2. 程式人生 > 實用技巧 >linux系統中部署apache服務(基於主機域名部署多個網站)

linux系統中部署apache服務(基於主機域名部署多個網站)

阿新 發佈:2020-12-18

以下實驗在兩臺虛擬機器中完成,PC1伺服器端,IP地址為192.168.10.10; PC2為客戶機端,IP地址為192.168.10.20.

1、在PC1伺服器端安裝apache服務

[root@PC1 ~]# yum install httpd -y
Loaded plugins: langpacks, product-id, subscription-manager
This system is not registered to Red Hat Subscription Management. You can use subscription-manager to register.
Repodata 
 
is over 2 weeks old. Install yum-cron? Or run: yum makecache fast
rhel7                                                    | 4.1 kB     00:00     
Resolving Dependencies
--> Running transaction check
---> Package httpd.x86_64 0:2.4.6-17.el7 will be installed
--> Processing Dependency: httpd-tools = 2.4
 
.6-17.el7 for package: httpd-2.4.6-17.el7.x86_64
--> Processing Dependency: /etc/mime.types for package: httpd-2.4.6-17.el7.x86_64
--> Processing Dependency: libapr-1.so.0()(64bit) for package: httpd-2.4.6-17.el7.x86_64
--> Processing Dependency: libaprutil-1.so.0()(64bit) for package: httpd-2.4
 
.6-17.el7.x86_64
--> Running transaction check
---> Package apr.x86_64 0:1.4.8-3.el7 will be installed
---> Package apr-util.x86_64 0:1.5.2-6.el7 will be installed
---> Package httpd-tools.x86_64 0:2.4.6-17.el7 will be installed
---> Package mailcap.noarch 0:2.1.41-2.el7 will be installed
--> Finished Dependency Resolution

Dependencies Resolved

================================================================================
 Package             Arch           Version                 Repository     Size
================================================================================
Installing:
 httpd               x86_64         2.4.6-17.el7            rhel7         1.2 M
Installing for dependencies:
 apr                 x86_64         1.4.8-3.el7             rhel7         103 k
 apr-util            x86_64         1.5.2-6.el7             rhel7          92 k
 httpd-tools         x86_64         2.4.6-17.el7            rhel7          77 k
 mailcap             noarch         2.1.41-2.el7            rhel7          31 k

Transaction Summary
================================================================================
Install  1 Package (+4 Dependent packages)

Total download size: 1.5 M
Installed size: 4.3 M
Downloading packages:
--------------------------------------------------------------------------------
Total                                              5.6 MB/s | 1.5 MB  00:00     
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
  Installing : apr-1.4.8-3.el7.x86_64                                       1/5 
  Installing : apr-util-1.5.2-6.el7.x86_64                                  2/5 
  Installing : httpd-tools-2.4.6-17.el7.x86_64                              3/5 
  Installing : mailcap-2.1.41-2.el7.noarch                                  4/5 
  Installing : httpd-2.4.6-17.el7.x86_64                                    5/5 
rhel7/productid                                          | 1.6 kB     00:00     
  Verifying  : mailcap-2.1.41-2.el7.noarch                                  1/5 
  Verifying  : httpd-tools-2.4.6-17.el7.x86_64                              2/5 
  Verifying  : apr-1.4.8-3.el7.x86_64                                       3/5 
  Verifying  : apr-util-1.5.2-6.el7.x86_64                                  4/5 
  Verifying  : httpd-2.4.6-17.el7.x86_64                                    5/5 

Installed:
  httpd.x86_64 0:2.4.6-17.el7                                                   

Dependency Installed:
  apr.x86_64 0:1.4.8-3.el7                 apr-util.x86_64 0:1.5.2-6.el7       
  httpd-tools.x86_64 0:2.4.6-17.el7        mailcap.noarch 0:2.1.41-2.el7       

Complete!

