我的方案是在使用openresty反向代理后,通过frp的http、https隧道穿透到公网。但上传大文件(大于10m)时总会出现卡进度条问题,在webdav中上传20m小文件时进度条会涨一小节截后卡住,反复如此,最后上传到100%时也是卡住半天才上传完成。如果在网页端上传则可能出现超时报错,上传失败等症状。
起初我怀疑是frp性能不佳,将通道直接改为tcp,故障依旧,接着对openresty开刀
1panel中openresty默认配置如下
user root;
worker_processes auto;
error_log /var/log/nginx/error.log notice;
error_log /dev/stdout notice;
pid /var/run/nginx.pid;
worker_rlimit_nofile 51200;
events {
use epoll;
worker_connections 5120;
multi_accept on;
}
http {
include mime.types;
default_type application/octet-stream;
log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"';
access_log /var/log/nginx/access.log main;
access_log /dev/stdout main;
server_tokens off;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
server_names_hash_bucket_size 512;
client_header_buffer_size 32k;
client_max_body_size 4m;
keepalive_timeout 60;
keepalive_requests 100;
gzip on;
gzip_min_length 1k;
gzip_buffers 4 16k;
gzip_http_version 1.1;
gzip_comp_level 2;
gzip_types text/plain application/javascript application/x-javascript text/javascript text/css application/xml;
gzip_vary on;
gzip_proxied expired no-cache no-store private auth;
gzip_disable "MSIE [1-6]\.";
limit_conn_zone $binary_remote_addr zone=perip:10m;
limit_conn_zone $server_name zone=perserver:10m;
include /usr/local/openresty/nginx/conf/conf.d/*.conf;
include /usr/local/openresty/nginx/conf/default/*.conf;
include /usr/local/openresty/1pwaf/data/conf/waf.conf;
}总结就是,缓冲区设置不足和超时设置不足,需修改部分内容,其余配置不变
# 增大缓存
client_header_buffer_size 64k;
client_body_buffer_size 1m;
client_body_temp_path /tmp/nginx_client_body_temp 1 2;
client_max_body_size 1024m;
# 延迟超时时间
client_body_timeout 300;
client_header_timeout 60;
keepalive_timeout 300;
keepalive_requests 100;
# 优化大文件传输
proxy_buffering off;
proxy_request_buffering off;
# 如果使用代理,增加代理超时
proxy_connect_timeout 300;
proxy_send_timeout 300;
proxy_read_timeout 300;
在修改后,上传文件终于变得平缓,上传过程也没有超时报错现象了。
评论