 多项目多域名 多ssl 配置文件 加 80转 443 配置文件
1.使用yum 查看nginx 信息
[root@VM_16_3_centos nginx]# yum info nginx
Loaded plugins: fastestmirror, langpacks
Loading mirror speeds from cached hostfile
Installed Packages
Name : nginx
Arch : x86_64
Epoch : 1
Version : 1.12.2
Release : 2.el7
Size : 1.5 M
Repo : installed
From repo : epel
Summary : A high performance web server and reverse proxy server
URL : http://nginx.org/
License : BSD
Description : Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and
: IMAP protocols, with a strong focus on high concurrency, performance and low
: memory usage.
[root@VM_16_3_centos nginx]#
2.直接yum install nginx
yum install nginx
- 中间需要输入一次"Y"
- 就下载下来了
一些其他包
- zlib
- openssl
- gcc gcc-c++
- 大部分请看看就是端那个就使用 "yum install xxx"安装
yum 安装目录
- nginx.conf 配置文件等文件 :目录 /etc/nginx/
- 命令看 rpm -ql nginx
- 所有和nginx 相关的都在这里
[root@VM_16_3_centos nginx]# rpm -ql nginx
/etc/logrotate.d/nginx
/etc/nginx/fastcgi.conf
/etc/nginx/fastcgi.conf.default
/etc/nginx/fastcgi_params
/etc/nginx/fastcgi_params.default
/etc/nginx/koi-utf
/etc/nginx/koi-win
/etc/nginx/mime.types
/etc/nginx/mime.types.default
/etc/nginx/nginx.conf
/etc/nginx/nginx.conf.default
/etc/nginx/scgi_params
/etc/nginx/scgi_params.default
/etc/nginx/uwsgi_params
/etc/nginx/uwsgi_params.default
/etc/nginx/win-utf
/usr/bin/nginx-upgrade
/usr/lib/systemd/system/nginx.service
/usr/lib64/nginx/modules
/usr/sbin/nginx
/usr/share/doc/nginx-1.12.2
/usr/share/doc/nginx-1.12.2/CHANGES
/usr/share/doc/nginx-1.12.2/README
/usr/share/doc/nginx-1.12.2/README.dynamic
/usr/share/doc/nginx-1.12.2/UPGRADE-NOTES-1.6-to-1.10
/usr/share/licenses/nginx-1.12.2
/usr/share/licenses/nginx-1.12.2/LICENSE
/usr/share/man/man3/nginx.3pm.gz
/usr/share/man/man8/nginx-upgrade.8.gz
/usr/share/man/man8/nginx.8.gz
/usr/share/nginx/html/404.html
/usr/share/nginx/html/50x.html
/usr/share/nginx/html/index.html
/usr/share/nginx/html/nginx-logo.png
/usr/share/nginx/html/poweredby.png
/usr/share/vim/vimfiles/ftdetect/nginx.vim
/usr/share/vim/vimfiles/indent/nginx.vim
/usr/share/vim/vimfiles/syntax/nginx.vim
/var/lib/nginx
/var/lib/nginx/tmp
/var/log/nginx
[root@VM_16_3_centos nginx]#
- /etc/nginx/nginx.conf 主要配置文件
目录 类型 作用
- /etc/logrotate.d/nginx 配置文件 Nginx日志轮转,用于logrotate服务的日志切割
- /etc/nginx 目录、配置文件 Nginx主配置文件
- /etc/nginx/nginx.conf
- /etc/nginx/conf.d
- /etc/nginx/conf.d/default.conf
- /etc/nginx/fastcgi_params 配置文件 cgi配置相关,fastcgi配置
- /etc/nginx/uwsgi_params
- /etc/nginx/scgi_params
- /etc/nginx/koi-utf 配置文件 编码转换映射转化文件
- /etc/nginx/koi-win
- /etc/nginx/win-utf
- /etc/nginx/mime.types 配置文件 设置http协议的Content-Type与扩展名对应关系
- /usr/lib/systemd/system/nginx-debug.service 配置文件 用于配置出系统守护进程管理器管理方式
- /usr/lib/systemd/system/nginx.service
- /etc/sysconfig/nginx
- /etc/sysconfig/nginx-debug
- /usr/lib64/nginx/modules 目录 Nginx模块目录
- /etc/nginx/modules
- /usr/sbin/nginx 命令 Nginx服务的启动管理的终端命令
- /usr/sbin/nginx-debug
- /var/cache/nginx 目录 Nginx的缓存目录
- /var/log/nginx 目录 Nginx的日志目录
启动 重启 关闭 命令
- systemctl start nginx 启动
- systemctl status nginx 启动
- nginx 启动
- nginx -s stop 关闭
- nginx -s reload 重启
