推薦參考地址:
MailinglistARChives官方討論區
http://marc.info/?l=nginx
Nginx常見應用技術指南[NginxTips]
http://bbs.linuxtone.org/thread-1685-1-1.html
本日誌內容來自互聯網和平日使用經驗,整理一下方便日後參考。
正則表達式匹配,其中:
*~爲區分大小寫匹配
*~*爲不區分大小寫匹配
*!~和!~*分別爲區分大小寫不匹配及不區分大小寫不匹配
文件及目錄匹配,其中:
*-f和!-f用來判斷是否存在文件
*-d和!-d用來判斷是否存在目錄
*-e和!-e用來判斷是否存在文件或目錄
*-x和!-x用來判斷文件是否可執行
flag標記有:
*last相當於Apache裏的[L]標記,表示完成rewrite
*break終止匹配,不再匹配後面的規則
*redirect返回302臨時重定向地址欄會顯示跳轉後的地址
*permanent返回301永久重定向地址欄會顯示跳轉後的地址
一些可用的全局變量有,可以用做條件判斷(待補全)
$args
$content_length
$content_type
$document_root
$document_uri
$host
$http_user_agent
$http_cookie
$limit_rate
$request_body_file
$request_method
$remote_addr
$remote_port
$remote_user
$request_filename
$request_uri
$query_string
$scheme
$server_protocol
$server_addr
$server_name
$server_port
$uri
結合QeePHP的例子
if(!-d$request_filename){
rewrite^/([a-z-A-Z]+)/([a-z-A-Z]+)/?(.*)$/index.php?namespace=user&controller=$1&action=$2&$3last;
rewrite^/([a-z-A-Z]+)/?$/index.php?namespace=user&controller=$1last;
break;
多目錄轉成參數
abc.domian.com/sort/2=>abc.domian.com/index.php?act=sort&name=abc&id=2
if($host~*(.*)\.domain\.com){
set$sub_name$1;
rewrite^/sort\/(\d+)\/?$/index.php?act=sort&cid=$sub_name&id=$1last;
}
目錄對換
/123456/xxxx->/xxxx?id=123456
rewrite^/(\d+)/(.+)//$2?id=$1last;
例如下面設定nginx在用戶使用ie的使用重定向到/nginx-ie目錄下:
if($http_user_agent~MSIE){
rewrite^(.*)$/nginx-ie/$1break;
}
目錄自動加“/”
if(-d$request_filename){
rewrite^/(.*)([^/])$http://$host/$1$2/permanent;
}
禁止htaccess
location~/\.ht{
denyall;
}
禁止多個目錄
location~^/(cron|templates)/{
denyall;
break;
}
禁止以/data開頭的文件
可以禁止/data/下多級目錄下.log.txt等請求;
location~^/data{
denyall;
}
禁止單個目錄
不能禁止.log.txt能請求
location/searchword/cron/{
denyall;
}
禁止單個文件
location~/data/sql/data.sql{
denyall;
}
給favicon.ico和robots.txt設置過期時間;
這裏爲favicon.ico爲99天,robots.txt爲7天並不記錄404錯誤日誌
location~(favicon.ico){
log_not_foundoff;
expires99d;
break;
}
location~(robots.txt){
log_not_foundoff;
expires7d;
break;
}
設定某個文件的過期時間;這裏爲600秒,並不記錄訪問日誌
location^~/html/scripts/loadhead_1.js{
access_logoff;
root/opt/lampp/htdocs/web;
expires600;
break;
}
文件反盜鏈並設置過期時間
這裏的return412爲自定義的http狀態碼,默認爲403,方便找出正確的盜鏈的請求
“rewrite^/http://leech.c1gstudio.com/leech.gif;”顯示一張防盜鏈圖片
“access_logoff;”不記錄訪問日誌,減輕壓力
“expires3d”所有文件3天的瀏覽器緩存
location~*^.+\.(jpg|jpeg|gif|png|swf|rar|zip|css|js)${
valid_referersnoneblocked*.c1gstudio.com*.c1gstudio.netlocalhost208.97.167.194;
if($invalid_referer){
rewrite^/http://leech.c1gstudio.com/leech.gif;
return412;
break;
}
access_logoff;
root/opt/lampp/htdocs/web;
expires3d;
break;
}
只充許固定ip訪問網站,並加上密碼
root/opt/htdocs/www;
allow208.97.167.194;
