一、反向代理配置:
完整配置示例
(/etc/nginx/nginx.conf) 注意这个nginx.conf,可能不是默认的这个,有的人自定义了的,得根据自己配置走,反正是跟着自己的配置文件走就行了,你的设置在哪个配置文件中就去哪个配置文件中加这个:
worker_processes 1; events { worker_connections 1024; } http { include mime.types; default_type application/octet-stream; sendfile on; keepalive_timeout 65; upstream backend { server 192.168.56.4; server 192.168.56.5; fair; } server { listen 80; server_name _; location / { #设置主机头和客户端真实地址,以便服务器获取客户端真实IP proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header REMOTE-HOST $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; #禁用缓存 proxy_buffering off; #反向代理的地址 proxy_pass http://backend; } } }
二、获取真实客户端ip
nginx反向代理后,在应用中取得的ip都是反向代理服务器的ip,取得的域名也是反向代理配置的url的域名,解决该问题,需要在nginx反向代理配置中添加一些配置信息,目的将客户端的真实ip和域名传递到应用程序中。
笔者这里加的是这样的:
server_name www.zhangsan.com; location ^~/api/ { proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header REMOTE-HOST $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; #禁用缓存 proxy_buffering off; proxy_pass http://localhost:9899/api/; } location / { proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header REMOTE-HOST $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; #禁用缓存 proxy_buffering off; root /home/username/zhangsan_html; index index.html; }
nginx反向代理配置时,一般会添加下面的配置:
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header REMOTE-HOST $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
其中第一行关于host的配置,是关于域名传递的配置,余下跟IP相关。
PHP中取得客户端真实IP:
function getClientIP() {
$ip = "unknown";
if (isset($_SERVER)) {
if (isset($_SERVER["HTTP_X_FORWARDED_FOR"])) {
$ip = $_SERVER["HTTP_X_FORWARDED_FOR"];
} elseif (isset($_SERVER["HTTP_CLIENT_ip"])) {
$ip = $_SERVER["HTTP_CLIENT_ip"];
} else {
$ip = $_SERVER["REMOTE_ADDR"];
}
} else {
if (getenv('HTTP_X_FORWARDED_FOR')) {
$ip = getenv('HTTP_X_FORWARDED_FOR');
} elseif (getenv('HTTP_CLIENT_ip')) {
$ip = getenv('HTTP_CLIENT_ip');
} else {
$ip = getenv('REMOTE_ADDR');
}
}
if(trim($ip)=="::1"){
$ip="127.0.0.1";
}
return $ip;
}
笔者在tp5中的用法如下:
$ip = "unknown"; if (isset($_SERVER)) { if (isset($_SERVER["HTTP_X_FORWARDED_FOR"])) { $ip = $_SERVER["HTTP_X_FORWARDED_FOR"]; } elseif (isset($_SERVER["HTTP_CLIENT_ip"])) { $ip = $_SERVER["HTTP_CLIENT_ip"]; } else { $ip = $_SERVER["REMOTE_ADDR"]; } } else { if (getenv('HTTP_X_FORWARDED_FOR')) { $ip = getenv('HTTP_X_FORWARDED_FOR'); } elseif (getenv('HTTP_CLIENT_ip')) { $ip = getenv('HTTP_CLIENT_ip'); } else { $ip = getenv('REMOTE_ADDR'); } } if(trim($ip)=="::1"){ $ip="127.0.0.1"; }
获取到用户的$ip的IP后,就可以插入数据库了。
原文参考:https://www.cnblogs.com/luotingliang/p/7289811.html
未经允许不得转载:哈勃私语 » nginx 反向代理 取得真实IP和域名
本文共2497个字 创建时间:2018年4月22日22:31