家庭私有云盘系列教程-建立公网服务器实现外网访问

方案前文:建立一个家庭私有云盘方案系列教程+N2n+Nextcloud

上一篇:家庭私有云盘系列教程-本地搭建家庭 NAS 方案

上文已经提到在公网上创建 N2N 中心节点及客户端节点,这里也不再提起。

作为后续内容,这将说明下在公网服务器使用 Nginx 转发 tcp 流量到内网上。

安装 Nginx

#安装编译支持库
mkdir /mnt/tools -p
cd /mnt/tools
yum -y install gcc automake autoconf libtool make
yum install gcc gcc-c++

#安装 PCRE
wget ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/pcre-8.40.tar.gz
tar -xzf pcre-8.40.tar.gz -C ./
cd pcre-8.40
./configure --prefix=/usr/local/pcre
make && make install
cd ..

#安装 zlib
wget http://zlib.net/zlib-1.2.11.tar.gz
tar -xzf zlib-1.2.11.tar.gz -C ./
cd zlib-1.2.11
./configure --prefix=/usr/local/zlib
make && make install
cd ..

#安装 openss
wget https://www.openssl.org/source/openssl-1.0.2k.tar.gz
tar -xzf openssl-1.0.2k.tar.gz -C ./
#注意,这里不需要进行安装,后面步骤省略。

#编译安装 nginx
wget http://nginx.org/download/nginx-1.12.0.tar.gz
tar -xzf nginx-1.12.0.tar.gz  -C ./
cd nginx-1.12.0

./configure \
--prefix=/usr/local/nginx \
--sbin-path=/usr/local/nginx/nginx \
--conf-path=/usr/local/nginx/nginx.conf \
--pid-path=/usr/local/nginx/nginx.pid \
--with-http_ssl_module \
--with-pcre=/mnt/tools/pcre-8.40/ \
--with-zlib=/mnt/tools/zlib-1.2.11/ \
--with-openssl=/mnt/tools/openssl-1.0.2k/ \
--with-stream


#注:cpre、zlib、openssl 等依赖包的路径是解压的源码路径不是安装后的路径。

make
make install

 

nginx 配置

cd /usr/local/nginx/
vi nginx.conf

尾部追加配置

stream {


    log_format proxy '$remote_addr [$time_local] '
                 '$protocol $status $bytes_sent $bytes_received '
                 '$session_time "$upstream_addr" '
                 '"$upstream_bytes_sent" "$upstream_bytes_received" "$upstream_connect_time"';

    access_log /var/log/nginx/tcp-access.log proxy ;
    open_log_file_cache off;
    include /usr/local/nginx/conf.d/*.stream;
}

创建日志目录、配置目录

mkdir /var/log/nginx/
mkdir /usr/local/nginx/conf.d/
cd /usr/local/nginx/conf.d/

 

新建一个 tcp 转发配置文件

vi /usr/local/nginx/conf.d/tcp-local-10.0.0.25.stream
upstream TCP10251 {
        hash $remote_addr consistent;
        server 10.0.0.25:22;
    }
upstream TCP10252 {
        hash $remote_addr consistent;
        server 10.0.0.25:80;
    }
upstream TCP10253 {
        hash $remote_addr consistent;
        server 10.0.0.25:3306;
    }
upstream TCP10254 {
        hash $remote_addr consistent;
        server 10.0.0.25:10025;
    }

    server {
        listen 10251;
        proxy_connect_timeout 5s;
        proxy_timeout 300s;
        proxy_pass TCP10251;
    }

    server {
        listen 10252;
        proxy_connect_timeout 5s;
        proxy_timeout 300s;
        proxy_pass TCP10252;
    }
    server {
        listen 10253;
        proxy_connect_timeout 5s;
        proxy_timeout 300s;
        proxy_pass TCP10253;
    }
    server {
        listen 10254;
        proxy_connect_timeout 5s;
        proxy_timeout 300s;
        proxy_pass TCP10254;
    }

运行 nginx

/usr/local/nginx/nginx

测试公网代理访问

http://115.0.0.1:10254/

http://115.0.0.1:10254/Evil.Minds.2015.S01.EP01.1080P.WEB-DL.mp4

后一篇:家庭私有云盘系列教程-安装使用 NextCloud 个人云存储系统

(完)

Comments