2. 部署指南

nginx 部署 (+geoip,brotli,ngx_lua_waf,telegraf,filebeat) 使用维护 安装部署 docker rancher

https://hub.docker.com/_/nginx/

http://nginx.org/en/download.html


mkdir  -p  /data/file/logs/nginx/  &&  chmod -R 777  /data/file/logs/nginx/


# 申请通配符HTTPS证书

https://abc.htmltoo.com/thread-46442.htm

# nginx-quic-waf 部署

https://abc.htmltoo.com/thread-46783.htm

# nginx-quic 部署

https://abc.htmltoo.com/thread-46788.htm

# tengine-3.1.0

https://abc.htmltoo.com/thread-46793.htm

https://abc.htmltoo.com/thread-46547.htm

# httpd-apache

https://abc.htmltoo.com/thread-46545.htm


#docker run

docker run -d  --net=host  --name nginx  --hostname nginx  --restart=always  --privileged=true --user=root    --ulimit nofile=262144:262144   -v /data/site/docker/env/nginx/nginx/nginx.conf:/etc/nginx/nginx.conf:ro  -v  /data/site/docker/env/nginx/nginx/conf.d:/etc/nginx/conf.d:ro  -v /data/site/docker/env/nginx/nginx/fastcgi_params:/etc/nginx/fastcgi_params:ro  -v /data/file/pagespeed:/var/ngx_pagespeed_cache  -v /data/site:/data/site   -v /data/file:/data/file    -v  /data/site/docker/env/nginx/nginx/hosts:/etc/hosts:ro  hub.htmltoo.com:5000/nginx:nginx-1.22.1

-

-p 80:80 

-p 443:443  

-e TZ='Asia/Shanghai'

-获取真实ip

--net=host 

-

-v  /data/site/docker/env/nginx/nginx/hosts:/etc/hosts:ro 

-v  /data/site/docker/env/nginx/nginx/resolv.conf:/etc/resolv.conf:ro


# labs

docker run -d  --name nginxlabs  --hostname  nginx  --restart=always -v /data/site:/data/site  -v /data/file:/data/file  nginx:1.24.0-bullseye


--net=host

-1.22.1  正常

-1.23.3  异常


mkdir -p /data/file/logs/nginx/

docker exec -it nginxlabs /bin/bash

docker exec -it nginx  /bin/bash


nginx安装ngx_lua_waf模块,以及添加Brotli算法压缩网站:  https://abc.htmltoo.com/thread-44998.htm

nginx-编译:  https://abc.htmltoo.com/thread-668.htm

nginx 编译添加新的模块:https://abc.htmltoo.com/thread-46789.htm


---最新nginx的30条日志

docker logs -f --tail="30" nginx

---查找包含 “error” 的log:

docker logs -f --tail="30" nginx | grep error


# 提交本地新镜像

---docker提交镜像:   https://abc.htmltoo.com/thread-45169.htm

http://hub.htmltoo.com:5100   # docker Registry


docker commit -m="update" -a="htmltoo.com" nginx  hub.htmltoo.com:5000/nginx:nginx-1.22.1

docker push hub.htmltoo.com:5000/nginx:nginx-1.22.1


docker save  hub.htmltoo.com:5000/nginx:nginx-1.22.1 | gzip > /data/site/htmltoo.f/htmltoo.up/soft/docker.tar/nginx-1.22.1.tar.gz

# load - 镜像解压

docker load < /opt/nginx-1.22.1.tar.gz


# 提交阿里镜像

docker login --username=adongquann@aliyun.com registry.cn-zhangjiakou.aliyuncs.com

Pass: W~1

docker commit -m="update" -a="htmltoo.com" 63629   63629f98a64d  registry.cn-zhangjiakou.aliyuncs.com/htmltoo/nginx:1.9.6

docker push registry.cn-zhangjiakou.aliyuncs.com/htmltoo/nginx:1.9.6

---从Registry中拉取镜像

docker pull  registry.cn-zhangjiakou.aliyuncs.com/htmltoo/nginx:1.9.6


# 保存镜像: save - 加载镜像: load

docker save nginxlabs > /data/docker/image/nginx1.9.4.tar

docker load < /data/docker/image/nginx1.9.4.tar

docker stop nginxlabs


=============nginx-waf-20190201==============

应用: basic -> 添加服务: nginx 

nginx:latest

or  140.cndo.org:5000/http:nginx-waf-20190201   (+geoip,brotli,ngx_lua_waf)

卷:

/data/site:/data/site

/data/file:/data/file

/data/docker/nginx/nginx-online/nginx.conf:/etc/nginx/nginx.conf:ro

/data/docker/nginx/nginx-online/conf.d:/etc/nginx/conf.d:ro

/data/docker/nginx/nginx-online/fastcgi_params:/etc/nginx/fastcgi_params:ro


---/data/site/docker/env/nginx/nginx/hosts

172.18.0.73  php73
172.18.0.74  php74
172.18.0.81  php81
172.18.0.82  php82
172.18.0.56  php56
172.18.0.140  php740
172.18.0.8  httpd
172.18.0.6   mysql
172.18.0.79  keydb
172.18.0.211  memcached
172.18.0.181  bookstack

- /data/site/docker/env/nginx/nginx/resolv.conf

# 海外
nameserver 8.8.8.8
nameserver 8.8.4.4
# 国内
nameserver 114.114.114.114



-查看所有容器名称,ip

docker inspect --format='{{.Name}} => {{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' $(docker ps -aq)


签名:这个人很懒,什么也没有留下!
收藏的用户(0 X
正在加载信息~
猜你喜欢:
最新回复 (0)
返回
发新帖
作者最近主题:
热门主题: