Foreword:
The tcp penetration has been explained before, which is generally used for our operation and maintenance of remote ssh intranet servers, while web penetration is generally used for web projects published on the intranet to be accessible on the public network.
Configuration:
Server configuration:
If your 80 port is occupied, you can modify it to 808 or other ports
Client configuration:
The tunnel name cannot be the same
Since the web project is not on the host of my client, I used nginx to do a forwarding here
include /etc/nginx/conf.d/*.conf;
server {
listen 80;
server_name 域名;
location / {
proxy_pass http://192.168.1.59:8080/;
}
include /etc/nginx/default.d/*.conf;
}
Add this configuration to nginx
systemctl restart nginx #重启nginx
Detailed explanation:
The public network resources found the Alibaba Cloud host through the domain name, and the configuration of the domain name happened to be in the frp configuration file. The nginx of the local frp listened to port 80 and forwarded the resources under the domain name to the web project server, thus realizing the intranet penetrate