作者: 老仙
dddddddddddd
作者: 老仙
dddddddddddd
作者: 老仙
求大佬们指点,
买了个鸡仔云,打算穿透家里的小鸡出来做后端。
已经用frp穿透到28000端口,
已知入口IP为:1.2.3.4
通过curl 测试IP得值:4.3.2.1
应该是出入口IP不同?
通过指定hosts访问测试站点,但查看日志,获取到的IP全都是4.3.2.1
如果启用"proxy_protocol"则浏览器无法访问,就注释了。
openresty即nginx加功能版,http配置里设置了
set_real_ip_from 0.0.0.0/0; set_real_ip_from 0.0.0.0/0;
real_ip_header X-Forwarded-For; real_ip_header X-Forwarded-For;复制代码复制代码
server配置如下
server {server {
listen 80 ; listen 80 ;
listen 443 ssl http2 ; listen 443 ssl http2 ;
# 启用代理协议 # 启用代理协议
#listen 80 proxy_protocol ; #listen 80 proxy_protocol ;
#listen 443 ssl http2 proxy_protocol ; #listen 443 ssl http2 proxy_protocol ;
server_name cq.abc.local; server_name cq.abc.local;
index index.php index.html index.htm default.php default.htm default.html; index index.php index.html index.htm default.php default.htm default.html;
proxy_set_header Host $host; proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Host $server_name; proxy_set_header X-Forwarded-Host $server_name;
proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Real-IP $remote_addr;
proxy_http_version 1.1; proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade; proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade"; proxy_set_header Connection "upgrade";
# 配置用于获取真实客户端IP的头信息 # 配置用于获取真实客户端IP的头信息
#real_ip_header proxy_protocol; #real_ip_header proxy_protocol;
real_ip_recursive on; real_ip_recursive on;
# #
access_log /www/sites/cq.abc.local/log/access.log; access_log /www/sites/cq.abc.local/log/access.log;
error_log /www/sites/cq.abc.local/log/error.log; error_log /www/sites/cq.abc.local/log/error.log;
location ^~ /.well-known/acme-challenge { location ^~ /.well-known/acme-challenge {
allow all; allow all;
root /usr/share/nginx/html; root /usr/share/nginx/html;
} }
root /www/sites/cq.abc.local/index; root /www/sites/cq.abc.local/index;
if ($scheme = http) { if ($scheme = http) {
return 301 https://$host$request_uri; return 301 https://$host$request_uri;
} }
ssl_certificate /www/sites/cq.abc.local/ssl/fullchain.pem; ssl_certificate /www/sites/cq.abc.local/ssl/fullchain.pem;
ssl_certificate_key /www/sites/cq.abc.local/ssl/privkey.pem; ssl_certificate_key /www/sites/cq.abc.local/ssl/privkey.pem;
ssl_protocols TLSv1.3; ssl_protocols TLSv1.3;
ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5; ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
ssl_prefer_server_ciphers on; ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:10m; ssl_session_cache shared:SSL:10m;
ssl_session_timeout 10m; ssl_session_timeout 10m;
add_header Strict-Transport-Security "max-age=31536000"; add_header Strict-Transport-Security "max-age=31536000";
error_page 497 https://$host$request_uri; error_page 497 https://$host$request_uri;
proxy_set_header X-Forwarded-Proto https; proxy_set_header X-Forwarded-Proto https;
ssl_stapling on; ssl_stapling on;
ssl_stapling_verify on; ssl_stapling_verify on;
include /www/sites/cq.abc.local/proxy/.conf; include /www/sites/cq.abc.local/proxy/.conf;
}}复制代码复制代码
反代的location如下
location ^~ / {location ^~ / {
proxy_pass https://127.0.0.1:28000; proxy_pass https://127.0.0.1:28000;
proxy_set_header Host $host; proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header REMOTE-HOST $remote_addr; proxy_set_header REMOTE-HOST $remote_addr;
proxy_set_header Upgrade $http_upgrade; proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade"; proxy_set_header Connection "upgrade";
proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Proto $scheme;
proxy_http_version 1.1; proxy_http_version 1.1;
add_header X-Cache $upstream_cache_status; add_header X-Cache $upstream_cache_status;
add_header Strict-Transport-Security "max-age=31536000"; add_header Strict-Transport-Security "max-age=31536000";
add_header Cache-Control no-cache; add_header Cache-Control no-cache;
# 禁用缓存 # 禁用缓存
proxy_cache off; proxy_cache off;
# Disable buffering when the nginx proxy gets very resource heavy upon streaming # Disable buffering when the nginx proxy gets very resource heavy upon streaming
proxy_buffering off; proxy_buffering off;
}}复制代码复制代码
作者: 悠悠
续费呢?
作者: 交配交的人
https://hostloc.com/forum.php?mod=redirect&goto=findpost&pid=15607971&ptid=1314792- 蓝光666 发表于 2024-6-7 10:55蓝光666 发表于 2024-6-7 10:55
不如阿里36
不如阿里36
36在哪?新人与狗吗?
作者: mahunta
感觉没啥用啊
作者: qxwo
华为云36
作者: 蓝光666
不如阿里36
作者: 2013140
https://hostloc.com/forum.php?mod=redirect&goto=findpost&pid=15607956&ptid=1314792- RyanLuan 发表于 2024-6-7 10:52RyanLuan 发表于 2024-6-7 10:52
我靠!!没套路吧?没有我来一台
我靠!!没套路吧?没有我来一台
这套路个啥啊.
作者: 爱国者捣蛋
自动成为楼主下线吗,不得送mjj点福利
作者: RyanLuan
我靠!!没套路吧?没有我来一台
作者: 2013140
_ 本帖最后由 2013140 于 2024-6-7 15:26 编辑 本帖最后由 2013140 于 2024-6-7 15:26 编辑_
50元/1年,京东云主机,安全稳定,性能强劲,新客下单专享特惠
链接:https://www.jdcloud.com/cn/pages/yunhuigou?utm_source=cpscf&type=1&channelReferrer=3458389916680582&channelCode=JD_YTKCPS
58楼送 国外轻量机器一台 配置 1-2-30M 直接给成品
98楼 国外轻量机器一台 配置 1-2-30M 直接给成品
188楼 香港轻量机器一台 配置 1-2-30M 直接给成品
58楼已经私发
88楼已经私发
作者: valueshine
紫米被抢注了,只能换个名字
作者: Mek
因为紫米被抢注了所以换了个名字,背靠小米带私协,质量很不错的
作者: 赵博士
酷态科是小米生态链企业旗下的充电宝品牌,主打高性能、高品质的充电产品。酷态科充电宝的优势主要体现在以下几个方面:
作者: vultrlinode
有两个他家的充电头,料很足,性价比不错。
作者: zmoe
酷态科 = ZMI ≈ 小米
作者: 柠檬精
不知道,反正当时 市面上120w充电宝就他们家有。
作者: NEXT666
小米生态链呗,相当于有小米的背书
作者: 人穷器短
没兴趣和精力研究的人 首选性价比