Proxy server to build a full strategy: Nginx reverse proxy configuration details

A cross-border e-commerce team had a direct connection to the server to expose the real IP, resulting in 27 accounts being blocked in three days. After changing to Nginx reverse proxy with residential IP, the account survival rate increased to 98%. This article teaches you to use real business scenarios to configure the program, both to protect the server and improve business stability.

I. Reverse Proxy and Residential IP Chemistry

Compare Nginx to a courier relay station, and the residential IP is the shipping address on the box. When your server uses ipipgo's residential IP as a reverse proxy, it's equivalent to labeling the package with its real home address:

After using ipipgo's residential IP to configure a reverse proxy, the success rate of a social platform's API calls increased from 62% to 96%. The key is that their IP library includes90 million + real home addressesThe system perfectly simulates the behavior of a natural person surfing the Internet.

Second, four steps to build a safe proxy channel

Step 1: Install Nginx (Linux environment)
Be careful to replace it with the actual path when executing the command:
sudo apt update && sudo apt install nginx -y
After the installation is complete visit the server IP and see the welcome page that is success.

Step 2: Configure a Residential IP Proxy Pool
Get dynamic residential IP access information in the ipipgo console:
- Authentication methods:Username + Dynamic Token
- Agent Address:gateway.ipipgo.io:10808

Step 3: Write the Nginx configuration file
establish/etc/nginx/conf.d/proxy.conf::

server { listen 80; server_name your_domain.com.

 server { listen 80; server_name your_domain.com; location / {
    proxy_pass http://gateway.ipipgo.io:10808; proxy_set_header
    proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header
    proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-Forwarder $remote_addr
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

    # Enable IP rotation policy
    proxy_next_upstream error timeout invalid_header;
    proxy_connect_timeout 2s.
}

}

Step 4: Hot Load Configuration
fulfillmentsudo nginx -t && sudo systemctl reload nginx, complete the proxy channel build.

III. Advanced Configuration: Business Scenarios in Action

Scenario 1: Multi-account anti-association
Add in the http module:

upstream ipipgo_pool { server gateway.ipipgo.io:10808 max_fails=3; server gateway.ipipgo.io:10809 backup; }

Realize automatic switching of the backup channel when the main agent fails.

Scenario 2: Accurate geolocation
Add a header information matching rule:

if ($http_x_target_region = "US-CA") { proxy_pass http://ca.ipipgo.io:10808; }

Combined with ipipgo's regional IP library for precise positioning.

IV. Guide to avoiding pitfalls: self-examination of proxy failures

Problem 1: Return 407 error code
- Checking the key expiration date of the ipipgo console
- Add to the Nginx configurationproxy_set_header Authorization "Bearer your_token".

Problem 2: Slow response time
- Enable Nginx caching:proxy_cache_path /data/nginx/cache levels=1:2 keys_zone=ipipgo_cache:10m;
- Switching BGP-optimized routes in the ipipgo backend

V. Answers to high-frequency questions

Q: How can I verify if the agent is in effect?
A: Execution at the servercurl -x http://localhost:80 ifconfig.meThe IP displayed should be the residential IP provided by ipipgo.

Q: What if I need HTTPS support?
A: Add it in the Nginx configuration:

listen 443 ssl; ssl_certificate /path/to/cert.pem; ssl_certificate_key /path/to/key.pem.

Use with ipipgo's SSL penetration feature.

Q: How to deal with frequent IP changes?
A: Enable ipipgo'sHeartbeat detection functionThe switching delay is less than 0.5 second.

It is recommended to use ipipgo's in the test environmentFree Trial PackageExperience their IP warm-up technology - new IPs automatically simulate normal browsing behavior before they are enabled to avoid being flagged as a high-risk IP by the platform. after configuration is complete, thetail -f /var/log/nginx/access.logReal-time monitoring of agent status.