HAProxy客戶端IP地址的透傳
HAProxy客戶端IP地址的透傳
環境準備html
| server | IP |
|---|---|
| client | 172.20.27.10 |
| haproxy | 172.20.27.20,192.168.27.10 |
| nginx | 192.168.27.21 |
nginx操做
1.首先對nginx的主配置中的日誌作修改linux
[root@nginx ~]# vim /apps/nginx/conf/nginx.conf
log_format access_json '{"@timestamp":"$time_iso8601",'
'"host":"$server_addr",'
'"clientip":"$remote_addr",'
'"size":$body_bytes_sent,'
'"responsetime":$request_time,'
'"upstreamtime":"$upstream_response_time",'
'"upstreamhost":"$upstream_addr",'
'"http_host":"$host",'
'"uri":"$uri",'
'"domain":"$host",'
'"xff":"$http_x_forwarded_for",' #使用http透傳
'"referer":"$http_referer",'
'"tcp_xff":"$proxy_protocol_addr",' #使用tcp透傳
'"http_user_agent":"$http_user_agent",'
'"status":"$status"}';
2.在配置文件中調用此文件nginx
[root@nginx ~]# vim /apps/nginx/conf/servers/mylinuxops.conf
server {
server_name www.mylinuxops.com;
listen 80;
access_log /apps/nginx/logs/mylinuxops.log access_json;
location / {
root /data/www;
index index.html;
}
}
配置HAProxy(http透傳)
未使用http透傳前web
[root@nginx ~]# tail /apps/nginx/logs/mylinuxops.log
{"@timestamp":"2019-06-04T16:30:47+08:00", "host":"192.168.27.21", "clientip":"172.20.27.10", "size":19, "responsetime":0.000, "upstreamtime":"-", "upstreamhost":"-", "http_host":"www.mylinuxops.com", "uri":"/index.html", "domain":"www.mylinuxops.com", "xff":"-", "referer":"-", "tcp_xff":"", "http_user_agent":"curl/7.29.0", "status":"200"}
#xff顯示爲"-"
修改HAProxy配置文件,使用http模式下的ip透傳json
[root@haproxy ~]# vim /etc/haproxy/haproxy.cfg listen web bind 172.20.27.20:80 mode http #模式改成http option forwardfor #開啓forwardfor選項 server web1 www.mylinuxops.com:80 check inter 3000 fall3 rise 5
測試
使用客戶端訪問vim
[root@client ~]# curl www.mylinuxops.com www.mylinuxops.com
查看nginx上的日誌後端
[root@nginx ~]# tail -f /apps/nginx/logs/mylinuxops.log
{"@timestamp":"2019-06-04T17:29:22+08:00", "host":"192.168.27.21", "clientip":"192.168.27.10", "size":19, "responsetime":0.000, "upstreamtime":"-", "upstreamhost":"-", "http_host":"www.mylinuxops.com", "uri":"/index.html", "domain":"www.mylinuxops.com", "xff":"172.20.27.10", "referer":"-", "tcp_xff":"", "http_user_agent":"curl/7.29.0", "status":"200"}
#"xff":"172.20.27.10" 客戶端的地址被透傳過來了
配置HAProxy(tcp透傳)
1.修改HAProxy配置文件bash
[root@haproxy ~]# vim /etc/haproxy/haproxy.cfg listen web bind 172.20.27.20:80 mode tcp #將mode改成tcp option forwardfor #開啓forwardfor選項 server web1 www.mylinuxops.com:80 send-proxy check inter 3000 fall 3 rise 5 #在定義後端服務時加上 send-proxy參數。
2.修改nginx的配置文件app
[root@nginx ~]# vim /apps/nginx/conf/servers/mylinuxops.conf
server {
server_name www.mylinuxops.com;
listen 80 proxy_protocol; #在listen選項後添加proxy_protocol選項
access_log /apps/nginx/logs/mylinuxops.log access_json;
location / {
root /data/www;
index index.html;
}
}
測試
使用客戶端訪問dom
[root@client ~]# curl www.mylinuxops.com www.mylinuxops.com
在nginx上查看日誌
[root@nginx ~]# tail -f /apps/nginx/logs/mylinuxops.log
{"@timestamp":"2019-06-04T17:43:57+08:00", "host":"192.168.27.21", "clientip":"192.168.27.10", "size":19, "responsetime":0.000, "upstreamtime":"-", "upstreamhost":"-", "http_host":"www.mylinuxops.com", "uri":"/index.html", "domain":"www.mylinuxops.com", "xff":"-", "referer":"-", "tcp_xff":"172.20.27.10", "http_user_agent":"curl/7.29.0", "status":"200"}
#"tcp_xff":"172.20.27.10" 客戶端的地址在tcp的模式下被傳送過來
相關文章
- 1. 客戶端獲取本地ip地址
- 2. DotNet獲取客戶端的IP地址
- 3. 03客戶端獲取IP地址
- 4. 獲取客戶端ip地址-PHP
- 5. PHP 獲取客戶端ip地址
- 6. 獲取客戶端ip地址php
- 7. Python獲取客戶端IP地址
- 8. 獲取客戶端IP地址
- 9. 獲取客戶端真是IP地址
- 10. PHP 快速獲取客戶端IP地址及實際地址
- 更多相關文章...
- • XSLT - 在客戶端 - XSLT 教程
- • IP地址是什麼? - TCP/IP教程
- • Flink 數據傳輸及反壓詳解
- • Docker容器實戰(一) - 封神Server端技術
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
歡迎關注本站公眾號,獲取更多信息
相關文章
- 1. 客戶端獲取本地ip地址
- 2. DotNet獲取客戶端的IP地址
- 3. 03客戶端獲取IP地址
- 4. 獲取客戶端ip地址-PHP
- 5. PHP 獲取客戶端ip地址
- 6. 獲取客戶端ip地址php
- 7. Python獲取客戶端IP地址
- 8. 獲取客戶端IP地址
- 9. 獲取客戶端真是IP地址
- 10. PHP 快速獲取客戶端IP地址及實際地址