FRP内网穿透 + Nginx代理 + 获取Real IP
FRP内网穿透 + Nginx代理 + 获取真实IP 以下仅列出关键配置 外网服务端配置 如果指定反代ip,frp会无法获取host,导致502错误,采用以下方案可以解决,但需要开放fprs https端口,并指定解析$host的DNS服务器 Nginx server { listen 443 ssl; server_name your.domain; ssl_certificate ./your.domain.cer; ssl_certificate_key ./your.domain.key; ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; server_tokens off; location / { resolver; # dns resolver server proxy_ssl_server_name on; proxy_set_header Host $host:$server_port; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_pass https://$host:6443; # frps https port, set $host insead of ip error_page 502 http://$host:6080/$request_uri; } } 参考issue #888: nginx https反向代理到frp https 报 502错误 参考frpc+frps+nginx反代+解析后端真实IP+双向https自动跳转+https证书配置的纯享版配置文件及操作指导 FRP Server # [common] is integral section [common] # A literal address or host name for IPv6 must be enclosed # in square brackets, as in "[::1]:80", "[ipv6-host]:http" or "[ipv6-host%zone]:80" bind_addr = bind_port = 5443 # udp port used for kcp protocol, it can be same with 'bind_port' # if not set, kcp is disabled in frps kcp_bind_port = 5443 # if you want to configure or reload frps by dashboard, dashboard_port must be set dashboard_port = 8090 # dashboard assets directory(only for debug mode) dashboard_user = admin dashboard_pwd = admin # assets_dir = ./static vhost_http_port = 6080 vhost_https_port =…