當前訪客身份:游客 [ 登錄 | 加入程式開發 討論區 ]
當前訪客身份:未登入或非會員
手癢愛寫 給大家新資訊
文章分類
閱讀排行
Linux
nginx with caddy QUIC
摘要
nginx with caddy QUIC
不想捨棄nginx 又想支援google QUIC協定
nginx 裡面添加 add_header alt-svc 'quic=":443"; ma=2592000; v="44,43,39,35"';
安裝caddy 並讓caddy只支援QUIC
curl https://getcaddy.com | bash -s personal
Caddyfile 內容
----------------------------------------------------
gmsql.power.net.tw:555 {
tls /etc/letsencrypt/live/gmsql.power.net.tw/fullchain.pem /etc/letsencrypt/live/gmsql.power.net.tw/privkey.pem
root /home/www/msql
gzip
}
tls /etc/letsencrypt/live/gmsql.power.net.tw/fullchain.pem /etc/letsencrypt/live/gmsql.power.net.tw/privkey.pem
root /home/www/msql
gzip
}
g.power.net.tw:555 {
tls /etc/letsencrypt/live/g.power.net.tw/fullchain.pem /etc/letsencrypt/live/g.power.net.tw/privkey.pem
root /home/www/root
gzip
}
--------------------------------------------------------
tls /etc/letsencrypt/live/g.power.net.tw/fullchain.pem /etc/letsencrypt/live/g.power.net.tw/privkey.pem
root /home/www/root
gzip
}
--------------------------------------------------------
啟動 caddy
/usr/local/bin/caddy -quic -conf /home/alumi/Caddyfile
iptables -A PREROUTING -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 555
iptables -A PREROUTING -p tcp -m tcp --dport 555 -j REDIRECT --to-ports 0
iptables -A INPUT -p tcp -m multiport --dports 80,555 -j ACCEPT
iptables -A INPUT -p udp -m udp --dport 443 -j ACCEPT
iptables -A PREROUTING -p tcp -m tcp --dport 555 -j REDIRECT --to-ports 0
iptables -A INPUT -p tcp -m multiport --dports 80,555 -j ACCEPT
iptables -A INPUT -p udp -m udp --dport 443 -j ACCEPT
打開chrome 支援 QUIC chrome://flags
Experimental QUIC protocol 設定 Enabled
chrome 瀏覽器網址列輸入 查看
chrome://net-internals/#events
聲明:本站文章版權屬於作者,受法律保護未經作者同意不得轉載。