Nginx 高并发系统内核优化

Tinywan · Tinywan · commit 174717611be1 · 2017-06-03T14:21:24.000+08:00
diff --git a/Nginx/nginx-parameter-config.md b/Nginx/nginx-parameter-config.md
@@ -1,8 +1,8 @@
 # Nginx 高并发系统内核优化
 ## socket 优化
-#### Nginx 优化
+#### Nginx 
 +   子进程允许打开的连接数：`worker_connections`
-#### 系统内核 优化
+#### 系统内核 
 +   [内核参数的优化](http://blog.csdn.net/moxiaomomo/article/details/19442737)  
 +   实践优化配置
     +  编辑： `vim /etc/sysctl.conf`
@@ -22,10 +22,10 @@
         net.ipv4.tcp_keepalive_time = 30
         ```
     +   执行命令使之生效：`/sbin/sysctl -p`       
-## 文件 优化
-#### Nginx 优化
+## 文件优化
+#### Nginx 
 +   指当一个nginx进程打开的最多文件描述符数目：`worker_rlimit_nofile 100000;`
-#### 系统内核 优化
+#### 系统内核 
 +   系统限制其最大进程数：`ulimit -n`
 +   编辑文件：`/etc/security/limits.conf`
     ```conf
@@ -35,6 +35,10 @@
     * soft nofile 65535
     * hard nofile 65535
     ```
+##   PHP-FPM优化
++   rlimit_files    
++   rlimit_files    
++   rlimit_files    
 ## 优化配置文件
 +   nginx优化配置文件
     ```lua
@@ -50,19 +54,117 @@
       use epoll;
       worker_connections 204800;
     }
+    
+    http
+    {
+      include       mime.types;
+      default_type  application/octet-stream;
+    
+      charset  utf-8;
+    
+      server_names_hash_bucket_size 128;
+      client_header_buffer_size 2k;
+      large_client_header_buffers 4 4k;
+      client_max_body_size 8m;
+    
+      sendfile on;
+      tcp_nopush     on;
+    
+      keepalive_timeout 60;
+    
+      fastcgi_cache_path /usr/local/nginx/fastcgi_cache levels=1:2
+      keys_zone=TEST:10m
+      inactive=5m;
+      fastcgi_connect_timeout 300;
+      fastcgi_send_timeout 300;
+      fastcgi_read_timeout 300;
+      fastcgi_buffer_size 64k;
+      fastcgi_buffers 8 64k;
+      fastcgi_busy_buffers_size 128k;
+      fastcgi_temp_file_write_size 128k;
+      fastcgi_cache TEST;
+      fastcgi_cache_valid 200 302 1h;
+      fastcgi_cache_valid 301 1d;
+      fastcgi_cache_valid any 1m;
+      fastcgi_cache_min_uses 1;
+      fastcgi_cache_use_stale error timeout invalid_header http_500;
+    
+      open_file_cache max=204800 inactive=20s;
+      open_file_cache_min_uses 1;
+      open_file_cache_valid 30s;
+      tcp_nodelay on;
+    
+      gzip on;
+      gzip_min_length  1k;
+      gzip_buffers     4 16k;
+      gzip_http_version 1.0;
+      gzip_comp_level 2;
+      gzip_types       text/plain application/x-javascript text/css application/xml;
+      gzip_vary on;
+      
+      server
+      {
+          listen       8080;
+          server_name  backup.aiju.com;
+          index index.php index.htm;
+          root  /www/html/;  #这里的位置很重要，不要写在其它指令里面，我曾经就调试了好久才发现这个问题的
+    
+          location /status
+          {
+            stub_status on;
+          }
+    
+          location ~ .*\.(php|php5)?$
+          {
+            fastcgi_pass 127.0.0.1:9000;
+            fastcgi_index index.php;
+            include fcgi.conf;
+          }
+    
+          location ~ .*\.(gif|jpg|jpeg|png|bmp|swf|js|css)$
+          {
+            expires      30d;
+          }
+    
+          log_format  access  '$remote_addr - $remote_user [$time_local] "$request" '
+          '$status $body_bytes_sent "$http_referer" '
+          '"$http_user_agent" $http_x_forwarded_for';
+          access_log  /www/log/access.log  access;
+      }
+    } 
     ```
 +   完整的内核优化配置
     ```lua
-    net.ipv4.tcp_max_tw_buckets = 6000
-    net.ipv4.ip_local_port_range = 1024    65000
-    net.ipv4.tcp_tw_recycle = 1
-    net.ipv4.tcp_tw_reuse = 1
+    net.ipv4.ip_forward = 0
+    net.ipv4.conf.default.rp_filter = 1
+    net.ipv4.conf.default.accept_source_route = 0
+    kernel.sysrq = 0
+    kernel.core_uses_pid = 1
     net.ipv4.tcp_syncookies = 1
-    net.core.somaxconn = 262144
+    kernel.msgmnb = 65536
+    kernel.msgmax = 65536
+    kernel.shmmax = 68719476736
+    kernel.shmall = 4294967296
+    net.ipv4.tcp_max_tw_buckets = 6000
+    net.ipv4.tcp_sack = 1
+    net.ipv4.tcp_window_scaling = 1
+    net.ipv4.tcp_rmem = 4096        87380   4194304
+    net.ipv4.tcp_wmem = 4096        16384   4194304
+    net.core.wmem_default = 8388608
+    net.core.rmem_default = 8388608
+    net.core.rmem_max = 16777216
+    net.core.wmem_max = 16777216
     net.core.netdev_max_backlog = 262144
-    net.ipv4.tcp_max_orphans = 262144
+    net.core.somaxconn = 262144
+    net.ipv4.tcp_max_orphans = 3276800
     net.ipv4.tcp_max_syn_backlog = 262144
+    net.ipv4.tcp_timestamps = 0
+    net.ipv4.tcp_synack_retries = 1
     net.ipv4.tcp_syn_retries = 1
+    net.ipv4.tcp_tw_recycle = 1
+    net.ipv4.tcp_tw_reuse = 1
+    net.ipv4.tcp_mem = 94500000 915000000 927000000
     net.ipv4.tcp_fin_timeout = 1
     net.ipv4.tcp_keepalive_time = 30
+    net.ipv4.ip_local_port_range = 1024    65000
     ```    
