跳转至

nginx

禁止IP访问

Bash
1
2
3
4
5
6
#修改配置
vi /etc/nginx/nginx.conf
#检测配置
nginx -t
#重启
systemctl restart nginx
YAML
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
#80端口上非域名访问一律回复403
server{
        listen 80 default_server;
        server_name _;
        return 403;
    }

#80端口域名访问跳转https
server {
            listen 80;
            server_name your.domain.cn;
            #过滤机器人和爬虫
            if ($http_user_agent ~* "bot|spider") {
                return 403;
            }
            return 302 https://$server_name;
        }

#443端口上非域名访问一律回复403
server {
            #listen 443 ssl http2;
            listen 443 ssl;
            server_name _;
            return 403;
            ssl_certificate cert.crt;
            ssl_certificate_key pri.key;
            ssl_protocols TLSv1.2 TLSv1.3;
        }
server {
            #listen 443 ssl http2;
            listen 443 ssl;
            server_name your.domain.cn;
            #过滤机器人和爬虫
            if ($http_user_agent ~* "bot|spider") {
                     return 403;
            }

            keepalive_timeout 30;
            ssl_certificate cert.crt;
            ssl_certificate_key pri.key;
            ssl_protocols TLSv1.2 TLSv1.3;
            root /var/www/html;
            index index.html;
    }