Windows伺服器佈建服務端代理Apache的例子

先發本地Apache配置樣本：
主設定檔因人而異，如果需要重寫，勿忘開啟：

LoadModule rewrite_module modules/mod_rewrite.so

不建議內容都寫在主目錄中，請使用子檔案引入：

 

# Virtual hosts
Include etc/extra/httpd-vhosts.conf
# Various default settings
Include etc/extra/httpd-default.conf
預設打底配置，逾時時間如果是下載機，請適當調整。

#
# This configuration file reflects default settings for Apache HTTP Server.
#
# You may change these, but chances are that you may not need to.
#
 
#
# Timeout: The number of seconds before receives and sends time out.
#
Timeout55
 
#
# KeepAlive: Whether or not to allow persistent connections (more than
# one request per connection). Set to "Off" to deactivate.
#
KeepAlive On
 
#
# MaxKeepAliveRequests: The maximum number of requests to allow
# during a persistent connection. Set to 0 to allow an unlimited amount.
# We recommend you leave this number high, for maximum performance.
#
MaxKeepAliveRequests100
 
#
# KeepAliveTimeout: Number of seconds to wait for the next request from the
# same client on the same connection.
#
KeepAliveTimeout10
 
#
# UseCanonicalName: Determines how Apache constructs self-referencing
# URLs and the SERVER_NAME and SERVER_PORT variables.
# When set "Off", Apache will use the Hostname and Port supplied
# by the client.  When set "On", Apache will use the value of the
# ServerName directive.
#
UseCanonicalName Off
 
#
# AccessFileName: The name of the file to look for in each directory
# for additional configuration directives.  See also the AllowOverride
# directive.
#
AccessFileName.htaccess
 
#
# ServerTokens
# This directive configures what you return as the Server HTTP response
# Header. The default is 'Full' which sends information about the OS-Type
# and compiled in modules.
# Set to one of:  Full | OS | Minor | Minimal | Major | Prod
# where Full conveys the most information, and Prod the least.
#
ServerTokens Prod
 
#
# Optionally add a line containing the server version and virtual host
# name to server-generated pages (internal error documents, FTP directory
# listings, mod_status and mod_info output etc., but not CGI generated
# documents or custom error documents).
# Set to "EMail" to also include a mailto: link to the ServerAdmin.
# Set to one of:  On | Off | EMail
#
ServerSignature Off
 
#
# HostnameLookups: Log the names of clients or just their IP addresses
# e.g., www.apache.org (on) or 204.62.129.132 (off).
# The default is off because it'd be overall better for the net if people
# had to knowingly turn this feature on, since enabling it means that
# each client request will result in AT LEAST one lookup request to the
# nameserver.
#
HostnameLookups Off
 
#
# Set a timeout for how long the client may take to send the request header
# and body.
# The default for the headers is header=20-40,MinRate=500, which means wait
# for the first byte of headers for 20 seconds. If some data arrives,
# increase the timeout corresponding to a data rate of 500 bytes/s, but not
# above 40 seconds.
# The default for the request body is body=20,MinRate=500, which is the same
# but has no upper limit for the timeout.
# To disable, set to header=0 body=0
#
<IfModule reqtimeout_module>
  RequestReadTimeout header=20-40,MinRate=500body=20,MinRate=500
</IfModule>

如果你的網站沒有使用fast—cgi方式的話，可以這樣設定：

## www.111cn.net
<VirtualHost *:80>
    <Directory"/Users/soulteary/Blog/www.111cn.net/public">
        Options Indexes FollowSymLinks ExecCGI Includes
        AllowOverride All
        Require all granted
    </Directory>
 
    <IfModule dir_module>
        DirectoryIndex index.php index.html
    </IfModule>
 
    <Files".ht*">
        Require all denied
    </Files>
 
    # 如果你需要調整 mime-type，可以這樣
    # AddType text/x-component .htc
 
    LogLevel warn
 
    ServerAdmin webmaster@soulteary.com
    DocumentRoot"/Users/soulteary/Blog/www.111cn.net/public"
    ServerName www.111cn.net
    ServerAlias soulteary.com
    ErrorLog"/Users/soulteary/Blog/www.111cn.net/logs/www.111cn.net-error.log"
    CustomLog"/Users/soulteary/Blog/www.111cn.net/logs/www.111cn.net-access.log"combined
</VirtualHost>
如果你要配合hhvm之類的fast-cgi的程式使用

