nginx高級模塊有哪些

server?{ ????listen?7001; ????server_name?study; ????root?/home/jaryn/nginx_study/pic;  ????????location?/?{ ????????????????secure_link?$arg_md5,$arg_expires; ????????????????#md5生成方法和下面腳本一致，jaryn可以看成是服務端的“鹽值” ????????????????secure_link_md5?"$secure_link_expires$uri?jaryn";  ????????????????if?($secure_link?=?"")?{ ????????????????????????return?403; ????????????????} ????????????????if?($secure_link?=?"0")?{ ????????????????????????return?410; ????????????????} ????????} }

#!/bin/sh # servername="www.jaryn.cn:7001" download_file="/test.jepg" time_num=$(date?-d?"2018-9-9?00:00:00"?+%s) secret_num="jaryn"  #利用openssl生成鏈接中的md5參數 res=$(echo?-n?"${time_num}${download_file}?${secret_num}"|openssl?md5?-binary?|?openssl?base64?|?tr?+/?-_?|?tr?-d?=?) echo?"http://${servername}${download_file}?md5=${res}&expires=${time_num}"

[root@localhost?nginx_study]#?sh?secure_link_module.sh? http://www.jaryn.cn:7001/test.jepg?md5=MqtYCSugfDKmLiKuskPmuA&expires=1536422400

yum?install?nginx-module-geoip

nginx-module-geoip

vim?/etc/yum.repos.d/nginx.repo

?[nginx] name=nginx?repo baseurl=http://nginx.org/packages/centos/$releasever/$basearch/ gpgcheck=0 enabled=1

cd?/usr/share/nginx/modules/ vim?self.conf

load_module?"/usr/lib64/nginx/modules/ngx_http_geoip_module.so";

國家文件：http://geolite.maxmind.com/download/geoip/database/GeoLiteCountry/GeoIP.dat.gz 城市文件：http://geolite.maxmind.com/download/geoip/database/GeoLiteCity.dat.gz

gunzip?GeoIP.dat.gz gunzip?GeoLiteCity.dat.gz

geoip_country?/home/jaryn/nginx_study/data/GeoIP.dat; geoip_city?/home/jaryn/nginx_study/data/GeoLiteCity.dat; server?{ ????listen?7001; ????server_name?study;  ????????location?/?{ ????????????????if?($geoip_country_code?!=?CN)?{ ????????????????????????return?403; ????????????????} ????????????????root?/home/project/nginx-code; ????????????????index?admin.html; ????????} ????????#通過訪問/myip可以獲取相應的ip和geo信息 ????????location?/myip?{ ????????????????default_type?text/plain; ????????????????return?200?"$remote_addr?$geoip_country_name?$geoip_country_code?$geoip_city"; ????????} }

nginx:?[emerg]?module?"/usr/lib64/nginx/modules/ngx_http_geoip_module.so"?version?1012002?instead?of?1014000?in?/usr/share/nginx/modules/mod-http-geoip.conf:1

?yum?remove?nginx-mod* ?yum?install?nginx-module-*

#利用openssl生成  openssl?genrsa?-idea?-out?jaryn.key?1024

#下面的命令需要根據提示輸入相應的信息，輸入即可  openssl?req?-new?-key?jaryn.key?-out?jaryn.csr  #打包成crt  openssl?x509?-req?-days?3650?-in?jaryn.csr?-signkey?jaryn.key?-out?jaryn.crt   #也可以直接用key生成crt文件，keyout會重新生成.key文件，重啟nginx的時候就不需要輸入密碼了  openssl?req?-days?36500?-x509?-sha256?-nodes?-newkey?rsa:2048?-keyout?jaryn.key??-out?jaryn_a.crt

????server?{ ????????listen?443; ????????server_name?studyssl;  ????????ssl?on; ????????ssl_certificate?/home/jaryn/nginx_study/ssl_key/jaryn.crt; ????????ssl_certificate_key?/home/jaryn/nginx_study/ssl_key/jaryn.key;  ????????index?admin.html; ????????location?/?{ ????????????????root??/home/project/nginx-code; ????????} ????}

`直接訪問你的地址，https默認443：https://192.168.1.10/admin.html`

????server?{ ????????listen?443; ????????server_name?studyssl;  ????????ssl?on; ????????ssl_session_cache?shared:SSL:10m; ????????ssl_session_timeout?10m; ????????ssl_certificate?/home/jaryn/nginx_study/ssl_key/jaryn.crt; ????????ssl_certificate_key?/home/jaryn/nginx_study/ssl_key/jaryn.key;  ????????index?admin.html; ????????location?/?{ ????????????????root??/home/project/nginx-code; ????????} ????}