2、在PC1伺服器端修改配置檔案,繫結IP地址和主機域名

[root@PC1 ~]# ifconfig | head -n 5
eno16777728: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.10.10  netmask 255.255.255.0  broadcast 192.168.10.255
        inet6 fe80::20c:29ff:fe66:37f7  prefixlen 64  scopeid 0x20<link>
        ether 00:0c:29:66:37:f7  txqueuelen 1000  (Ethernet)
        RX packets 148  bytes 23040 (22.5 KiB)
127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4
::1         localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.10.10 www.aaaaa.com www.bbbbb.com www.ccccc.com
[root@PC1 ~]# ping -c 3 www.aaaaa.com
PING www.aaaaa.com (192.168.10.10) 56(84) bytes of data.
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=1 ttl=64 time=0.071 ms
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=2 ttl=64 time=0.040 ms
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=3 ttl=64 time=0.040 ms

--- www.aaaaa.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 1999ms
rtt min/avg/max/mdev = 0.040/0.050/0.071/0.015 ms
[root@PC1 ~]# ping -c 3 www.bbbbb.com
PING www.aaaaa.com (192.168.10.10) 56(84) bytes of data.
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=1 ttl=64 time=0.044 ms
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=2 ttl=64 time=0.037 ms
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=3 ttl=64 time=0.041 ms

--- www.aaaaa.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 1998ms
rtt min/avg/max/mdev = 0.037/0.040/0.044/0.007 ms
[root@PC1 ~]# ping -c 3 www.ccccc.com
PING www.aaaaa.com (192.168.10.10) 56(84) bytes of data.
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=1 ttl=64 time=0.067 ms
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=2 ttl=64 time=0.044 ms
64 bytes from www.aaaaa.com (192.168.10.10): icmp_seq=3 ttl=64 time=0.042 ms

--- www.aaaaa.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2000ms
rtt min/avg/max/mdev = 0.042/0.051/0.067/0.011 ms

3、在PC1伺服器端建立儲存三個網站資料的目錄以及首頁內容

[root@PC1 ~]# mkdir -p /home/wwwroot/aaaaa
[root@PC1 ~]# mkdir -p /home/wwwroot/bbbbb
[root@PC1 ~]# mkdir -p /home/wwwroot/ccccc
[root@PC1 ~]# echo "here is aaaaa" > /home/wwwroot/aaaaa/index.html
[root@PC1 ~]# echo "here is bbbbb" > /home/wwwroot/bbbbb/index.html
[root@PC1 ~]# echo "here is ccccc" > /home/wwwroot/ccccc/index.html

4、在PC1伺服器端修改Apache服務的主配置檔案,寫入三個基於主機域名的虛擬主機網站引數

[root@PC1 ~]# vim /etc/httpd/conf/httpd.conf
…………
112 #
113 <VirtualHost 192.168.10.10>
114 DocumentRoot "/home/wwwroot/aaaaa"
115 ServerName "www.aaaaa.com"
116 <Directory "/home/wwwroot/aaaaa">
117 AllowOverride None
118 Require all granted
119 </Directory>
120 </VirtualHost>
121 <VirtualHost 192.168.10.10>
122 DocumentRoot "/home/wwwroot/bbbbb"
123 ServerName "www.bbbbb.com"
124 <Directory "/home/wwwroot/bbbbb">
125 AllowOverride None
126 Require all granted
127 </Directory>
128 </VirtualHost>
129 <VirtualHost 192.168.10.10>
130 DocumentRoot "/home/wwwroot/ccccc"
131 ServerName "www.ccccc.com"
132 <Directory "/home/wwwroot/ccccc">
133 AllowOverride None
134 Require all granted
135 </Directory>
136 </VirtualHost>
137 #
…………

5、在PC1主機中重啟apache服務

[root@PC1 ~]# systemctl restart httpd
[root@PC1 ~]# systemctl status httpd | head -n 5
httpd.service - The Apache HTTP Server
   Loaded: loaded (/usr/lib/systemd/system/httpd.service; disabled)
   Active: active (running) since Thu 2020-12-17 21:59:52 CST; 12s ago
 Main PID: 4385 (httpd)
   Status: "Total requests: 0; Current requests/sec: 0; Current traffic:   0 B/sec"

