Nginx implements TCP forwarding

Others 2022-04-22 10:29:06 views: 0

Nginx version: 1.10.2

1. Based on Nginx to implement TCP/UDP protocol port forwarding, the configuration command stream command defaults to the main module in the nginx.conf main configuration file:

Official description:

The ngx_stream_core_module module is available since version 1.9.0. This module is not built by default, it should be enabled with the --with-stream configuration parameter.

ngx_stream_core_module This module will be enabled after version 1.90. However, it will not be installed by default. You need to activate this module by specifying the --with-stream parameter when compiling and installing.

 

stream {
    upstream backend1 {
        server 221.239.33.162:2181 max_fails=3 fail_timeout=30s;
    }

    upstream backend2 {
        server 221.239.33.162:8822 max_fails=3 fail_timeout=30s;
    }
     
    upstream backend3 {
        server 221.239.33.162:8823 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend4 {
        server 221.239.33.162:8824 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend5 {
        server 221.239.33.162:8825 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend6 {
        server 221.239.33.162:8826 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend7 {
        server 221.239.33.162:8827 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend8 {
        server 221.239.33.162:10443 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend9 {
        server 221.239.33.162:22333 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend10 {
        server 221.239.33.162:22343 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend11 {
        server 221.239.33.162:22331 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend12 {
        server 221.239.33.162:22332 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend13 {
        server 221.239.33.162:22341 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend14 {
        server 221.239.33.162:22342 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend15 {
        server 221.239.33.162:3443 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend16 {
        server 221.239.33.162:4443 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend17 {
        server 221.239.33.162:5443 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend18 {
        server 221.239.33.162:6033 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend19 {
        server 221.239.33.162:6443 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend20 {
        server 221.239.33.162:7443 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend21 {
        server 221.239.33.162:8443 max_fails=3 fail_timeout=30s;
    }
    
    upstream backend22 {
        server 221.239.33.162:9443 max_fails=3 fail_timeout=30s;
    }
        
    server {
        listen 2181;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend1;
    }
    server {
        listen 8822;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend2;
    }
    server {
        listen 8823;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend3;
    }
    server {
        listen 8824;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend4;
    }
    server {
        listen 8825;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend5;
    }
    server {
        listen 8826;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend6;
    }
    server {
        listen 8827;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend7;
    }
    server {
        listen 10443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend8;
    }
    server {
        listen 22333;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend9;
    }
    
    server {
        listen 22343;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend10;
    }
    
    server {
        listen 22331;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend11;
    }
    
    server {
        listen 22332;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend12;
    }
    
     server {
        listen 22341;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend13;
    }
    
     server {
        listen 22342;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend14;
    }
    
    server {
        listen 3443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend15;
    }
    
    server {
        listen 4443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend16;
    }
    
    server {
        listen 5443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend17;
    }
    
     server {
        listen 6033;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend18;
    }
    
     server {
        listen 6443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend19;
    }
    
    server {
        listen 7443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend20;
    }
    
    server {
        listen 8443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend21;
    }
    
    server {
        listen 9443;
        proxy_connect_timeout 1s;
        proxy_timeout 3s;
        proxy_pass backend22;
    }
}

 

2. The NAT forwarding mechanism based on Iptables realizes port forwarding, the configuration is as follows, set iptables and modify it at the same time

The IP forwarding parameter of /etc/sysctl.conf is 1

Reference link: https://help.aliyun.com/knowledge_detail/38776.html

iptables -t nat -I POSTROUTING -s 192.168.1.0/24 -j SNAT --to-source 192.168.1.6

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=324970014&siteId=291194637
Recommended
Ranking
[Algorithm] greedy _ program scheduling issues
Spring 控制反转(IOC)
Data structure-6.6 figure
Indicates that the class or member method has abstract properties
Huawei v5 server installed Linux operating system
Postgresql source code analysis - creating ordinary tables
Chapter 10 Evaluation Classification Results
Cloud service Ubuntu 20.04 version uses Nginx to deploy static web pages
Java Exercise 17.1
Solve the problem that git cannot automatically push submission in IDEA Push failed: Failed with error: Could not read from remote repository.
Daily
More
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)

Code World

© 2018 codetd.com