allow222.33.1.2;
allow231.152.49.4;
denyall;
auth_basic"C1G_ADMIN";
auth_basic_user_filehtpasswd;
將多級目錄下的文件轉成一個文件,增強seo效果
/job-123-456-789.html指向/job/123/456/789.html
rewrite^/job-([0-9]+)-([0-9]+)-([0-9]+)\.html$/job/$1/$2/jobshow_$3.htmllast;
將根目錄下某個文件夾指向2級目錄
如/shanghaijob/指向/area/shanghai/
如果你將last改成permanent,那麼瀏覽器地址欄顯是/location/shanghai/
rewrite^/([0-9a-z]+)job/(.*)$/area/$1/$2last;
上面例子有個問題是訪問/shanghai時將不會匹配
rewrite^/([0-9a-z]+)job$/area/$1/last;
rewrite^/([0-9a-z]+)job/(.*)$/area/$1/$2last;
這樣/shanghai也可以訪問了,但頁面中的相對鏈接無法使用,
如./list_1.html真實地址是/area/shanghia/list_1.html會變成/list_1.html,導至無法訪問。
那我加上自動跳轉也是不行咯
(-d$request_filename)它有個條件是必需爲真實目錄,而我的rewrite不是的,所以沒有效果
if(-d$request_filename){
rewrite^/(.*)([^/])$http://$host/$1$2/permanent;
}
知道原因後就好辦了,讓我手動跳轉吧
rewrite^/([0-9a-z]+)job$/$1job/permanent;
rewrite^/([0-9a-z]+)job/(.*)$/area/$1/$2last;
文件和目錄不存在的時候重定向:
if(!-e$request_filename){
proxy_passhttp://127.0.0.1;
}
域名跳轉
server
{
listen80;
server_namejump.c1gstudio.com;
indexindex.htmlindex.htmindex.php;
root/opt/lampp/htdocs/www;
rewrite^/http://www.c1gstudio.com/;
access_logoff;
}
多域名轉向
server_namewww.c1gstudio.comwww.c1gstudio.net;
indexindex.htmlindex.htmindex.php;
root/opt/lampp/htdocs;
if($host~"c1gstudio\.net"){
rewrite^(.*)http://www.c1gstudio.com$1permanent;
}
三級域名跳轉
if($http_host~*"^(.*)\.i\.c1gstudio\.com$"){
rewrite^(.*)http://top.c1gstudio.com$1;
break;
}
域名鏡向
server
{
listen80;
server_namemirror.c1gstudio.com;
indexindex.htmlindex.htmindex.php;
root/opt/lampp/htdocs/www;
rewrite^/(.*)http://www.c1gstudio.com/$1last;
access_logoff;
}
某個子目錄作鏡向
location^~/zhaopinhui{
rewrite^.+http://zph.c1gstudio.com/last;
break;
}
discuzucenterhome(uchome)rewrite
rewrite^/(space|network)-(.+)\.html$/$1.php?rewrite=$2last;
rewrite^/(space|network)\.html$/$1.phplast;
rewrite^/([0-9]+)$/space.php?uid=$1last;
discuz7rewrite
rewrite^(.*)/archiver/((fid|tid)-[\w\-]+\.html)$$1/archiver/index.php?$2last;
rewrite^(.*)/forum-([0-9]+)-([0-9]+)\.html$$1/forumdisplay.php?fid=$2&page=$3last;
rewrite^(.*)/thread-([0-9]+)-([0-9]+)-([0-9]+)\.html$$1/viewthread.php?tid=$2&extra=page\%3D$4&page=$3last;
rewrite^(.*)/profile-(username|uid)-(.+)\.html$$1/viewpro.php?$2=$3last;
rewrite^(.*)/space-(username|uid)-(.+)\.html$$1/space.php?$2=$3last;
rewrite^(.*)/tag-(.+)\.html$$1/tag.php?name=$2last;
給discuz某版塊單獨配置域名
server_namebbs.c1gstudio.comnews.c1gstudio.com;
location=/{
if($http_host~news\.c1gstudio.com$){
rewrite^.+http://news.c1gstudio.com/forum-831-1.htmllast;
break;
}
}
discuzucenter頭像rewrite優化
location^~/ucenter{
