Gzip doesn't work

Post Reply
icechieff
Posts: 48
Joined: Thu Aug 27, 2020 10:13 pm
Your location: Saint-Petersburg

Tried all, that can find in google.
configs looks good, but all services says, that gzip=off.

standart myvestacp installation. debian 10.

may be some thoughts?

nginx.conf

Code: Select all

# Server globals
user                    www-data;
worker_processes        12;
worker_cpu_affinity	auto;
worker_rlimit_nofile    65535;
worker_priority		-5;
timer_resolution         50ms; #In order to free some CPU cycles
pcre_jit 		on;
error_log               /var/log/nginx/error.log crit;
pid                     /var/run/nginx.pid;


# Worker config
events {
        worker_connections  1024;
        use                 epoll;
        multi_accept        on;
}


http {
    # Main settings
    sendfile                        on;
    tcp_nopush                      on;
    tcp_nodelay                     on;
    client_header_timeout           2m;
    client_body_timeout             30;
    client_header_buffer_size       16k;
    client_body_buffer_size         256k;
    client_max_body_size            1024M;
    large_client_header_buffers     16 16k;
    send_timeout                    5;
    keepalive_timeout               60 60;
    reset_timedout_connection       on;
    server_tokens                   off;
    server_name_in_redirect         off;
    server_names_hash_max_size      512;
    server_names_hash_bucket_size   512;
    limit_conn_zone $binary_remote_addr zone=addr:1m;
    limit_req_zone $binary_remote_addr zone=one:1m rate=1r/s;
    limit_req_zone $binary_remote_addr zone=two:1m rate=2r/s;
    limit_conn_log_level error;
    limit_req_log_level error;
    limit_conn_status 429;
    limit_req_status 429;

    # Log format
    log_format  main    '$remote_addr - $remote_user [$time_local] $request '
                        '"$status" $body_bytes_sent "$http_referer" '
                        '"$http_user_agent" "$http_x_forwarded_for"';
    log_format  bytes   '$body_bytes_sent';
    #access_log          /var/log/nginx/access.log main;
    access_log off;


    # Mime settings
    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;


    # Compression
    gzip                on;
    gzip_http_version	1.0;
    gzip_vary		on;
    gzip_comp_level     5;
    gzip_min_length     256;
    gzip_buffers        16 8k;
    #gzip_types          text/plain text/css text/javascript text/js text/xml application/json application/javascript application/x-javascript application/xml application/xml+rss application/x-font-ttf image/svg+xml font/opentype application/xml+rss;
    gzip_types          text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript image/svg+xml application/x-font-ttf font/opentype;
    gzip_proxied        any;
    gzip_disable        "msie6";

    # Proxy settings
    proxy_redirect      off;
    proxy_set_header    Host            $host;
    proxy_set_header    X-Real-IP       $remote_addr;
    proxy_set_header    X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_pass_header   Set-Cookie;
    proxy_connect_timeout   900;
    proxy_send_timeout  900;
    proxy_read_timeout  900;
    proxy_buffer_size   128k;
    proxy_buffers   8 256k;
    proxy_busy_buffers_size   256k;


    # Cloudflare https://www.cloudflare.com/ips
    set_real_ip_from 173.245.48.0/20;
    set_real_ip_from 103.21.244.0/22;
    set_real_ip_from 103.22.200.0/22;
    set_real_ip_from 103.31.4.0/22;
    set_real_ip_from 141.101.64.0/18;
    set_real_ip_from 108.162.192.0/18;
    set_real_ip_from 190.93.240.0/20;
    set_real_ip_from 188.114.96.0/20;
    set_real_ip_from 197.234.240.0/22;
    set_real_ip_from 198.41.128.0/17;
    set_real_ip_from 162.158.0.0/15;
    set_real_ip_from 104.16.0.0/12;
    set_real_ip_from 172.64.0.0/13;
    set_real_ip_from 131.0.72.0/22;
    set_real_ip_from 2400:cb00::/32;
    set_real_ip_from 2606:4700::/32;
    set_real_ip_from 2803:f800::/32;
    set_real_ip_from 2405:b500::/32;
    set_real_ip_from 2405:8100::/32;
    set_real_ip_from 2a06:98c0::/29;
    set_real_ip_from 2c0f:f248::/32;
    real_ip_header     CF-Connecting-IP;


