查看nginx错误日志#

• 发现nginx将域名解析到了旧ipv6地址

  1
  tail -n 100 /var/log/nginx/error.log
  2
  
  3
  # 2024/12/03 09:28:49 [error] 2371661#2371661: *39731 connect() failed (113: No route to host) while connecting to upstream, client: 162.158.170.60, server: xxx.xxx.net, request: "GET /web/index.html HTTP/2.0", upstream: "https://[2409:xxxx:14e2:xxxx:84:6d5a:3531:xxxx]:<port>/web/index.html", host: "xxx.xxx.net"
  

解决方法1#

• 重启nginx

  1
  seervice nginx restart
  

解决方法2#

• 使用nginx-upstream-dynamic-servers

1. 安装依赖

   1
   apt install -y build-essential && apt install -y libpcre3 libpcre3-dev && apt install -y zlib1g-dev && apt install -y openssl libssl-dev
   

2. 下载nginx源码

   1
   cd /usr/local/src && wget https://nginx.org/download/nginx-1.26.2.tar.gz && tar -xf nginx-1.26.2.tar.gz && cd nginx-1.26.2
   

3. 下载nginx-upstream-dynamic-servers

   1
   cd /usr/src && git clone https://github.com/GUI/nginx-upstream-dynamic-servers.git
   

4. 配置和编译

   1
    cd /usr/local/src/nginx-1.26.2 && ./configure \
   2
    --prefix=/usr/local/nginx \
   3
    --user=www \
   4
    --group=www \
   5
    --sbin-path=/usr/local/sbin/nginx \
   6
    --conf-path=/usr/local/nginx/nginx.conf \
   7
    --error-log-path=/var/log/nginx/error.log \
   8
    --http-log-path=/var/log/nginx/access.log \
   9
    --pid-path=/var/run/nginx.pid \
   10
    --lock-path=/var/run/nginx.lock \
   11
    --http-client-body-temp-path=/var/cache/nginx/client_temp \
   12
    --http-proxy-temp-path=/var/cache/nginx/proxy_temp \
   13
    --http-fastcgi-temp-path=/var/cache/nginx/fastcgi_temp \
   14
    --http-uwsgi-temp-path=/var/cache/nginx/uwsgi_temp \
   15
    --http-scgi-temp-path=/var/cache/nginx/scgi_temp \
   16
    --with-file-aio \
   17
    --with-threads \
   18
    --with-http_addition_module \
   19
    --with-http_auth_request_module \
   20
    --with-http_dav_module \
   21
    --with-http_flv_module \
   22
    --with-http_gunzip_module \
   23
    --with-http_gzip_static_module \
   24
    --with-http_mp4_module \
   25
    --with-http_random_index_module \
   26
    --with-http_realip_module \
   27
    --with-http_secure_link_module \
   28
    --with-http_slice_module \
   29
    --with-http_ssl_module \
   30
    --with-http_stub_status_module \
   31
    --with-http_sub_module \
   32
    --with-http_v2_module \
   33
    --with-mail \
   34
    --with-mail_ssl_module \
   35
    --with-stream \
   36
    --with-stream_realip_module \
   37
    --with-stream_ssl_module \
   38
    --with-stream_ssl_preread_module \
   39
    --add-module=/usr/src/nginx-upstream-dynamic-servers
   

   • 编译

   1
   make
   

5. 安装

   1
   make install
   

6. 创建守护进程

   1. 编写进程配置

      1
      vim /usr/lib/systemd/system/nginx.service
      

      1
      [Unit]
      2
      Description=A high performance web server and a reverse proxy server
      3
      Documentation=man:nginx(8)
      4
      After=network.target
      5
      
      6
      [Service]
      7
      Type=forking
      8
      PIDFile=/var/run/nginx.pid
      9
      ExecStartPre=/usr/local/sbin/nginx -t -q -g 'daemon on; master_process on;'
      10
      ExecStart=/usr/local/sbin/nginx
      11
      ExecReload=/usr/local/sbin/nginx -s reload
      12
      ExecStop=/usr/local/sbin/nginx -s quit
      13
      TimeoutStopSec=5
      14
      KillMode=mixed
      15
      PrivateTmp=true
      16
      
      17
      [Install]
      18
      WantedBy=multi-user.target
      

   2. 加载守护进程

      1
      systemctl daemon-reload && systemctl start nginx
      

7. 使用dig查看dns服务器

   1
   $ dig
   2
   
   3
   #; <<>> DiG 9.18.28-0ubuntu0.20.04.1-Ubuntu <<>>
   4
   #;; global options: +cmd
   5
   #;; Got answer:
   6
   #;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61540
   7
   #;; flags: qr rd ra; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 1
   8
   #
   9
   #;; OPT PSEUDOSECTION:
   10
   #; EDNS: version: 0, flags:; udp: 65494
   11
   #;; QUESTION SECTION:
   12
   #;.                              IN      NS
   13
   #
   14
   #;; ANSWER SECTION:
   15
   #.                       515820  IN      NS      a.root-servers.net.
   16
   #.                       515820  IN      NS      b.root-servers.net.
   17
   #.                       515820  IN      NS      c.root-servers.net.
   18
   #.                       515820  IN      NS      d.root-servers.net.
   19
   #.                       515820  IN      NS      e.root-servers.net.
   20
   #.                       515820  IN      NS      f.root-servers.net.
   21
   #.                       515820  IN      NS      g.root-servers.net.
   22
   #.                       515820  IN      NS      h.root-servers.net.
   23
   #.                       515820  IN      NS      i.root-servers.net.
   24
   #.                       515820  IN      NS      j.root-servers.net.
   25
   #.                       515820  IN      NS      k.root-servers.net.
   26
   #.                       515820  IN      NS      l.root-servers.net.
   27
   #.                       515820  IN      NS      m.root-servers.net.
   28
   #
   29
   #;; Query time: 4 msec
   30
   #;; SERVER: 127.0.0.xxx#53(127.0.0.xxx) (UDP)
   31
   #;; WHEN: Tue Dec 03 13:11:58 CST 2024
   32
   #;; MSG SIZE  rcvd: 239
   

8. 修改nginx配置文件

   1
   vim /usr/local/nginx/nginx.conf
   

   1
   # 将以下配置添加到nginx配置文件
   2
   http {
   3
     resolver 127.0.0.xxx;
   4
   
   5
     upstream example {
   6
       server example.com resolve;
   7
     }
   8
   }
   

9. 检查nginx配置文件并重启nginx

   1
   nginx -t && service nginx restart
   

参考文章#

1. 运维遇坑记录(3)-Nginx缓存了DNS解析造成后端不通
2. nginx-upstream-dynamic-servers
3. 详解Debian系统上如何编译安装Nginx
4. Linux 如何查看修改DNS配置