## www.111cn.net
<VirtualHost *:80>
    ServerAdmin developer@www.111cn.net
    DocumentRoot"/yourpath/www.111cn.net/public"
    ServerName www.111cn.net
    ServerAlias soulteary.com
 
    <Directory"/yourpath/www.111cn.net/public">
        Options Indexes FollowSymLinks ExecCGI Includes
        Options-MultiViews
        AllowOverride All
        Require all granted
        DirectoryIndex index.php index.html
    </Directory>
 
    ErrorLog"/yourpath/www.111cn.net/logs/www.111cn.net-error_log"
    CustomLog"/yourpath/www.111cn.net/logs/www.111cn.net-access_log"common
 
    <IfModule mod_proxy.c>
        ProxyPass/fcgi://127.0.0.1:9000/yourpath/www.111cn.net/public/
        ProxyPassMatch^/(.*\.php(/.*)?)$fcgi://127.0.0.1:9000/yourpath/www.111cn.net/public/$1
        ProxyVia Off
    </IfModule>
 
</VirtualHost>

預設網站以IP訪問的時候你可以禁止訪問，也可以允許指定的IP或者UA訪問（比如linode logview等），如果是資訊類網站，可以考慮把流量引導網站內。

## 預設網站禁止訪問
<VirtualHost *:80>
    ## 你的伺服器監聽的IP地址
    ServerName12.34.56.78
    ## 伺服器有多個IP？
    #ServerAliase 12.34.56.79
    ## 寫一個預設的，以免牽扯出其他網站的資訊
    ServerAdmin webmaster@localhost
    ## 限定一個目錄
    DocumentRoot/var/www/html
    <Directory/>
        Order deny,allow
        Deny from all
    </Directory>
 
    ## 你可以轉向訪問到你的網站，並附帶一個尾巴
    RedirectMatch^/.*$http://www.111cn.net/?ref=ip
    ErrorLog${APACHE_LOG_DIR}/error.log
    CustomLog${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

關於Apache 有一個配置細節，就是因為程式是順序解析執行，需要先定義document directory，在定義index 檔案，防止程式自己找不到報錯。
有的童鞋經常看到自己的網站被垃圾蜘蛛或者掃描器爬，不妨添加一些簡單的規則，去過濾這類爬取。

