nginx-docker

Enhanced Nginx (essentially OpenResty) Alpine Docker Image with Modules. Based on ZoeyVid/nginx-quic

Use

Build or pull

docker build -t nginx:1.27.0 .

docker pull albaz64/nginx:1.27.0

Check version

$ docker run -it --rm --entrypoint /bin/sh nginx:1.27.0 -c 'nginx -V'
nginx version: nginx/1.27.0 (07-10-2024)
built by gcc 13.2.1 20240309 (Alpine 13.2.1_git20240309) 
built with OpenSSL 3.1.5+quic 30 Jan 2024
TLS SNI support enabled
configure arguments: --prefix=/etc/nginx --build=07-10-2024 --builddir=build --with-threads --with-file-aio --with-http_addition_module --with-http_auth_request_module --with-http_dav_module --with-http_geoip_module --with-http_gunzip_module --with-http_gzip_static_module --with-http_image_filter_module --with-http_mp4_module --with-http_perl_module --with-http_random_index_module --with-http_realip_module --with-http_secure_link_module --with-http_slice_module --with-http_ssl_module --with-http_stub_status_module --with-http_sub_module --with-http_v2_module --with-http_v3_module --with-http_xslt_module --with-mail --with-mail_ssl_module --with-stream --with-stream_geoip_module --with-stream_realip_module --with-stream_ssl_module --with-stream_ssl_preread_module --add-module=src/module/njs/nginx --add-module=src/module/brotli --add-module=src/module/lua_http --add-module=src/module/lua_stream --add-module=src/module/echo --add-module=src/module/headers --add-module=src/module/vts --add-module=src/module/geoip2 --add-module=src/module/fancyindex --add-module=src/module/devel_kit --add-module=src/module/modsecurity --add-module=src/module/substitutions_filter --add-module=src/module/dav_ext --add-module=src/module/rtmp --with-cc-opt='-m64 -march=native -mtune=native -Ofast -pipe -fomit-frame-pointer -fno-plt -fexceptions -flto -funroll-loops -ffunction-sections -fdata-sections -D_FORTIFY_src=2 -fstack-clash-protection -fcf-protection -Wformat -Werror=format-security -DNGX_QUIC_DEBUG_PACKETS -DNGX_QUIC_DEBUG_CRYPTO' --with-ld-opt='-Wl,-s -Wl,-Bsymbolic -Wl,--gc-sections,--as-needed,-z,relro,-z,now -flto=auto' --with-pcre-jit --with-openssl=/src/openssl --with-debug

All files are in /etc/nginx (/etc/nginx/conf/nginx.conf)

nginx.conf http need lua_package_path "/etc/nginx/lib/lua/?.lua;;";

If warn this↓ add variables_hash_max_size 2048; to http nginx: [warn] could not build optimal variables_hash, you should increase either ariables_hash_max_size: 1024 or variables_hash_bucket_size: 64; ignoring variables_hash_bucket_size

Modules

• NJS
• Brotli
• Lua(http)
• Lua(stream)
• Echo
• Headers More
• Virtual host Traffic Status
• GeoIP2
• Fancyindex
• NDK
• ModSecurity
• Regex Substitutions
• WebDav
• RTMP

Compose

vim compose.yaml

docker compose up -d
# For some distributions use this
docker-compose up -d

Test

HTTP/3

HTTP/3 QUIC work on the TLS.

Ensure that your curl supports HTTP3.

curl --resolve <domain.tld>:<port>:<IP> --http3 -IL https://domain.tld

Maybe add

• https://github.com/masterzen/nginx-upload-progress-module
• https://github.com/evanmiller/mod_zip
• https://github.com/tokers/zstd-nginx-module
• https://github.com/onnimonni/redis-nginx-module
• https://github.com/openresty/redis2-nginx-module
• https://github.com/wargio/naxsi/