6、在PC1伺服器端關閉防火牆策略

[root@PC1 ~]# iptables -F
[root@PC1 ~]# service iptables save
iptables: Saving firewall rules to /etc/sysconfig/iptables:[  OK  ]

7、在PC1主機中修改網站數目目錄及首頁資料的SELinux上下文值

[root@PC1 ~]# ls -ldZ /var/www/html/
drwxr-xr-x. root root system_u:object_r:httpd_sys_content_t:s0 /var/www/html/
[root@PC1 ~]# ls -ldZ /home/wwwroot/aaaaa/
drwxr-xr-x. root root unconfined_u:object_r:home_root_t:s0 /home/wwwroot/aaaaa/
[root@PC1 ~]# semanage fcontext -a -t httpd_sys_content_t /home/wwwroot/aaaaa
[root@PC1 ~]# semanage fcontext -a -t httpd_sys_content_t /home/wwwroot/aaaaa/*
[root@PC1 ~]# semanage fcontext -a -t httpd_sys_content_t /home/wwwroot/bbbbb
[root@PC1 ~]# semanage fcontext -a -t httpd_sys_content_t /home/wwwroot/bbbbb/*
[root@PC1 ~]# semanage fcontext -a -t httpd_sys_content_t /home/wwwroot/ccccc
[root@PC1 ~]# semanage fcontext -a -t httpd_sys_content_t /home/wwwroot/ccccc/*
[root@PC1 ~]# restorecon -Rv /home/wwwroot/
restorecon reset /home/wwwroot context unconfined_u:object_r:home_root_t:s0->unconfined_u:object_r:user_home_dir_t:s0
restorecon reset /home/wwwroot/aaaaa context unconfined_u:object_r:home_root_t:s0->unconfined_u:object_r:httpd_sys_content_t:s0
restorecon reset /home/wwwroot/aaaaa/index.html context unconfined_u:object_r:home_root_t:s0->unconfined_u:object_r:httpd_sys_content_t:s0
restorecon reset /home/wwwroot/bbbbb context unconfined_u:object_r:home_root_t:s0->unconfined_u:object_r:httpd_sys_content_t:s0
restorecon reset /home/wwwroot/bbbbb/index.html context unconfined_u:object_r:home_root_t:s0->unconfined_u:object_r:httpd_sys_content_t:s0
restorecon reset /home/wwwroot/ccccc context unconfined_u:object_r:home_root_t:s0->unconfined_u:object_r:httpd_sys_content_t:s0
restorecon reset /home/wwwroot/ccccc/index.html context unconfined_u:object_r:home_root_t:s0->unconfined_u:object_r:httpd_sys_content_t:s0
[root@PC1 ~]# ls -ldZ /home/wwwroot/aaaaa/
drwxr-xr-x. root root unconfined_u:object_r:httpd_sys_content_t:s0 /home/wwwroot/aaaaa/

