When i login to a PrestaShop web site, i get error on a Plesk server.
|
1 |
502 Bad Gateway |
On checking error login for the site in folder /var/www/vhosts/domain.com/logs/proxy_error_log, i found following error message proxy_error_log:2020/11/25 19:41:41 [error] 1809#0: *39664 upstream sent too big header while reading response header from upstream, client: 59.92.71.53, server: tulivesi.com, request: “POST /en/login?back=my-account HTTP/2.0”, […]
On Ubuntu/Debian, install nginx geoip module with
|
1 |
apt install geoip-database libgeoip1 libnginx-mod-http-geoip -y |
Now edit nginx.conf
|
1 |
vi /etc/nginx/nginx.conf |
Find
|
1 |
http { |
Add below
|
1 2 3 4 5 6 7 |
geoip_country /usr/share/GeoIP/GeoIP.dat; map $geoip_country_code $my_country_blocker { default no; US yes; AU yes; CA yes; } |
You can add 2 letter country code and set ye/no as required. To implement GeoIP blocking for a web site, you need to edit server entry for the web site. In this cause, i will use the default […]
Start Nginx
|
1 |
nginx |
Stop Nginx
|
1 |
nginx -s stop |
Reload Nginx
|
1 |
nginx -s reload |
Test Nginx configuration
|
1 |
nginx -t |
See Nginx […]
Install Requirements CentOS/RHEL/Fedora
|
1 |
yum install glib2-devel openssl-devel pcre-devel bzip2-devel gzip-devel |
Ubuntu/Debian
|
1 |
apt-get install libpcre3-dev |
Create nginx user
|
1 |
useradd -c "Nginx user" -s /bin/false -r -d /var/lib/nginx nginx |
Downoad and insta Nginx You can download latest version of Nginx source code from https://nginx.org/en/download.html To install version 1.19.2, run
|
1 2 3 4 5 6 7 |
cd /usr/local/src wget https://nginx.org/download/nginx-1.19.2.tar.gz tar xvf nginx-1.19.2.tar.gz cd nginx-1.19.2 ./configure --user=nginx --group=nginx --prefix=/usr/share --sbin-path=/usr/sbin/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/log/run/nginx.pid --lock-path=/var/log/lock/subsys/nginx --with-http_ssl_module --with-http_realip_module --with-http_addition_module --with-http_sub_module --with-http_dav_module --with-http_flv_module --with-http_gzip_static_module --with-http_stub_status_module --with-http_mp4_module --with-http_secure_link_module --with-http_v2_module make make install |
Test Nginx To start nginx run
|
1 |
/usr/sbin/nginx |
Configuration file is at
|
1 |
/etc/nginx/nginx.conf |
See Nginx […]
Nginx Proxy Manager is Docker based GUI for managing Nginx reverse proxy. It support LetsEncrypt free SSL. https://nginxproxymanager.com To install, create a folder
|
1 2 |
mkdir nginx-proxy-manager cd nginx-proxy-manager |
Create config.json file
|
1 |
vi config.json |
Add
|
1 2 3 4 5 6 7 8 9 10 |
{ "database": { "engine": "mysql", "host": "db", "name": "npm", "user": "npm", "password": "npm", "port": 3306 } } |
Creaye docker-compose.yaml file
|
1 |
vi docker-compose.yaml |
add following content
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 |
version: '3' services: app: image: 'jc21/nginx-proxy-manager:latest' ports: - '80:80' - '81:81' - '443:443' volumes: - ./config.json:/app/config/production.json - ./data:/data - ./letsencrypt:/etc/letsencrypt db: image: 'jc21/mariadb-aria:10.4' environment: MYSQL_ROOT_PASSWORD: 'npm' MYSQL_DATABASE: 'npm' MYSQL_USER: 'npm' MYSQL_PASSWORD: 'npm' volumes: - ./data/mysql:/var/lib/mysql |
If you don’t have docker and docker-compose installed, install it with
|
1 |
apt install docker.io docker-compose |
To start Nginx Proxy Manager, […]
When you develop a web site, you will need it password protected so others won’t see or you don’t want google to index the web pages while you are working on it. To password protect a web site in nginx, see Nginx Password Protect a website If you password protect a web site and try […]
To enable CORS in nginx, add following inside web sites sevrer config.
|
1 2 3 4 |
add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Credentials' 'true'; add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; add_header 'Access-Control-Allow-Headers' 'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type'; |
Restart nginx
|
1 |
systemctl restart nginx |
See CORS […]
To list modules compiled with nginx, you can run nginx -V
|
1 |
nginx -V |
This print nginx version along with configuration used to compile nginx. If you want just the list of modules, you can use following command
|
1 |
nginx -V 2>&1 | tr -- - '\n' | grep _module |
Example See Nginx […]
If you have a static website build using plain html files, your url will look like https://yourdomain/page.html. This .html extension is useful for the files when it is on your local computer, it help computer to associate the file with specific application, say your HTML editor. But on a web server this .html extension serve […]
To show full url in nginx access log, add following
|
1 2 3 4 |
log_format main '$http_x_forwarded_for - $remote_user [$time_local] ' '"$request_method $scheme://$host$request_uri $server_protocol" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" $request_time'; |
See Nginx […]