我们在nginx上有一个用于竹服务器的反向代理服务器,但是它提供了一个502坏的网关,但是可以从反向代理服务器(两个centos)访问。
nginx.conf:
server { listen 80; server_name bamboo.test.foo.com; access_log /var/log/nginx/bamboo.test.foo.access.log main; location /bamboo { proxy_set_header X-Forwarded-Host $host; proxy_set_header X-Forwarded-Server $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_pass http://192.168.10.5:8085; client_max_body_size 10M; } proxy_connect_timeout 600; proxy_send_timeout 600; proxy_read_timeout 600; send_timeout 600; } 访问日志:
81.82.215.59 - - [07/Dec/2016:16:19:39 +0000] "GET / HTTP/1.1" 502 575 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.75 Safari/537.36" "-" 81.82.215.59 - - [07/Dec/2016:16:19:39 +0000] "GET /favicon.ico HTTP/1.1" 502 575 "http://bamboo.test.foo.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.75 Safari/537.36" "-"
我启用了SELinux,阻止Nginx进行出站连接。
你可以检查这个:
# getenforce
如果SELinux处于打开状态,并且遇到了这种情况,可以尝试将httpd_can_network_connect设置为true,然后重新启动nginx:
# setsebool -P httpd_can_network_connect true