本帖最后由 shc 于 2020-7-21 01:57 编辑
Apache Traffic Server (Traffic Server, ATS, TS) 是一个高性能双向代理, 缓存, CDN服务器。今天来介绍如何用Traffic Server简单方便地配置反向代理与缓存服务器,实现对任意网站的反向代理。本文将以hostloc.com为例,介绍如何反代hostloc
详细图文教程链接:https://qing.su/article/traffic-server-reverse-proxy.html
过几天将介绍使用Traffic Server搭建一个高效高定制的缓存/CDN系统。
Traffic Server与Nginx, Varnish三者几乎称霸了世界上所有CDN运营商,而Traffic Server又是这三者之中使用量最大的。与Nginx相比,Traffic Server拥有同样优异的性能,更多的功能,更丰富的接口,以及高度自定义的配置。与Varnish相比,Traffic Server对于高并发高负载的处理更为出色。
使用Traffic Server的CDN/大型网络有Apple, Comcast, Yahoo, Akamai, 以及国内的又拍云等。
教程开始。
1, 安装Traffic Server
- wget https://mirrors.ocf.berkeley.edu/apache/trafficserver/trafficserver-8.0.8.tar.bz2
- tar xjf trafficserver-8.0.8.tar.bz2
- apt install automake libtool pkg-config libmodule-install-perl gcc g++ libssl-dev tcl-dev libpcre3-dev libcap-dev libhwloc-dev libncurses5-dev libcurl4-openssl-dev flex autotools-dev bison debhelper dh-apparmor gettext intltool-debian libbison-dev libexpat1-dev libfl-dev libsigsegv2 libsqlite3-dev m4 po-debconf tcl8.6-dev zlib1g-dev
- cd trafficserver-8.0.8
- ./configure --enable-experimental-plugins
- make
- make install
- ln -s /usr/local/etc/trafficserver /etc/trafficserver
复制代码
2, 配置URL映射规则
records.config
- CONFIG proxy.config.http.server_ports STRING 80 443:ssl
- CONFIG proxy.config.url_remap.pristine_host_hdr INT 1
复制代码
remap.config:
- redirect http://yaofan.shop/ https://yaofan.shop/
- map https://yaofan.shop/ https://hostloc.com/
- reverse_map https://hostloc.com/ https://yaofan.shop/
- map / https://hostloc.com/
复制代码
3, 配置缓存规则
records.config
- CONFIG proxy.config.http.cache.http INT 1
- CONFIG proxy.config.http.cache.ignore_client_cc_max_age INT 1
- CONFIG proxy.config.http.normalize_ae_gzip INT 1
- CONFIG proxy.config.http.cache.cache_responses_to_cookies INT 1
- CONFIG proxy.config.http.cache.cache_urls_that_look_dynamic INT 1
- CONFIG proxy.config.http.cache.when_to_revalidate INT 0
- CONFIG proxy.config.http.cache.required_headers INT 2
- CONFIG proxy.config.http.cache.ignore_client_no_cache INT 1
复制代码
storage.config
4, 配置SSL证书
- mkdir /etc/trafficserver/ssl
- chown nobody /etc/trafficserver/ssl
- chmod 0760 /etc/trafficserver/ssl
复制代码
records.config
- CONFIG proxy.config.ssl.server.cert.path STRING /etc/trafficserver/ssl/
- CONFIG proxy.config.ssl.server.private_key.path STRING /etc/trafficserver/ssl/
复制代码
ssl_multicert.config
- dest_ip=* ssl_cert_name=yaofan.shop.crt ssl_key_name=yaofan.shop.key
复制代码
5, 加载配置文件
- traffic_ctl config reload
复制代码
反代完毕!效果:
欢迎收藏点赞提问评论撒花扔鞋
|