import{_ as n,c as s,o as a,a as e}from"./app.31af427a.js";const v='{"title":"\u51C6\u5907\u5DE5\u4F5C","description":"","frontmatter":{},"headers":[{"level":2,"title":"\u51C6\u5907\u5DE5\u4F5C","slug":"\u51C6\u5907\u5DE5\u4F5C"},{"level":2,"title":"NGINX\u914D\u7F6E","slug":"nginx\u914D\u7F6E"},{"level":2,"title":"\u4F7F\u7528\u65B9\u5F0F","slug":"\u4F7F\u7528\u65B9\u5F0F"},{"level":2,"title":"\u9632\u6B62\u76D7\u7528","slug":"\u9632\u6B62\u76D7\u7528"}],"relativePath":"guide/q1.md","lastUpdated":1668840399000}',t={},p=e(`

\u51C6\u5907\u5DE5\u4F5C

\u4F60\u53EF\u4EE5\u9009\u62E9CloudFlare\u7684workers\u8FDB\u884C\u53CD\u4EE3,\u4F46\u5927\u9646\u7684\u7F51\u7EDC\u4F60\u61C2\u7684,\u8FD9\u91CC\u4ECB\u7ECD\u7528\u4F60\u81EA\u5DF1\u670D\u52A1\u5668\u53CD\u4EE3\u65B9\u5F0F
\u642D\u5EFA\u4E00\u4E2ATGbot api\u53CD\u4EE3\uFF0C\u4F60\u9700\u8981\uFF1A
1.\u4E00\u4E2A\u4E0D\u53D7GFW\u5C01\u9501\u7684\u670D\u52A1\u5668(\u4E14\u5B89\u88C5\u597Dnginx)
2.\u4E00\u4E2A\u57DF\u540D(\u63D0\u524D\u7533\u8BF7SSL\u8BC1\u4E66)

NGINX\u914D\u7F6E

\u7F16\u8F91\u4F60nginx\u7684\u914D\u7F6E\u6587\u4EF6,\u5728http{}\u4E2D\u52A0\u4E0A\u5982\u4E0B\u914D\u7F6E

# http\u5F3A\u5236\u8DF3\u8F6C\u5230htpps
server {
    listen 80;
    listen [::]:80;
    server_name yourDomainName;

    # Enforce HTTPS
    return 301 https://$server_name$request_uri;
}
## https
server {
        listen 443 ssl;
        listen [::]:443 ssl;

    server_name yourDomainName;

        ## ssl\u5BC6\u94A5\u8DEF\u5F84\u81EA\u5DF1\u6539\u6539
	ssl_certificate server.pem;
	ssl_certificate_key server.key;

        ## root\u975E\u5FC5\u8981
	root /var/www/tgbot/;

        ## dns\u5FC5\u987B\u5199\uFF0C\u4E0D\u7136\u4F1A\u62A5502\u9519\u8BEF
        resolver 8.8.8.8;

        ## \u4EE5bot\u5F00\u5934\u7684\u8BF7\u6C42\u90FD\u4F1A\u88AB\u6B63\u5219\u5339\u914D\u5230
        location ~* ^/bot {
		proxy_buffering off;
                proxy_pass  https://api.telegram.org$request_uri;
                proxy_http_version 1.1;
        }

        ## \u548C\u4E0A\u9762root\u4E00\u6837\u975E\u5FC5\u8981\uFF0C\u8FD9\u4E2A\u4E3B\u8981\u662F\u7528\u6765\u786E\u8BA4\u670D\u52A1\u5668\u72B6\u6001\u7684\u3002\u4E5F\u53EF\u4EE5\u6539\u6210return 403
	location /{ 
		try_files /$uri $uri /index.html;
	}

        ## no log no fix
        error_log    /var/log/tg.log  error;
}

yourDomainName-\u4F60\u51C6\u5907\u7684\u57DF\u540D
ssl_certificate-SSL\u8BC1\u4E66\u8DEF\u5F84
ssl_certificate_key-SSL\u8BC1\u4E66\u8DEF\u5F84

\u4F7F\u7528\u65B9\u5F0F

\u{1F389}\u7136\u540E\u6267\u884Csystemctl restart nginx\u56DE\u5230nezha\u5C06\u539F\u6765\u7684https://api.telegram.org/ \u66FF\u6362\u4E3Ahttps://yourDomainName/ ,\u5373\u53EF\u6B63\u5E38\u63A8\u9001\u6D88\u606F

\u9632\u6B62\u76D7\u7528

serverIp-\u4F60\u76D1\u63A7\u9E21\u7684ip\u5730\u5740,\u4F60\u7CFB\u7EDF\u5B89\u88C5\u7684\u90A3\u4E2A\u5C31\u7528\u90A3\u4E2A\u547D\u4EE4,ufw iptables\u90FD\u53EF.

#ubuntu
ufw allow proto tcp from serverIp to any port 443
#centos
iptables -I INPUT -p tcp --dport 443 -j DROP
iptables -I INPUT -s serverIp -p tcp --dport 443 -j ACCEPT
`,11),o=[p];function c(r,l,i,k,d,u){return a(),s("div",null,o)}var _=n(t,[["render",c]]);export{v as __pageData,_ as default};