系统启动Nginx后,报 [emerg] bind() to 0.0.0.0:XXXX failed (13: Permission denied)错误的处理方式,分为两种:
第一种:端口小于1024的情况:[emerg] bind() to 0.0.0.0:80 failed (13: Permission denied)
原因是1024以下端口启动时需要root权限,所以sudo nginx即可。
第二种:端口大于1024的情况:[emerg] bind() to 0.0.0.0:8380 failed (13: Permission denied)
这种情况,需要如下操作:首先,查看http允许访问的端口:semanage port -l | grep http_port_t
http_port_t tcp 80, 81, 443, 488, 8008, 8009, 8443, 9000
其次,将要启动的端口加入到如上端口列表中semanage port -a -t http_port_t -p tcp 8090
--------------------------------------------------------------
http转发
server
{
listen 88;
server_name www.xxx.net;
location / {
proxy_redirect off;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass http://127.0.0.1:8888;
}
access_log logs/xxx.net_access.log main;
---------------------------------------------
websock转发
server {
listen 4343 ssl http2 default_server;
listen [::]:4343 ssl http2 default_server;
server_name game.geeeagle.com;
root /usr/share/nginx/html;
ssl_certificate "/etc/nginx/cert/game.geeeagle.com.pem";
ssl_certificate_key "/etc/nginx/cert/game.geeeagle.com.key";
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 10m;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
# Load configuration files for the default server block.
include /etc/nginx/default.d/*.conf;
location / {
proxy_pass http://0.0.0.0:8089$request_uri;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
root html;
index index.html index.htm;
}
error_page 404 /404.html;
location = /40x.html {
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
}
}
参考原文:https://blog.csdn.net/runsnail2018/article/details/81185138
参考原文:https://blog.csdn.net/hzw2312/article/details/51789920