AI 助理
备案控制台
开发者社区 问答 正文

Swarm mode 集群中服务发现和负载均衡的简单路由-HTTP 强制跳转到 HTTPS

您可以根据 将暴露的 HTTP 服务修改为 HTTPS 服务 进行操作实现通过 HTTPS 协议访问您需要的网站。
操作流程

  1. 您可以使用编排模板创建 hello world 应用。
    应用模板示例如下:
    [backcolor=transparent]compose V1/V2 示例[backcolor=transparent] app[backcolor=transparent]:
  2. [backcolor=transparent]   ports[backcolor=transparent]:
  3. [backcolor=transparent]     [backcolor=transparent]-[backcolor=transparent] [backcolor=transparent]80[backcolor=transparent]/[backcolor=transparent]tcp
  4. [backcolor=transparent]   image[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]'registry.cn-hangzhou.aliyuncs.com/linhuatest/hello-world:latest'
  5. [backcolor=transparent]   labels[backcolor=transparent]:
  6. [backcolor=transparent]     [backcolor=transparent]# 此处只是 http/https/ws/wss 协议
  7. [backcolor=transparent]     aliyun[backcolor=transparent].[backcolor=transparent]routing[backcolor=transparent].[backcolor=transparent]port_80[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]"http://www.example.com"
  8. [backcolor=transparent]   restart[backcolor=transparent]:[backcolor=transparent] always

[backcolor=transparent]compose V3 示例
  1. [backcolor=transparent] version[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]'3'
  2. [backcolor=transparent] services[backcolor=transparent]:
  3. [backcolor=transparent]   web[backcolor=transparent]:
  4. [backcolor=transparent]     image[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]'registry.cn-hangzhou.aliyuncs.com/linhuatest/hello-world:latest'
  5. [backcolor=transparent]     ports[backcolor=transparent]:
  6. [backcolor=transparent]       [backcolor=transparent]-[backcolor=transparent] [backcolor=transparent]80[backcolor=transparent]/[backcolor=transparent]tcp
  7. [backcolor=transparent]     deploy[backcolor=transparent]:
  8. [backcolor=transparent]       restart_policy[backcolor=transparent]:
  9. [backcolor=transparent]         condition[backcolor=transparent]:[backcolor=transparent] on[backcolor=transparent]-[backcolor=transparent]failure
  10. [backcolor=transparent]     labels[backcolor=transparent]:
  11. [backcolor=transparent]       aliyun[backcolor=transparent].[backcolor=transparent]routing[backcolor=transparent].[backcolor=transparent]port_80[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]"http://www.example.com"

配置好负载均衡之后,参见 HTTP 协议变为HTTPS,访问 HTTPS 协议的网站如下所示。

您可以配置使 HTTP 协议请求强制跳转到 HTTPS 协议。
下面的示例配置了一个 nginx 容器并将 rewrite 规则写到配置文件中,即如果收到请求 http://www.example.com,则返回 301 且自动跳转到 https://www.example.com
登录集群中的[backcolor=transparent]每台机器,创建 nginx 配置文件(将会作为 volume 挂载到容器 nginx 中)/ngx/nginx.conf 如下所示。
  1. [backcolor=transparent] user  nginx[backcolor=transparent];
  3. [backcolor=transparent] error_log  [backcolor=transparent]/[backcolor=transparent]var[backcolor=transparent]/[backcolor=transparent]log[backcolor=transparent]/[backcolor=transparent]nginx[backcolor=transparent]/[backcolor=transparent]error[backcolor=transparent].[backcolor=transparent]log warn[backcolor=transparent];
  4. [backcolor=transparent] pid        [backcolor=transparent]/[backcolor=transparent]var[backcolor=transparent]/[backcolor=transparent]run[backcolor=transparent]/[backcolor=transparent]nginx[backcolor=transparent].[backcolor=transparent]pid[backcolor=transparent];
  6. [backcolor=transparent] events [backcolor=transparent]{
  7. [backcolor=transparent]     worker_connections  [backcolor=transparent]65535[backcolor=transparent];
  8. [backcolor=transparent] [backcolor=transparent]}
  9. [backcolor=transparent] http [backcolor=transparent]{
  10. [backcolor=transparent]     include       [backcolor=transparent]/[backcolor=transparent]etc[backcolor=transparent]/[backcolor=transparent]nginx[backcolor=transparent]/[backcolor=transparent]mime[backcolor=transparent].[backcolor=transparent]types[backcolor=transparent];
  11. [backcolor=transparent]     default_type  application[backcolor=transparent]/[backcolor=transparent]octet[backcolor=transparent]-[backcolor=transparent]stream[backcolor=transparent];
  13. [backcolor=transparent]     log_format  main  [backcolor=transparent]'$remote_addr - $remote_user [$time_local] "$request" '
  14. [backcolor=transparent]                       [backcolor=transparent]'$status $body_bytes_sent "$http_referer" '
  15. [backcolor=transparent]                       [backcolor=transparent]'"$http_user_agent" "$http_x_forwarded_for"'[backcolor=transparent];
  17. [backcolor=transparent]     access_log  [backcolor=transparent]/[backcolor=transparent]var[backcolor=transparent]/[backcolor=transparent]log[backcolor=transparent]/[backcolor=transparent]nginx[backcolor=transparent]/[backcolor=transparent]access[backcolor=transparent].[backcolor=transparent]log  main[backcolor=transparent];
  18. [backcolor=transparent]     keepalive_timeout  [backcolor=transparent]65[backcolor=transparent];
  19. [backcolor=transparent]     gzip  on[backcolor=transparent];
  20. [backcolor=transparent]     server [backcolor=transparent]{
  21. [backcolor=transparent]         listen       [backcolor=transparent]80[backcolor=transparent];
  22. [backcolor=transparent]         server_name  localhost[backcolor=transparent];
  23. [backcolor=transparent]         [backcolor=transparent]return[backcolor=transparent] [backcolor=transparent]301[backcolor=transparent] https[backcolor=transparent]:[backcolor=transparent]//$host$request_uri;
  24. [backcolor=transparent]     [backcolor=transparent]}
  25. [backcolor=transparent] [backcolor=transparent]}