8、在PC1伺服器端修改SELinux的域服務

[root@PC1 ~]# getsebool -a | grep http
httpd_anon_write --> off
httpd_builtin_scripting --> on
httpd_can_check_spam --> off
httpd_can_connect_ftp --> off
httpd_can_connect_ldap --> off
httpd_can_connect_mythtv --> off
httpd_can_connect_zabbix --> off
httpd_can_network_connect --> off
httpd_can_network_connect_cobbler --> off
httpd_can_network_connect_db --> off
httpd_can_network_memcache --> off
httpd_can_network_relay --> off
httpd_can_sendmail --> off
httpd_dbus_avahi --> off
httpd_dbus_sssd --> off
httpd_dontaudit_search_dirs --> off
httpd_enable_cgi --> on
httpd_enable_ftp_server --> off
httpd_enable_homedirs --> off
httpd_execmem --> off
httpd_graceful_shutdown --> on
httpd_manage_ipa --> off
httpd_mod_auth_ntlm_winbind --> off
httpd_mod_auth_pam --> off
httpd_read_user_content --> off
httpd_run_stickshift --> off
httpd_serve_cobbler_files --> off
httpd_setrlimit --> off
httpd_ssi_exec --> off
httpd_sys_script_anon_write --> off
httpd_tmp_exec --> off
httpd_tty_comm --> off
httpd_unified --> off
httpd_use_cifs --> off
httpd_use_fusefs --> off
httpd_use_gpg --> off
httpd_use_nfs --> off
httpd_use_openstack --> off
httpd_use_sasl --> off
httpd_verify_dns --> off
named_tcp_bind_http_port --> off
prosody_bind_http_port --> off
[root@PC1 ~]# setsebool -P httpd_enable_homedirs=on
[root@PC1 ~]# getsebool -a | grep http
httpd_anon_write --> off
httpd_builtin_scripting --> on
httpd_can_check_spam --> off
httpd_can_connect_ftp --> off
httpd_can_connect_ldap --> off
httpd_can_connect_mythtv --> off
httpd_can_connect_zabbix --> off
httpd_can_network_connect --> off
httpd_can_network_connect_cobbler --> off
httpd_can_network_connect_db --> off
httpd_can_network_memcache --> off
httpd_can_network_relay --> off
httpd_can_sendmail --> off
httpd_dbus_avahi --> off
httpd_dbus_sssd --> off
httpd_dontaudit_search_dirs --> off
httpd_enable_cgi --> on
httpd_enable_ftp_server --> off
httpd_enable_homedirs --> on
httpd_execmem --> off
httpd_graceful_shutdown --> on
httpd_manage_ipa --> off
httpd_mod_auth_ntlm_winbind --> off
httpd_mod_auth_pam --> off
httpd_read_user_content --> off
httpd_run_stickshift --> off
httpd_serve_cobbler_files --> off
httpd_setrlimit --> off
httpd_ssi_exec --> off
httpd_sys_script_anon_write --> off
httpd_tmp_exec --> off
httpd_tty_comm --> off
httpd_unified --> off
httpd_use_cifs --> off
httpd_use_fusefs --> off
httpd_use_gpg --> off
httpd_use_nfs --> off
httpd_use_openstack --> off
httpd_use_sasl --> off
httpd_verify_dns --> off
named_tcp_bind_http_port --> off
prosody_bind_http_port --> off

9、在PC2客戶機端測試PC1伺服器端網路連通性

[root@PC2 ~]# ifconfig | head -n 3
eno16777728: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 192.168.10.20  netmask 255.255.255.0  broadcast 192.168.10.255
        inet6 fe80::20c:29ff:fe25:bb3e  prefixlen 64  scopeid 0x20<link>
[root@PC2 ~]# ping -c 3 192.168.10.10
PING 192.168.10.10 (192.168.10.10) 56(84) bytes of data.
64 bytes from 192.168.10.10: icmp_seq=1 ttl=64 time=0.281 ms
64 bytes from 192.168.10.10: icmp_seq=2 ttl=64 time=0.205 ms
64 bytes from 192.168.10.10: icmp_seq=3 ttl=64 time=0.309 ms

--- 192.168.10.10 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2000ms
rtt min/avg/max/mdev = 0.205/0.265/0.309/0.043 ms
[root@PC2 ~]# ping -c 3 www.aaaaa.com
ping: unknown host www.aaaaa.com
[root@PC2 ~]# ping -c 3 www.bbbbb.com
ping: unknown host www.bbbbb.com
## 說明PC2端無法實現域名解析

10、在PC1伺服器端測試基於域名的虛擬主機功能

以上實驗實驗只實現了基於主機域名部署多個網站在同一主機的驗證(PC2客戶機無法解析域名)

相關推薦

linux系統部署apache服務基於主機域名部署網站

以下實驗在兩臺虛擬機器完成,PC1伺服器端,IP地址為192.168.10.10; PC2為客戶機端,IP地址為192.168.10.20.