    # SSL PCI Compliance
    ssl_session_cache   shared:SSL:10m;
    ssl_protocols       TLSv1.1 TLSv1.2;
    ssl_prefer_server_ciphers on;
    ssl_ciphers        "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4";


    # Error pages
    error_page          403          /error/403.html;
    error_page          404          /error/404.html;
    error_page          502 503 504  /error/50x.html;


    # Cache settings
    proxy_cache_path /var/cache/nginx levels=2 keys_zone=cache:10m inactive=60m max_size=1024m;
    proxy_cache_key "$host$request_uri $cookie_user";
    proxy_temp_path  /var/cache/nginx/temp;
    proxy_ignore_headers Expires Cache-Control;
    proxy_cache_use_stale error timeout invalid_header http_502;
    proxy_cache_valid any 1d;


    # Cache bypass
    map $http_cookie $no_cache {
        default 0;
        ~SESS 1;
        ~wordpress_logged_in 1;
    }


    # File cache settings
    open_file_cache          max=10000 inactive=30s;
    open_file_cache_valid    60s;
    open_file_cache_min_uses 2;
    open_file_cache_errors   off;


    # Wildcard include
    include             /etc/nginx/conf.d/*.conf;
}
Top
User avatar
myVesta
Site Admin
Posts: 932
Joined: Fri Jun 19, 2020 9:59 am
Has thanked: 8 times
Been thanked: 6 times

What https://www.giftofspeed.com/gzip-test/ says?
Top
icechieff
Posts: 48
Joined: Thu Aug 27, 2020 10:13 pm
Your location: Saint-Petersburg

This test says all fine.

I tried another - http://www.gidnetwork.com/tools/gzip-test.php
it says no.
Top
icechieff
Posts: 48
Joined: Thu Aug 27, 2020 10:13 pm
Your location: Saint-Petersburg

https://redbot.org/
says

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Location:
Date: Fri, 28 Aug 2020 14:09:33 GMT
X-Page-Speed: 1.13.35.2-0
Cache-Control: max-age=0, no-cache
Top
User avatar
myVesta
Site Admin
Posts: 932
Joined: Fri Jun 19, 2020 9:59 am
Has thanked: 8 times
Been thanked: 6 times

that means that you are trying to check page that MAKES redirection, so it's not final address.
maybe you are trying http:// and then he tries to redirect to https://, or something like that.

so, instead of that address (that is doing redirection), please check the FINAL address.
Top
icechieff
Posts: 48
Joined: Thu Aug 27, 2020 10:13 pm
Your location: Saint-Petersburg

yes, i'm cheking the target - with https.
Top
User avatar
myVesta
Site Admin
Posts: 932
Joined: Fri Jun 19, 2020 9:59 am
Has thanked: 8 times
Been thanked: 6 times

Can you send me URL of your site on private message?
Top
icechieff
Posts: 48
Joined: Thu Aug 27, 2020 10:13 pm
Your location: Saint-Petersburg

wrote, but no msg in sent, so don't sure it goes.
Top
icechieff
Posts: 48
Joined: Thu Aug 27, 2020 10:13 pm
Your location: Saint-Petersburg

nginx template - force https, isn't there problem?
Top
User avatar
myVesta
Site Admin
Posts: 932
Joined: Fri Jun 19, 2020 9:59 am
Has thanked: 8 times
Been thanked: 6 times

i sent you private message, can you reply there?
Top
Post Reply

Return to “General discussion”