nginx 开启后只能在本机访问


不止是nginx,用node试了一下8888端口,在局域网( 192.168.1.107 )内也无法访问。
貌似只有 22 端口可以被连得上。

但是在本机 localhost , 127.0.0.1 , 192.168.1.107 都可以访问到 'it works'


 shell


 $ netstat -na|grep 80
tcp    0    0 0.0.0.0:80    0.0.0.0:*    LISTEN
$ netstat -na|grep 8888
tcp    0    0 0.0.0.0:8888  0.0.0.0:*    LISTEN


 shell


 $ sudo iptables -L   
Chain INPUT (policy ACCEPT)
target     prot opt source        destination         
ACCEPT     all  --  localhost     localhost           
ACCEPT     all  --  anywhere      anywhere        state RELATED,ESTABLISHED
ACCEPT     tcp  --  anywhere      anywhere        tcp dpt:ssh
ACCEPT     tcp  --  anywhere      anywhere        tcp dpt:http
ACCEPT     tcp  --  anywhere      anywhere        tcp dpt:ftp
ACCEPT     tcp  --  anywhere      anywhere        tcp dpt:ftp-data

Chain FORWARD (policy ACCEPT)
target     prot opt source        destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source        destination         
ACCEPT     all  --  anywhere      anywhere


 shell


 # /usr/local/nginx/conf/nginx.conf
user www www;

worker_processes auto;

error_log  /home/wwwlogs/nginx_error.log  crit;

pid        /usr/local/nginx/logs/nginx.pid;

#Specifies the value for maximum file descriptors that can be opened by this process.
worker_rlimit_nofile 51200;

events
    {
        use epoll;
        worker_connections 51200;
        multi_accept on;
    }

http
    {
        include       mime.types;
        default_type  application/octet-stream;

        server_names_hash_bucket_size 128;
        client_header_buffer_size 32k;
        large_client_header_buffers 4 32k;
        client_max_body_size 50m;

        sendfile on;
        tcp_nopush on;

        keepalive_timeout 60;

        tcp_nodelay on;

        fastcgi_connect_timeout 300;
        fastcgi_send_timeout 300;
        fastcgi_read_timeout 300;
        fastcgi_buffer_size 64k;
        fastcgi_buffers 4 64k;
        fastcgi_busy_buffers_size 128k;
        fastcgi_temp_file_write_size 256k;

        gzip on;
        gzip_min_length  1k;
        gzip_buffers     4 16k;
        gzip_http_version 1.0;
        gzip_comp_level 2;
        gzip_types text/plain application/x-javascript text/css application/xml;
        gzip_vary on;
        gzip_proxied        expired no-cache no-store private auth;
        gzip_disable        "MSIE [1-6]\.";

        #limit_conn_zone $binary_remote_addr zone=perip:10m;
        ##If enable limit_conn_zone,add "limit_conn perip 10;" to server section.

        server_tokens off;
        #log format
        log_format  access  '$remote_addr - $remote_user [$time_local] "$request" '
             '$status $body_bytes_sent "$http_referer" '
             '"$http_user_agent" $http_x_forwarded_for';

server
    {
        listen 80 default;
        #listen [::]:80 default ipv6only=on;
        #server_name localhost;
        index index.html index.htm index.php;
        root  /home/wwwroot/default;

        #error_page   404   /404.html;
        location ~ [^/]\.php(/|$)
            {
                # comment try_files $uri =404; to enable pathinfo
                try_files $uri =404;
                fastcgi_pass  unix:/tmp/php-cgi.sock;
                fastcgi_index index.php;
                include fastcgi.conf;
                #include pathinfo.conf;
            }

        location /nginx_status {
            stub_status on;
            access_log   off;
        }

        location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$
            {
                expires      30d;
            }

        location ~ .*\.(js|css)?$
            {
                expires      12h;
            }

        access_log  /home/wwwlogs/access.log  access;
    }
include vhost/*.conf;
}

Linux network nginx

kkkkkkk 10 years ago

先把iptables的规则清空了。看样子多半是iptables的原因。

默然的妖怪 answered 10 years ago

Your Answer