linux部署apache服務http服務或者web服務

apache服務即為網頁服務apache服務的軟體包叫httpd。 以下實驗在PC1主機完成

linux系統部署apache服務測試不同inux主機訪問網站

以下實驗伺服器端為PC1,IP地址為192.168.10.10 ;客戶機端分別為PC2和PC3,IP地址分別為192.168.10.20和192.168.10.30

linux系統部署apache虛擬主機功能一臺伺服器部署網站

虛擬主機功能:一臺物理伺服器分割為“虛擬的伺服器”,實現一臺物理伺服器部署網站的功能。

linux系統的許可權管理

六.特殊許可權 #stickyid 粘制位 #針對目錄: #如果一個目錄stickyid開啟,那麼這個目錄的檔案 #只能被檔案所有人刪除

linux系統配置sshd服務(遠端控制服務

SSHSecure Shell是一種能夠以安全的方式提供遠端登入的協議,也是目前遠端管理Linux的首先方式。在此之前,一般使用FTP或Telnet來進行遠端登入。但是因為它們以明文的形式在網路傳輸賬戶密碼和資料資訊,因此很

linux系統下進行安裝phpMyAdmin基於Centos

介紹:linux系統是支援線上安裝下載相關包的,進行安裝phpmyadmin,需要進行以下步驟:

linux系統部署vsftpd服務虛擬使用者模式

vsftpd服務採用伺服器端/客戶機端模式 以下實驗PC1為伺服器端,IP為192.168.10.10; PC2為客戶機端,IP為192.168.10.20

linux系統部署Samba服務實現linux系統之間檔案共享

samba的檔案共享服務採用伺服器/客戶端模式,本質為伺服器端的特定目錄實現在客戶機端特定目錄的掛載,從而實現伺服器端和客戶機端的目錄檔案共享。

linux 系統部署邏輯卷LVM

部署邏輯卷的目的是實現使用者對硬碟資源進行動態調整。 部署LVM時,需要逐個配置物理劵、卷組和邏輯卷。

linux系統bind服務程式部署正反向域名解析

利用bind部署域名正反向解析需要修改區域配置檔案和資料配置檔案。其中資料配置檔案一共需要修改兩,一個正向 解析檔案,一個反向解析檔案。

Linux系統Java Web應用部署環境的安裝與配置3--Tomcat的安裝與配置

  Tomcat作為免費開源輕量級的Web應用伺服器,在Java Web應用程式的開發部署中應用非常廣泛,下面說明如何實現Tomcat在Red Hat Enterprise 6作業系統安裝與配置的方法,並對安裝的Tomcat環境進行測試以保證安裝和

Linux系統CentOS 7的使用者和許可權管理

目錄使用者和組使用者資訊檔案使用者密碼資訊相關命令使用者管理組管理密碼管理許可權管理檔案的詳細資訊檔案許可權相關命令

在idea建立maven,啟動與部署服務

續......啟動與部署服務 1、建立入口類檔案: 2、建立控制層檔案: 3、啟動服務

linux系統sudo服務

1、linux系統sudo服務是的普通使用者能夠執行較大許可權的命令 使用sudo -l 命令 檢視是否具有sudo許可權:

linux系統使用nmtui命令配置網路引數圖形使用者介面

除了使用vim編輯器來配置網路引數,linux系統至少有5種網路配置方法。 1、使用ifconfig命令獲取當前網絡卡配置與網路狀態等資訊

企業Linux系統如何通過rsync服務做資料同步

1. rsync服務介紹   rsync是一個遠端資料同步工具,可通過網路快速同步主機間的檔案,也可以使用 rsync 同步本地硬碟的不同目錄。rsync 在同步檔案時會檢查檔案之間是否有差異,它只同步存在差異或者不存在的

linux系統不間斷會話服務screen命令

screen命令解決的問題: 使用者可以通過該軟體同時連線本地或遠端的命令列會話,並在其間自由切換。

linux系統部署DNS從伺服器

DNS域名解析服務的三種伺服器: 主伺服器:管理域名和IP地址的對應關係 從伺服器:同步域名和IP地址的對應關係緩解跟伺服器壓力,提高解析速度

linux系統ssh部署兩臺伺服器遠端免密登入

主機1:PC1,192.168.10.10 主機2:PC2,192.168.10.20 以下實現主要實現PC2遠端免密登入PC1