这里使用nginx为例反向代理1Panel
使用nginx反向代理1Panel
vim /etc/nginx/conf.d/1panel.conf
server {
listen 80;
server_name demo.1panel.cn; # 自行修改成你的域名
client_max_body_size 500m; # 上传文件大小限制
location / {
# 这里的 ip 是后端 1Panel 的 ip
proxy_pass http://192.168.244.144:8090;
proxy_http_version 1.1;
proxy_buffering off;
proxy_request_buffering off;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $remote_addr;
}
}
# 检测配置文件
nginx -t
#重载nginx配置文件
nginx -s reload
推荐部署 ssl 使用更安全的 https 协议访问
vim /etc/nginx/conf.d/1panel.conf
server {
listen 80;
server_name demo.1panel.cn; # 自行修改成你的域名
return 301 https://$server_name$request_uri;
}
server {
listen 443 ssl http2;
server_name demo.1panel.cn; # 自行修改成你的域名
ssl_certificate sslkey/demo.1panel.cn_bundle.crt; # 自行设置证书
ssl_certificate_key sslkey/demo.1panel.cn_bundle.key; # 自行设置证书
ssl_session_timeout 1d;
ssl_session_cache shared:MozSSL:10m;
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
ssl_prefer_server_ciphers off;
ssl_protocols TLSv1.1 TLSv1.2;
add_header Strict-Transport-Security "max-age=63072000" always;
client_max_body_size 500m; # 文件上传大小限制
location / {
# 这里的 ip 是后端 1Panel 的 ip
proxy_pass http://192.168.244.144:8090;
proxy_http_version 1.1;
proxy_buffering off;
proxy_request_buffering off;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $remote_addr;
}
}
# 检测配置文件
nginx -t
#重载nginx配置文件
nginx -s reload