It is a record of how I build an Nginx with Brotli compression and TLS 1.3 support. I use it on my Linode VPS. It is a Nanon type of VPS at Fremont, CA, USA. 1GB RAM, 25GB storage, 1 CPU. Ubuntu 18.04 LTS was installed on it. Step 0, Build the system
Complied a Nginx server to the latest version and also add Brotli support, but get the following error message: Solution To fix the problem, or error, just unmask with the command:
I check the Nginx error log file regularly. I noticed that a lot of attempted accesses to favicon.ico coming from mainland China. They come from different IP addresses and with different User Agents. Each of these IPs is only doing this, sometimes repeatedly. They are just waste my server’s time and CPU. How to stop
I use a Nginx as the reverse proxy. Here is the scenario. The original server is Server A. The reverse proxy is Server B. Web users are browser the website through Server B. The web log of Server A just received the IP address of server B. All users are shared one remote address. It
First I need to make sure my Nginx has the geoip module. Check it by entering the command below. My Nginx shown the results as below. I found –with-http_geoip_module=dynamic It is cool, I have the geoip module with my Nginx installation. Second, I need GeoIP country database. Here is the official site to download the
It is easy to get an A+ on your website. But it is a little bit hard to make a 4 parts, Certificate, Protocol Support, Key Exchange, and Cipher Strength, to be 100%. Most of time, I got A+ rating of my site. For individual scores, the last two are 90%. Let me break down.
I have a site, which use nginx as web server and php-fpm as php interpreter. Most of the files use html extension name. My nginx conf file has following section. But, when I enter the url such as https://example.com/sample.html, whose content is php script. It did not work. The solution is to change the config
My new server uses Nginx as a web server. When I check the error log of it, I saw a lot of warnings. 2016/08/27 07:30:03 [warn] 11951#11951: *590544 an upstream response is buffered to a temporary file /var/cache/nginx/fastcgi_temp/3/28/0000008283 while reading upstream, client: 107.174.247.88, server: www.phpbbchinese.com, request: “GET /download/file.php?id=109 HTTP/1.1”, upstream: “fastcgi://unix:/run/php/php7.0-fpm.sock:”, host: “www.phpbbchinese.com” I did
Now, a lot of web site are going to add SSL for security purpose. Just like my site here, the SSL Report is as below. It is A+. The score is great. When I look at it close. There are four parts. Three of them are not 100%. Can I make it all 100? I
I have a web site, which was powered by Nginx 1.7. The SPDY 3.1 was enabled. Later last week, I upgraded it to Nginx 1.9.7 mainline version. HTTP/2 already built with Nginx from version 1.9.5. Why not enable HTTP/2? I just did a very rough test. 1. Pingdom testing tool SPDY 3.1: Performance Grade