- 也可以:ps -aux|grep nginx
- 然后 kill -9 nginx进程号
总结:
- 之前我使用解压版本的安装出现了各种问题
- ssl 不好使用
- 后来各种调试后发现可能是版本的原因
- 最后决定直接使用yum的方式安装
- 各种文档都没啥了
- 我估计是版本的原因
- ok到这里nginx就可以使用了
献上一个一个 多项目多域名 多ssl 配置文件 加 80转 443 配置文件
#user nobody;
worker_processes 1;
#error_log logs/error.log;
#error_log logs/error.log notice;
#error_log logs/error.log info;
#pid logs/nginx.pid;
events {
worker_connections 1024;
}
http {
include mime.types;
default_type application/octet-stream;
#log_format main '$remote_addr - $remote_user [$time_local] "$request" '
# '$status $body_bytes_sent "$http_referer" '
# '"$http_user_agent" "$http_x_forwarded_for"';
#access_log logs/access.log main;
sendfile on;
#tcp_nopush on;
#keepalive_timeout 0;
keepalive_timeout 65;
#gzip on;
#-----------------------------xx1-------------------------------
server {
listen 80;
server_name www.xx1.com;
rewrite ^(.*)$ https://www.xx1.com;
}
server {
listen 443;
server_name www.shirendingzhi.com;
ssl on;
ssl_certificate /home/nginx/ssl/xx1/1_www.xx1.com_bundle.crt;
ssl_certificate_key /home/nginx/ssl/xx1/2_www.xx1.com.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
location / {
root /home/nginx/html/webapp;
index /xx1/index.html;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
}
#----------------------------xx2--------------------------------
server {
listen 80;
server_name www.xx2.com;
rewrite ^(.*)$ https://www.xx2.com;
}
server {
listen 443;
server_name www.xx2.com;
ssl on;
ssl_certificate /home/nginx/ssl/xx2/1_www.xx2.com_bundle.crt;
ssl_certificate_key /home/nginx/ssl/xx2/2_www.xx2.com.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
location / {
root /home/nginx/html/webapp;
index /xx2/index.html;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
}
#------------------------------------------------------------
# another virtual host using mix of IP-, name-, and port-based configuration
#
#server {
# listen 8000;
# listen somename:8080;
# server_name somename alias another.alias;
# location / {
# root html;
# index index.html index.htm;
# }
#}
# HTTPS server
#
#server {
# listen 443 ssl;
# server_name localhost;
# ssl_certificate cert.pem;
# ssl_certificate_key cert.key;
# ssl_session_cache shared:SSL:1m;
# ssl_session_timeout 5m;
# ssl_ciphers HIGH:!aNULL:!MD5;
# ssl_prefer_server_ciphers on;
# location / {
# root html;
# index index.html index.htm;
# }
#}
}
- 这里边使用的xx1 和xx2 代替的域名
- 之后换上个人公司的 域名就ok
- 还有地址 地址使用的是 相对地址
- root /xxx/xx/xxx
- 和 index 的地址
ssl 配置
tomcat 使用 ssl_protocols SSLv2 啥的 nginx 使用 tlsv1.1 特此调整
ssl on;
ssl_certificate /home/nginx/ssl/xx1/1_www.xx1.com_bundle.crt;
ssl_certificate_key /home/nginx/ssl/xx1/2_www.xx1.com.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
nginx 调整如下俩个
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5:!EXPORT56:!EXP;
结果就是 记得配置的时候到了这里 要调整 哟 帅哥美女们
ssl on;
ssl_certificate /home/nginx/ssl/xx1/1_www.xx1.com_bundle.crt;
ssl_certificate_key /home/nginx/ssl/xx1/2_www.xx1.com.key;
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5:!EXPORT56:!EXP;
ssl_prefer_server_ciphers on;
版本持续更新,转发注明出处方更新迭代!
