2月21日 16:50
What are common Nginx deployment architectures? How to choose the right architecture?
What are common Nginx deployment architectures? How to choose the right architecture?
Nginx can adopt various deployment architectures based on different business requirements and scales, from single-machine deployment to distributed clusters.
Single-Machine Deployment Architecture:
Client → Nginx → Application Server → Database
Use Cases:
- Small websites or applications
- Development and testing environments
- Low-traffic business
Configuration Example:
server { listen 80; server_name example.com; root /var/www/html; index index.php index.html; location ~ \.php$ { fastcgi_pass unix:/var/run/php/php8.0-fpm.sock; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } location / { try_files $uri $uri/ =404; } }
Reverse Proxy Architecture:
Client → Nginx (Reverse Proxy) → Backend Server Cluster
Use Cases:
- Multiple application servers need unified entry
- Need load balancing
- Need to hide backend servers
Configuration Example:
upstream backend { server 192.168.1.100:8080 weight=3; server 192.168.1.101:8080 weight=2; server 192.168.1.102:8080 weight=1; keepalive 32; } server { listen 80; server_name example.com; location / { proxy_pass http://backend; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; } }
Load Balancing Architecture:
Client → Nginx (Load Balancer) → Backend Server Pool
Use Cases:
- High concurrent access
- Need horizontal scaling
- Need high availability
Load Balancing Strategies:
# Round-robin (default) upstream backend { server 192.168.1.100:8080; server 192.168.1.101:8080; } # Least connections upstream backend { least_conn; server 192.168.1.100:8080; server 192.168.1.101:8080; } # IP hash upstream backend { ip_hash; server 192.168.1.100:8080; server 192.168.1.101:8080; } # Weighted round-robin upstream backend { server 192.168.1.100:8080 weight=3; server 192.168.1.101:8080 weight=2; server 192.168.1.102:8080 weight=1; }
Multi-Layer Proxy Architecture:
Client → Edge Nginx → Middle Nginx → Application Server
Use Cases:
- Large-scale distributed systems
- Need multi-layer caching
- Need security isolation
Configuration Example:
# Edge Nginx upstream middle_layer { server 192.168.1.200:80; server 192.168.1.201:80; } server { listen 80; server_name example.com; location / { proxy_pass http://middle_layer; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; } } # Middle layer Nginx upstream backend { server 192.168.1.100:8080; server 192.168.1.101:8080; } server { listen 80; server_name middle.example.com; location / { proxy_pass http://backend; proxy_set_header Host $host; } }
CDN Integration Architecture:
Client → CDN → Origin Nginx → Backend Servers
Use Cases:
- Global user access
- Need to accelerate static resources
- Need to reduce origin server pressure
Configuration Example:
server { listen 80; server_name example.com; # Redirect static resources to CDN location ~* \.(css|js|jpg|jpeg|png|gif|ico|svg|woff|woff2)$ { return 301 https://cdn.example.com$request_uri; } # Dynamic content location / { proxy_pass http://backend; proxy_set_header Host $host; } }
High Availability Architecture (Keepalived + Nginx):
Client → VIP (Virtual IP) ↓ Nginx Master Node ← Keepalived ↓ Nginx Backup Node ← Keepalived ↓ Backend Servers
Use Cases:
- Need high availability
- Cannot accept single point of failure
- Critical business systems
Configuration Example:
# Master node Nginx configuration upstream backend { server 192.168.1.100:8080; server 192.168.1.101:8080; } server { listen 80; server_name example.com; location / { proxy_pass http://backend; proxy_set_header Host $host; } } # Keepalived configuration vrrp_instance VI_1 { state MASTER interface eth0 virtual_router_id 51 priority 100 advert_int 1 authentication { auth_type PASS auth_pass 1234 } virtual_ipaddress { 192.168.1.50 } }
Microservices Architecture:
Client → Nginx (API Gateway) → Microservices Cluster
Use Cases:
- Microservices architecture
- Need unified API entry
- Need service discovery
Configuration Example:
# User service upstream user_service { server 192.168.1.100:8080; server 192.168.1.101:8080; } # Order service upstream order_service { server 192.168.1.200:8080; server 192.168.1.201:8080; } # Payment service upstream payment_service { server 192.168.1.300:8080; server 192.168.1.301:8080; } server { listen 80; server_name api.example.com; # Route to user service location /api/users/ { proxy_pass http://user_service; proxy_set_header Host $host; } # Route to order service location /api/orders/ { proxy_pass http://order_service; proxy_set_header Host $host; } # Route to payment service location /api/payments/ { proxy_pass http://payment_service; proxy_set_header Host $host; } }
Caching Architecture:
Client → Nginx (Cache Layer) → Backend Servers
Use Cases:
- Read-heavy, write-light applications
- Need to reduce backend pressure
- Need to improve response speed
Configuration Example:
# Define cache path proxy_cache_path /var/cache/nginx/proxy levels=1:2 keys_zone=proxy_cache:10m max_size=1g inactive=60m; upstream backend { server 192.168.1.100:8080; server 192.168.1.101:8080; } server { listen 80; server_name example.com; location / { # Enable caching proxy_cache proxy_cache; proxy_cache_valid 200 10m; proxy_cache_valid 404 1m; proxy_cache_key "$scheme$request_method$host$request_uri"; # Cache bypass conditions proxy_cache_bypass $http_cache_control; proxy_no_cache $http_cache_control; proxy_pass http://backend; proxy_set_header Host $host; # Add cache status header add_header X-Cache-Status $upstream_cache_status; } }
Hybrid Architecture:
Client → Nginx (Static Resources) → CDN ↓ Nginx (Dynamic Content) → Application Server
Use Cases:
- Complex business systems
- Need to separate static and dynamic content
- Need multiple optimization strategies
Configuration Example:
# Static resource server server { listen 80; server_name static.example.com; root /var/www/static; location ~* \.(css|js|jpg|jpeg|png|gif|ico|svg|woff|woff2)$ { expires 1y; add_header Cache-Control "public, immutable"; access_log off; } } # Dynamic content server upstream backend { server 192.168.1.100:8080; server 192.168.1.101:8080; } server { listen 80; server_name example.com; location / { proxy_pass http://backend; proxy_set_header Host $host; } }
Architecture Selection Guide:
| Business Requirements | Recommended Architecture | Description |
|---|---|---|
| Small website | Single-machine deployment | Simple and easy to maintain |
| Medium application | Reverse proxy | Unified entry, load balancing |
| High concurrency | Load balancing architecture | Horizontal scaling, high availability |
| Global business | CDN integration architecture | Accelerate access, reduce origin pressure |
| Critical business | High availability architecture | Avoid single point of failure |
| Microservices | Microservices architecture | Unified API gateway |
| Read-heavy, write-light | Caching architecture | Improve performance, reduce backend pressure |
Deployment Architecture Best Practices:
- Progressive scaling: Start with simple architecture, expand gradually based on needs
- Monitoring and alerting: Real-time monitoring of architecture status, timely issue detection
- Disaster recovery backup: Configure backup and disaster recovery solutions
- Security protection: Add security measures at each layer of the architecture
- Performance optimization: Choose appropriate optimization strategies based on business characteristics
- Documentation: Detailed recording of architecture design and configuration
- Regular drills: Regular fault drills to verify architecture reliability
- Cost control: Control costs while meeting requirements