芥子屋
0%

离线安装 Nginx

发表于 更新于 分类于 阅读次数: Valine:
本文字数: 2.9k 阅读时长 ≈ 7 分钟

Preface

工作中难免有不能使用外网的环境,虽然说不能连外网安装软件真的是很费劲,但是为了安全着想也没得办法嘛

Prerequisites

Installing

  • 上传各个 tar 包至服务器的/opt目录,然后使用tar -xzvf解压

    1
    2
    3
    4
    scp /Users/s1mple/Downloads/nginx-1.12.2.tar.gz root@10.0.1.16:/opt
    scp /Users/s1mple/Downloads/pcre-8.41.tar.gz root@10.0.1.16:/opt
    scp /Users/s1mple/Downloads/zlib-1.2.11.tar.gz root@10.0.1.16:/opt
    scp /Users/s1mple/Downloads/openssl-1.0.2n.tar.gz root@10.0.1.16:/opt

  • 前往解压出来的/opt/nginx-1.12.2文件夹,其中包含了 Nginx 的配置脚本configure,运行这个脚本并指导刚才解压的各依赖的路径

    1
    ./configure --with-pcre=/opt/pcre-8.41 --with-zlib=/opt/zlib-1.2.11 --with-openssl=/opt/openssl-1.0.2n

  • 执行后的结果,生成了 Makefile 文件,并输出了一些配置的摘要。简单看一下,默认的 Nginx 安装在/usr/local/nginx下,以及启动脚本、配置、日志的路径

    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    16
    17
    18
    19
    20
    creating objs/Makefile

    Configuration summary
      + using PCRE library: /opt/pcre-8.41
      + using OpenSSL library: /opt/openssl-1.0.2n
      + using zlib library: /opt/zlib-1.2.11

      nginx path prefix: "/usr/local/nginx"
      nginx binary file: "/usr/local/nginx/sbin/nginx"
      nginx modules path: "/usr/local/nginx/modules"
      nginx configuration prefix: "/usr/local/nginx/conf"
      nginx configuration file: "/usr/local/nginx/conf/nginx.conf"
      nginx pid file: "/usr/local/nginx/logs/nginx.pid"
      nginx error log file: "/usr/local/nginx/logs/error.log"
      nginx http access log file: "/usr/local/nginx/logs/access.log"
      nginx http client request body temporary files: "client_body_temp"
      nginx http proxy temporary files: "proxy_temp"
      nginx http fastcgi temporary files: "fastcgi_temp"
      nginx http uwsgi temporary files: "uwsgi_temp"
      nginx http scgi temporary files: "scgi_temp"

  • makeLinux 下常用的构建工具,主要用于 C 语言,它会根据 Makefile 中的构建规则生成文件。在/opt/nginx-1.12.2目录下执行这俩个命令

    1
    2
    make
    make install

  • /opt/nginx-1.12.2目录下的 Makefile 文件包含了实际执行的命令。-f指定了刚刚生成的/objs/Makefile文件

    1
    2
    3
    default:    build
    build:      $(MAKE) -f objs/Makefile
    install:    $(MAKE) -f objs/Makefile install

  • 构建完成后前往/usr/local/nginx查看生成的文件

    1
    2
    3
    $ ls /usr/local/nginx
    client_body_temp  fastcgi_temp  logs        sbin       uwsgi_temp
    conf              html          proxy_temp  scgi_temp

Running

  • 运行sbin/nginx启动脚本并验证是否已启动

    1
    2
    3
    4
    $ ./sbin/nginx
    $ ps -ef | grep nginx
    root     31402     1  0 11:48 ?        00:00:00 nginx: master process ./nginx
    nobody   31403 31402  0 11:48 ?        00:00:00 nginx: worker process

  • 浏览器访问 10.0.1.16 也已显示 Nginx 启动成功
    Screen-Shot-2018-01-22-at-11.50.30-AM

Configuring

  • /usr/local/nginx/conf中包含了 Nginx 配置文件,我们先做个备份

    1
    cp nginx.conf nginx.conf.bk

  • 修改nginx.conf文件,在http{}中加入这一行表示引入外部配置文件

    1
    include /usr/local/nginx/conf/conf.d/*.conf;

  • /usr/local/nginx/conf中创建conf.d文件夹,并创建自己的配置文件,注意要以.conf结尾,添加server{}后重启 Nginx 即可

    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    server {                                                                                
        listen 80;
        listen [::]:80;

        server_name 10.0.1.16;
        root /var/www/dist;

        location / {
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
            proxy_set_header X-Forwarded-Proto $scheme;
            proxy_set_header X-Real-IP $remote_addr;
            proxy_set_header Host $http_host;
        }
    }

Postscripts

安装下来感觉就是,本来一条命令就解决的事,你比如说 sudo apt-get install nginx 结果强行搞这么复杂,网络带来的便利无疑是巨大的,所以说安全方面的意识和技能非常关键

References