nginx proxy pass [ best practices ]

1、/etc/nginx/nginx.conf worker_processes 1; #auto; events { worker_connections 3000; #786; # multi_accept on; } http { server_tokens off; #open this line resolver 8.8.8.8 8.8.4.4 valid=300s; #resolver dns server proxy_cache_path /var/cache/proxy-nginx levels=1:2 keys_zone=proxy-cache:10m max_size=3g inactive=1d use_temp_path=off; add_header X-Cache $upstream_cache_status; #讓Header顯示是否有Cache:HIT命中 MISS失敗 BYPASS略過 proxy_headers_hash_max_size 51200; #add this line proxy_headers_hash_bucket_size 6400; #add this line log_format main ‘$remote_addr $status $request $body_bytes_sent [$time_local] $http_user_agent $http_referer $http_x_forwarded_for $upstream_addr $upstream_status $upstream_cache_status $upstream_response_time’; access_log /var/log/nginx/access.log main buffer=1m; #or maybe note # because disk space ...

2017-11-03 · 4 min · 669 words · Me

Port Forwarding Gateway via iptables on Linux On AWS

Better way is Amazon Linux and Enhanced Networking on Linux C3、C4、M4 http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sriov-networking.html I think is better for performace.

2017-11-02 · 1 min · 18 words · Me

iptraf

Better way is Amazon Linux and Enhanced Networking on Linux C3、C4、M4 http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sriov-networking.html I think is better for performace.

2017-11-02 · 1 min · 18 words · Me

Port Forwarding Gateway via iptables on Linux

1、 http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_NAT_Instance.html#NATSG 1.1、Create instance form ami :ami-vpc-nat-hvm choese best new ***NAT AMI*** 1.2、 Check.IPv4 forwarding is enabled and ICMP redirects are disabled in /etc/sysctl.d/10-nat-settings.conf IPv4 forwarding =1 Run.A script located at /usr/sbin/configure-pat.sh runs at startup and configures iptables IP masquerading. Here have problem, so must delete POSTROUTING sudo iptables -t nat -D POSTROUTING 1 2、 https://holtstrom.com/michael/blog/post/400/Port-Forwarding-Gateway-via-iptables-on-Linux.html eth0 10.0.0.219 52.78.165.129 eth1 10.0.1.149 web server 10.0.1.249 iptables -vxnL –line-numbers iptables -t nat -vxnL –line-numbers ...

2017-11-01 · 2 min · 235 words · Me

視訊到手機網頁 技術整理

2017-10-23 · 0 min · 0 words · Me