$ sudo apt-get install nginxCreate logs directory.
$ sudo mkdir -p /var/logs/nginxCreate configuration file.
$ sudo vi new_sitee.g. to listen to a port listen_port and redirect to a host target_host:target_port, use:
server {
listen <listen_port>;
allow <allowed_network_address>;
deny all;
location / {
proxy_pass <target_host>:<target_port>/;
proxy_redirect off;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection 'upgrade';
proxy_set_header Host $host;
proxy_cache_bypass $http_upgrade;
}
access_log /var/logs/nginx/nginx-access.log;
error_log /var/logs/nginx/nginx-error.log;
}where allowed_network_address is a whitelisted address.
Copy the configuration file as the sites-available default (this will overwrite existing sites!)
$ sudo cp new_site /etc/nginx/sites-available/defaultor, alternatively, copy as a new file into the sites-available directory and symlink from the sites-enabled directory
(only sites in sites-enabled are included by nginx.conf, where sites-available/default is symlinked as standard).
Check the new configuration file and reload nginx.
$ sudo nginx -t
$ sudo systemctl reload nginxBy default, nginx only proxies HTTP/HTTPS. Custom modules can be used to proxy custom TCP streams.
Install additional nginx module.
$ sudo apt-get install libnginx-mod-stream
$ sudo systemctl reload nginxCreate folders for streams in etc/nginx copying sites-* nomenclature.
/etc/nginx$ sudo mkdir streams-enabled
/etc/nginx$ sudo mkdir streams-availableCreate file for new stream in streams-available, e.g.
/etc/nginx$ sudo vi streams-available/new-streamand add stream rules:
server {
listen <listen_port>;
proxy_pass <target_host>:<target_port>;
}Link new stream configuration file from streams-enabled.
/etc/nginx$ ln -s sites-available/new-stream sites-enabled/new-streamEdit nginx.conf to add the logic for stream inclusion.
/etc/nginx$ vi nginx.confAdding:
stream {
access_log off;
error_log /var/log/nginx/error.stream.log;
include /etc/nginx/streams-enabled/*;
}after the http stanza.