# blocking bots, spammers, harvesters...
SetEnvIfNoCase User-Agent"Download Ninja 2.0"block_bad_bots
SetEnvIfNoCase User-Agent"Fetch API Request"block_bad_bots
SetEnvIfNoCase User-Agent"HTTrack"block_bad_bots
SetEnvIfNoCase User-Agent"ia_archiver"block_bad_bots
SetEnvIfNoCase User-Agent"JBH Agent 2.0"block_bad_bots
SetEnvIfNoCase User-Agent"QuepasaCreep"block_bad_bots
SetEnvIfNoCase User-Agent"Program Shareware 1.0.0"block_bad_bots
SetEnvIfNoCase User-Agent"TestBED.6.3"block_bad_bots
SetEnvIfNoCase User-Agent"WebAuto"block_bad_bots
SetEnvIfNoCase User-Agent"WebCopier"block_bad_bots
SetEnvIfNoCase User-Agent"Wget/1.8.2"block_bad_bots
SetEnvIfNoCase User-Agent"Offline Explorer"block_bad_bots
SetEnvIfNoCase User-Agent"Franklin Locator"block_bad_bots
SetEnvIfNoCase User-Agent"LWP::Simple"block_bad_bots
SetEnvIfNoCase User-Agent"Larbin"block_bad_bots
SetEnvIfNoCase User-Agent"Rufus Web Miner"block_bad_bots
SetEnvIfNoCase User-Agent"Port Huron Labs"block_bad_bots
SetEnvIfNoCase User-Agent"Sphider"block_bad_bots
SetEnvIfNoCase User-Agent"voyager/1.0"block_bad_bots
SetEnvIfNoCase User-Agent"DynaWeb"block_bad_bots
SetEnvIfNoCase User-Agent"EmailCollector/1.0"block_bad_bots_bot
SetEnvIfNoCase User-Agent"EmailSiphon"block_bad_bots_bot
SetEnvIfNoCase User-Agent"EmailWolf 1.00"block_bad_bots_bot
SetEnvIfNoCase User-Agent"ExtractorPro"block_bad_bots_bot
SetEnvIfNoCase User-Agent"Crescent Internet ToolPak"block_bad_bots_bot
SetEnvIfNoCase User-Agent"CherryPicker/1.0"block_bad_bots_bot
SetEnvIfNoCase User-Agent"CherryPickerSE/1.0"block_bad_bots_bot
SetEnvIfNoCase User-Agent"CherryPickerElite/1.0"block_bad_bots_bot
SetEnvIfNoCase User-Agent"NICErsPRO"block_bad_bots_bot
SetEnvIfNoCase User-Agent"WebBandit/2.1"block_bad_bots_bot
SetEnvIfNoCase User-Agent"WebBandit/3.50"block_bad_bots_bot
SetEnvIfNoCase User-Agent"webbandit/4.00.0"block_bad_bots_bot
SetEnvIfNoCase User-Agent"WebEMailExtractor/1.0B"block_bad_bots_bot
SetEnvIfNoCase User-Agent"autoemailspider"block_bad_bots_bot
SetEnvIfNoCase User-Agent"^libwww-perl"block_bad_bots
SetEnvIfNoCase User-Agent"^WordPress/2\.0\.2"block_bad_bots
SetEnvIfNoCase User-Agent"^Opera/9\.0 \(Windows NT5\.1;U;en\)"block_bad_bots
SetEnvIfNoCase User-Agent"^PycURL/7\.15\.5$"block_bad_bots
SetEnvIfNoCase User-Agent"^TurnitinBot"block_bad_bots
SetEnvIfNoCase User-Agent"^West Wind Internet Protocols"block_bad_bots
SetEnvIfNoCase User-Agent"^POE::Component::Client::HTTP/"block_bad_bots
SetEnvIfNoCase User-Agent"^User-Agent: Mozilla/4.0"block_bad_bots
SetEnvIfNoCase User-Agent"netforex"block_bad_bots
SetEnvIfNoCase User-Agent"^SMBot/"block_bad_bots
SetEnvIfNoCase User-Agent"^Mozilla/4.0 \(compatible;MSIE4\.0;Windows NT;\.\.\.\.\.\./1\.0\)$"block_bad_bots
SetEnvIfNoCase User-Agent"envolk"block_bad_bots
SetEnvIfNoCase User-Agent"^TMCrawler"block_bad_bots
SetEnvIfNoCase User-Agent"^Opera/6\.01 \(Windows ME;U\) \[en\]"block_bad_bots
SetEnvIfNoCase User-Agent"^NASA Search"block_bad_bots
SetEnvIfNoCase User-Agent"^TrackBack/"block_bad_bots
SetEnvIfNoCase User-Agent"^Mozilla/4\.0 \(compatible;MSIE6\.0;Windows NT5\.0;Maxthon\)$"block_bad_bots
SetEnvIfNoCase User-Agent"QihooBot"block_bad_bots
SetEnvIfNoCase User-Agent"^Gigabot/.\.."block_bad_bots
SetEnvIfNoCase User-Agent"K-Meleon/0\.8"block_bad_bots
SetEnvIfNoCase User-Agent"Twiceler"block_bad_bots
SetEnvIfNoCase User-Agent"^NSPlayer"block_bad_bots
SetEnvIfNoCase User-Agent"^Microsoft URL Control"block_bad_bots
SetEnvIfNoCase User-Agent"^InetURL"block_bad_bots
SetEnvIfNoCase User-Agent"DotBot"block_bad_bots
SetEnvIfNoCase User-Agent"YandexBot"block_bad_bots
SetEnvIfNoCase User-Agent"Nutch"block_bad_bots
SetEnvIfNoCase User-Agent"Mozilla/4\.0 \(compatible;ICS\)"block_bad_bots
SetEnvIfNoCase User-Agent"Mozilla/3\.0 \(compatible;Indy Library\)"block_bad_bots
 
<Directory/var/www/vhosts/>
Order Allow,Deny
Allow from all
Deny from env=block_bad_bots
</Directory>