[GH-ISSUE #1169] 节点配置多机的套了cdn无法链接 #2418

New issue

Closed

opened 2026-02-27 12:22:04 +03:00 by kerem · 0 comments

kerem commented

2026-02-27 12:22:04 +03:00

Owner

Originally created by @Silentely on GitHub (Jun 24, 2025).
Original GitHub issue: https://github.com/0xJacky/nginx-ui/issues/1169

佬，a机器通过设置b机器域名通过节点连接，Cloudflare小黄云代理b机器，已添加waf跳过。
现在情况是如果通过ip添加节点，首页能看到b机器状态，也能通过链接修改b机器配置，
但是如果通过域名添加节点，首页能看到b机器状态，但是点击链接跳转后提示服务器错误，
a与b均是通过docker拉取最新镜像部署且给予网络模式为host，且均未开启防火墙。
但是如果在a机器上同步证书或者配置却又可以，只是无法通过链接去修改b机器

a机器网页控制台输出

a机器程序日志

a机器期间nginx访问日志（只有一条，应该是首页状态的，点击链接后无访问日志）

162.222.921.100 - - [24/Jun/2025:19:17:23 +0800] "GET /api/analytic/nodes?token=ZXlKaGJHY2lPaUpJVXpJMU5pSXNJblI1Y0NJNklrcFhWQ0o5LmV5SnVZVzFsSWpvaVlXUnRhVzRpTENKMWMyVnlYMmxrSWpveExDSnBjM01pT2lKT1oybHVlQ0JWU1NJc0luTjFZaUk2SW1Ga2JXbHVJaXdpWlhod0lqb3hOelV3T0RRMk9UTTNMQ0p1WW1ZaU9qRTNOVEEzTmpBMU16Y3NJbWxoZENJNk1UYzFNRGMyTURVek55d2lhblJwSWpvaU1TSjkuaUZWaEs4Vkl5TlZpb08tQU96UWEzV0hSMFV1bEVKSENTUU94VUpiOVRRWQ%3D%3D HTTP/1.1" 101 20 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 Edg/137.0.0.0" "22.22.22.22, 22:22:0:142::22:22"

a机器期间无错误日志

b机器程序日志

b机器nginx反代配置文件

map $http_upgrade $connection_upgrade {
    default upgrade;
    '' close;
}
server {
    listen 80;
    listen [::]:80;
    server_name te.22.xyz;
    rewrite ^(.*)$ https://$host$1 permanent;
}
server {
    listen 443 ssl;
    listen [::]:443 ssl;
    http2 on;
    server_name te.22.xyz;
    ssl_certificate /etc/nginx/cert/22.xyz/cert.pem;
    ssl_certificate_key /etc/nginx/cert/22.xyz/key.pem;
    location / {
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection $connection_upgrade;
        proxy_pass http://127.0.0.1:9000/;
        proxy_buffering off;
    }
    location ~ /.well-known/acme-challenge {
        proxy_set_header Host $host;
        proxy_set_header X-Real_IP $remote_addr;
        proxy_set_header X-Forwarded-For $remote_addr:$remote_port;
        proxy_pass http://127.0.0.1:9180;
    }
}

Originally created by @Silentely on GitHub (Jun 24, 2025). Original GitHub issue: https://github.com/0xJacky/nginx-ui/issues/1169 佬，a机器通过设置b机器域名通过节点连接，Cloudflare小黄云代理b机器，已添加waf跳过。现在情况是如果**通过ip添加节点，首页能看到b机器状态，也能通过链接修改b机器配置**，但是如果**通过域名添加节点，首页能看到b机器状态，但是点击链接跳转后提示服务器错误**， a与b均是通过docker拉取最新镜像部署且给予网络模式为host，且均未开启防火墙。但是如果在a机器上同步证书或者配置却又可以，只是无法通过链接去修改b机器 a机器网页控制台输出 ![af75bde17f3e6d6c42fef45edfc8b4ca](https://i.miji.bid/2025/06/24/af75bde17f3e6d6c42fef45edfc8b4ca.png) a机器程序日志 ![431b963e2ade0bd3a2ed02202f473c93](https://i.miji.bid/2025/06/24/431b963e2ade0bd3a2ed02202f473c93.png) a机器期间nginx访问日志（只有一条，应该是首页状态的，点击链接后无访问日志） ``` 162.222.921.100 - - [24/Jun/2025:19:17:23 +0800] "GET /api/analytic/nodes?token=ZXlKaGJHY2lPaUpJVXpJMU5pSXNJblI1Y0NJNklrcFhWQ0o5LmV5SnVZVzFsSWpvaVlXUnRhVzRpTENKMWMyVnlYMmxrSWpveExDSnBjM01pT2lKT1oybHVlQ0JWU1NJc0luTjFZaUk2SW1Ga2JXbHVJaXdpWlhod0lqb3hOelV3T0RRMk9UTTNMQ0p1WW1ZaU9qRTNOVEEzTmpBMU16Y3NJbWxoZENJNk1UYzFNRGMyTURVek55d2lhblJwSWpvaU1TSjkuaUZWaEs4Vkl5TlZpb08tQU96UWEzV0hSMFV1bEVKSENTUU94VUpiOVRRWQ%3D%3D HTTP/1.1" 101 20 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 Edg/137.0.0.0" "22.22.22.22, 22:22:0:142::22:22" ``` a机器期间无错误日志 b机器程序日志 ![0d77f223d8bfdb12c57a6228117be45e](https://i.miji.bid/2025/06/24/0d77f223d8bfdb12c57a6228117be45e.png) b机器nginx反代配置文件 ``` map $http_upgrade $connection_upgrade { default upgrade; '' close; } server { listen 80; listen [::]:80; server_name te.22.xyz; rewrite ^(.*)$ https://$host$1 permanent; } server { listen 443 ssl; listen [::]:443 ssl; http2 on; server_name te.22.xyz; ssl_certificate /etc/nginx/cert/22.xyz/cert.pem; ssl_certificate_key /etc/nginx/cert/22.xyz/key.pem; location / { proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection $connection_upgrade; proxy_pass http://127.0.0.1:9000/; proxy_buffering off; } location ~ /.well-known/acme-challenge { proxy_set_header Host $host; proxy_set_header X-Real_IP $remote_addr; proxy_set_header X-Forwarded-For $remote_addr:$remote_port; proxy_pass http://127.0.0.1:9180; } } ```