mirror of
https://github.com/letian1650/N3RD.git
synced 2025-01-26 12:54:50 +08:00
175 lines
4.9 KiB
Markdown
175 lines
4.9 KiB
Markdown
##### ubuntu1804快速装机指令(阿里云)
|
||
```shell
|
||
首先更换阿里源
|
||
rm /etc/apt/sources.list
|
||
vi /etc/apt/sources.list
|
||
|
||
把下面这些粘贴进去:
|
||
deb http://mirrors.aliyun.com/ubuntu/ bionic main restricted universe multiverse
|
||
deb http://mirrors.aliyun.com/ubuntu/ bionic-security main restricted universe multiverse
|
||
deb http://mirrors.aliyun.com/ubuntu/ bionic-updates main restricted universe multiverse
|
||
deb http://mirrors.aliyun.com/ubuntu/ bionic-proposed main restricted universe multiverse
|
||
deb http://mirrors.aliyun.com/ubuntu/ bionic-backports main restricted universe multiverse
|
||
deb-src http://mirrors.aliyun.com/ubuntu/ bionic main restricted universe multiverse
|
||
deb-src http://mirrors.aliyun.com/ubuntu/ bionic-security main restricted universe multiverse
|
||
deb-src http://mirrors.aliyun.com/ubuntu/ bionic-updates main restricted universe multiverse
|
||
deb-src http://mirrors.aliyun.com/ubuntu/ bionic-proposed main restricted universe multiverse
|
||
deb-src http://mirrors.aliyun.com/ubuntu/ bionic-backports main restricted universe multiverse
|
||
|
||
:wq保存后更新以下
|
||
|
||
sudo apt-get update
|
||
sudo apt-get upgrade
|
||
|
||
|
||
然后安docker
|
||
sudo apt install docker.io
|
||
sudo systemctl start docker
|
||
sudo systemctl enable docker
|
||
docker -v
|
||
|
||
|
||
镜像换源加速
|
||
/etc/docker/daemon.json
|
||
|
||
{"registry-mirrors":["https://registry.docker-cn.com","https://gfgiph4d.mirror.aliyuncs.com"]}
|
||
|
||
重启docker
|
||
|
||
sudo systemctl daemon-reload
|
||
sudo systemctl restart docker
|
||
|
||
安装portainer
|
||
|
||
docker volume create portainer_data
|
||
docker run -d --name portainer -p 9000:9000 --restart=always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data 6053537/portainer-ce
|
||
|
||
登录道长的dockerhub的账号密码
|
||
docker login
|
||
登录成功后
|
||
sudo docker run -idt -p 3325:22 -p 8025:8069 -p 5435:5432 --name hiker --restart always --privileged=true hjdhnx/odoo:20220106
|
||
|
||
安装nginx
|
||
apt-get install nginx
|
||
nginx -v
|
||
service nginx start
|
||
cd /etc/nginx/conf.d
|
||
vi hiker.conf
|
||
nginx -t
|
||
nginx -s reload
|
||
|
||
从主机复制到容器 sudo docker cp host_path containerID:container_path
|
||
从容器复制到主机 sudo docker cp containerID:container_path host_path
|
||
```
|
||
|
||
### nginx配置海阔视界道长仓库
|
||
```shell
|
||
# nginx.conf
|
||
client_max_body_size 1024M; 上传文件大小限制
|
||
|
||
sendfile on; 设置为on表示启动高效传输文件的模式
|
||
|
||
keepalive_timeout 650;保持连接的时间,默认65s
|
||
|
||
#hiker.conf
|
||
server{
|
||
if ($request_method ~ ^(HEAD)$ ) {
|
||
return 403 "403 forbidden";
|
||
}
|
||
}
|
||
|
||
|
||
limit_req_zone $binary_remote_addr zone=allips:10m rate=100r/s;
|
||
limit_conn_zone $binary_remote_addr zone=addr:10m;
|
||
#limit_req_zone $binary_remote_addr zone=allips:10m rate=60r/m;
|
||
#limit_conn_zone $binary_remote_addr zone=addr:10m;
|
||
|
||
server{
|
||
listen 80;
|
||
server_name nokia.press;
|
||
location / {
|
||
limit_req zone=allips burst=5 nodelay;
|
||
limit_conn addr 20;
|
||
limit_rate 500k;
|
||
#....
|
||
proxy_pass http://localhost:8069;
|
||
}
|
||
##### other directive
|
||
}
|
||
|
||
upstream odoo {
|
||
server 127.0.0.1:8025 weight=1 fail_timeout=0;
|
||
}
|
||
|
||
upstream odoo-im {
|
||
server 127.0.0.1:8069 weight=1 fail_timeout=0;
|
||
}
|
||
|
||
server{
|
||
listen 80;
|
||
server_name hiker.nokia.press;
|
||
location / {
|
||
#....
|
||
# proxy_pass http://localhost:8025;
|
||
proxy_pass http://odoo;
|
||
proxy_next_upstream error timeout invalid_header http_503;
|
||
proxy_redirect off;
|
||
proxy_read_timeout 300000;
|
||
limit_req zone=allips burst=5 nodelay;
|
||
limit_conn addr 200;
|
||
limit_rate 5000k;
|
||
# set headers
|
||
proxy_buffer_size 128k;
|
||
proxy_buffers 4 256k;
|
||
proxy_busy_buffers_size 256k;
|
||
|
||
proxy_set_header Host $host;
|
||
proxy_set_header X-Real-IP $remote_addr;
|
||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||
proxy_set_header X-Forwarded-Proto https;
|
||
}
|
||
|
||
location ~* /web/static/ {
|
||
proxy_cache_valid 200 60m;
|
||
proxy_buffering on;
|
||
expires 864000;
|
||
proxy_pass http://odoo;
|
||
}
|
||
##### other directive
|
||
}
|
||
|
||
server{
|
||
listen 8031;
|
||
server_name hiker.nokia.press;
|
||
location / {
|
||
#....
|
||
proxy_pass http://odoo;
|
||
proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
|
||
proxy_redirect off;
|
||
proxy_read_timeout 300000;
|
||
limit_req zone=allips burst=5 nodelay;
|
||
limit_conn addr 20;
|
||
limit_rate 500k;
|
||
# set headers
|
||
proxy_set_header Host $host;
|
||
proxy_set_header X-Real-IP $remote_addr;
|
||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||
proxy_set_header X-Forwarded-Proto https;
|
||
}
|
||
##### other directive
|
||
}
|
||
|
||
```
|
||
|
||
### 设置封Ip和仓库重启策略
|
||
```shell
|
||
cd /etc/nginx/conf.d
|
||
chmod +x ./banips.sh
|
||
ln -s /etc/nginx/conf.d/banips.sh /usr/local/bin/banips
|
||
banips run
|
||
|
||
crontab -e
|
||
|
||
#5分钟执行一次封ip
|
||
*/2 * * * * banips run >> /etc/nginx/conf.d/banips.log 2>&1
|
||
``` |