使用编排模板创建 nginx 应用。
编排示例如下:
[backcolor=transparent]compose V1/V2 示例
  1. [backcolor=transparent] nginx[backcolor=transparent]:
  2. [backcolor=transparent]   ports[backcolor=transparent]:
  3. [backcolor=transparent]     [backcolor=transparent]-[backcolor=transparent] [backcolor=transparent]80[backcolor=transparent]:[backcolor=transparent]80[backcolor=transparent]/[backcolor=transparent]tcp [backcolor=transparent]# 映射到主机的 80 端口
  4. [backcolor=transparent]   image[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]'nginx:latest'
  5. [backcolor=transparent]   labels[backcolor=transparent]:
  6. [backcolor=transparent]     aliyun[backcolor=transparent].[backcolor=transparent]global[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]true[backcolor=transparent] [backcolor=transparent]# 每台机器均部署一个 nginx 容器,达到高可用目的
  7. [backcolor=transparent]   volumes[backcolor=transparent]:
  8. [backcolor=transparent]     [backcolor=transparent]-[backcolor=transparent] [backcolor=transparent]/ngx/[backcolor=transparent]nginx[backcolor=transparent].[backcolor=transparent]conf[backcolor=transparent]:[backcolor=transparent]/etc/[backcolor=transparent]nginx[backcolor=transparent]/[backcolor=transparent]nginx[backcolor=transparent].[backcolor=transparent]conf
  9. [backcolor=transparent]   restart[backcolor=transparent]:[backcolor=transparent] always

[backcolor=transparent]compose V3 示例
  1. [backcolor=transparent] version[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]'3'
  2. [backcolor=transparent] services[backcolor=transparent]:
  3. [backcolor=transparent]   nginx[backcolor=transparent]:
  4. [backcolor=transparent]     ports[backcolor=transparent]:
  5. [backcolor=transparent]       [backcolor=transparent]-[backcolor=transparent] [backcolor=transparent]80[backcolor=transparent]:[backcolor=transparent]80[backcolor=transparent]/[backcolor=transparent]tcp [backcolor=transparent]# 映射到主机的 80 端口
  6. [backcolor=transparent]     image[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]'nginx:latest'
  7. [backcolor=transparent]     deploy[backcolor=transparent]:
  8. [backcolor=transparent]       mode[backcolor=transparent]:[backcolor=transparent] [backcolor=transparent]global[backcolor=transparent]  [backcolor=transparent]#在每个节点下运行一个容器
  9. [backcolor=transparent]       restart_policy[backcolor=transparent]:
  10. [backcolor=transparent]         condition[backcolor=transparent]:[backcolor=transparent] on[backcolor=transparent]-[backcolor=transparent]failure
  11. [backcolor=transparent]     volumes[backcolor=transparent]:
  12. [backcolor=transparent]       [backcolor=transparent]-[backcolor=transparent] [backcolor=transparent]/ngx/[backcolor=transparent]nginx[backcolor=transparent].[backcolor=transparent]conf[backcolor=transparent]:[backcolor=transparent]/etc/[backcolor=transparent]nginx[backcolor=transparent]/[backcolor=transparent]nginx[backcolor=transparent].[backcolor=transparent]conf

配置集群负载均衡的监听规则。
如下图所示(其中,前端 80 端口 > 后端 80 端口,即主机端口 > nginx 的容器端口 80)。

验证 HTTP 强制跳转到 HTTPS
当您访问 http://www.example.com 时,返回的 HTTP 协议内容如下图所示,即完成了正确跳转到 https://www.example.com

展开
收起
反向一觉 2017-10-30 16:00:34 2244 分享 版权

版权声明:本文内容由阿里云实名注册用户自发贡献,版权归原作者所有,阿里云开发者社区不拥有其著作权,亦不承担相应法律责任。具体规则请查看《阿里云开发者社区用户服务协议》和《阿里云开发者社区知识产权保护指引》。如果您发现本社区中有涉嫌抄袭的内容,填写侵权投诉表单进行举报,一经查实,本社区将立刻删除涉嫌侵权内容。

0 条回答
写回答
取消 提交回答
问答分类:
负载均衡 网络协议 前端开发 应用服务中间件 nginx Windows 容器 负载均衡
问答标签:
HTTP https 集群负载均衡 HTTPS HTTP 服务发现负载均衡 swarm负载均衡
问答地址:
开发者社区 > 开发与运维 > 问答
相关问答
微服务引擎云原生网关路由匹配顺序
103
1
0
Serverless应用引擎http跳转https
80
0
0
指向ALB为什么http能用https不能用
122
1
0
SLB如何配置HTTP代理转发
207
1
0
Serverless 应用引擎2.0中的Web应用是自动负载均衡的吗?还有是否支持HTTP/2?
58
1
0
通过alb绑定函数计算fc转发 没有设置过域名 http请求会被强制重定向到https怎么办?
140
1
0
请问负载均衡ALB slb高并发性能上不去,怀疑是http2 并发只有100的问题,应该如何解决?
130
1
0
微服务引擎MSE云原生网关支持批量添加路由吗
65
1
0
负载均衡支持的HTTP协议版本有哪些
96
1
0
SLB如何将http监听修改为https监听
102
1
0