location~.*\.php?$
{
#fastcgi_passunix:/tmp/php-cgi.sock;
fastcgi_pass127.0.0.1:9000;
fastcgi_indexindex.php;
includefcgi.conf;
}
location/ucenter/data/avatar{
log_not_foundoff;
access_logoff;
location~/(.*)_big\.jpg${
error_page404/ucenter/p_w_picpaths/noavatar_big.gif;
}
location~/(.*)_middle\.jpg${
error_page404/ucenter/p_w_picpaths/noavatar_middle.gif;
}
location~/(.*)_small\.jpg${
error_page404/ucenter/p_w_picpaths/noavatar_small.gif;
}
expires300;
break;
}
}
jspacerewrite
location~.*\.php?$
{
#fastcgi_passunix:/tmp/php-cgi.sock;
fastcgi_pass127.0.0.1:9000;
fastcgi_indexindex.php;
includefcgi.conf;
}
location~*^/index.php/
{
rewrite^/index.php/(.*)/index.php?$1break;
fastcgi_pass127.0.0.1:9000;
fastcgi_indexindex.php;
includefcgi.conf;
}
wordpre***ewrite
location/{
indexindex.htmlindex.php;
if(-f$request_filename/index.html){
rewrite(.*)$1/index.htmlbreak;
}
if(-f$request_filename/index.php){
rewrite(.*)$1/index.php;
}
if(!-e$request_filename)
{
rewrite(.*)/index.php;
}
}
2010-1-11更新
discuzx1.5rewrite
rewrite^([^\.]*)/topic-(.+)\.html$$1/portal.php?mod=topic&topic=$2last;
rewrite^([^\.]*)/article-([0-9]+)-([0-9]+)\.html$$1/portal.php?mod=view&aid=$2&page=$3last;
rewrite^([^\.]*)/forum-(\w+)-([0-9]+)\.html$$1/forum.php?mod=forumdisplay&fid=$2&page=$3last;
rewrite^([^\.]*)/thread-([0-9]+)-([0-9]+)-([0-9]+)\.html$$1/forum.php?mod=viewthread&tid=$2&extra=page%3D$4&page=$3last;
rewrite^([^\.]*)/group-([0-9]+)-([0-9]+)\.html$$1/forum.php?mod=group&fid=$2&page=$3last;
rewrite^([^\.]*)/space-(username|uid)-(.+)\.html$$1/home.php?mod=space&$2=$3last;
rewrite^([^\.]*)/([a-z]+)-(.+)\.html$$1/$2.php?rewrite=$3last;
if(!-e$request_filename){
return404;
}
動態參數rewrite
以discuz7.2到discuzx1.5爲例
if($query_string~*tid=([0-9]+)){
set$id$1;
rewrite"^(.*)/viewthread.php$"$1/forum.php?mod=viewthread&tid=$id&extra=page%3D&page=1last;
}
if($query_string~*gid=([0-9]+)){
set$id$1;
rewrite"^(.*)/index.php$"$1/forum.php?gid=$idlast;
}
rewrite^([^\.]*)/archiver/$$1/forum.php?archiver=1last;
2011-4-21更新
nginx嵌套if
nginx不支持ifand和多層嵌套if,讓我頭痛很久,需要通過其它方法實現.
下面是把訪問鏡像網站cnc.c1gstudio.com的爬蟲轉到www站.
set$needrewrite'';
if($http_user_agent~*(baiduspider|googlebot|soso|bing|sogou|yahoo|sohu-search|yodao|YoudaoBot|robozilla|msnbot|MJ12bot|NHN|Twiceler)){
set$needrewrite'o';
}
if($host~cnc\.c1gstudio\.com){
set$needrewrite"${needrewrite}k";
}
if($needrewrite=ok){
#return403;
rewrite^(.*)http://www.c1gstudio.com$1permanent;
}
reloadnginx後可以用curl來做測試
curl-I-A“soso”cnc.c1gstudio.com
apache轉nginx規則工具
http://www.ubuntuset.com/apache2nginx