公司搞了三臺ECS,其中兩臺放web專案,另外一臺裝了nginx搞負載均衡,但是配置好了一直404.
剛開始是在本地內網搞了三臺機子先試著配置了nginx,然后成功了。
相同的配置放在ECS上就404了,也試過不用負載單個IP指向能成功,一用upstream就404,如果給Host賦值IP的話能解決但是不知道這樣是不是就沒有負載均衡的功能了,實在不知道該怎么解決 orz
upstream www.keysi.com{
server 118.31.44.28;
server 116.62.143.235;
}
server {
listen 443;
server_name www.keysi.com;
ssl on;
ssl_certificate /etc/nginx/ca/server/server.crt;
ssl_certificate_key /etc/nginx/ca/server/server.key;
ssl_client_certificate /etc/nginx/ca/private/ca.crt;
ssl_session_timeout 5m;
ssl_verify_client on;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
location / {
#proxy_pass http://118.31.44.28;
#proxy_set_header Host "118.31.44.28";
proxy_redirect off;
proxy_pass http://www.keysi.com;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
root html;
index index.html index.htm;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root /usr/share/nginx/html;
}
}
uj5u.com熱心網友回復:
upstream www.keysi.com{server 118.31.44.28;
server 116.62.143.235;
}
埠呀,兄弟~~~~~
uj5u.com熱心網友回復:
ssl_client_certificate /etc/nginx/ca/private/ca.crt; 這個不要,,這是客戶端的
ssl_protocols TLSv1.1 TLSv1.2; 協議配這兩個就行了
ssl_ciphers RC4:HIGH:!aNULL:!MD5; 加密用這,你配的漏掃過不了
轉載請註明出處,本文鏈接:https://www.uj5u.com/caozuo/93276.html
標籤:系統維護與使用區
上一篇:squid正向代理安全問題