apache的安装 配置文件

apache

企业中常用的web服务，用来提供http：//超文本传输协议

apache的安装部署 

yum install httpd -y
yum install httpd-manual
systemctl start  httpd
systemctl enable httpd
firewall-cmd --list-all
firewall-cmd --permanent --add-service=http
firewall-cmd --reload

/var/www/html
/var/www/html/index
Vim /var/www/html/index
<h1> hello world </h1>
:wq

测试：

浏览器中输入ip   有hello world

http://172.25.254.123

http://172.25.254.123/manual

apache的基础信息

主配置目录 /etc/httpd/conf

主配置文件 /etc/httpd/conf/httpd.conf

子配置目录 /etc/httpd/conf.d

子配置文件 /etc/httpd/conf.d/*.conf

默认发布目录/var/www/html

默认发布文件 index.html

默认端口     80

默认安全上下文 httpd_sys_content_t

程序开启默认用户 apache

Apache日志 /etc/httpd/logs/*

修改默认端口和默认发布文件

[root@apache ~]# vim /etc/httpd/conf/httpd.conf 
42 Listen 8080
165 <IfModule dir_module>
166     DirectoryIndex hello.html
167 </IfModule>
[root@apache ~]# systemctl restart httpd
[root@apache ~]# vim /var/www/html/hello.html
hello  hello.html

允许用户登录

1在默认发布文件中新建index.html

[root@apache ~]# mkdir /var/www/html/xaut
[root@apache xaut]# vim index.html
  1 hello xaut

2禁止指定ip其他可以访问

[root@apache ~]# vim /etc/httpd/conf/httpd.conf
120 <Directory "/var/www/html/xaut" > 访问目录
121         Order Allow,Deny    允许禁止顺序
122         Allow from All      允许所有
123         Deny from 172.25.254.123    禁止指定ip黑名单
124 </Directory>
[root@apache ~]# systemctl restart httpd.service
120 <Directory "/var/www/html/xaut" >
121         Order Deny,Allow    先禁止后允许
122         Allow from 172.25.254.123允许白名单不在名单之内的被禁止
123         Deny from All
124 </Directory>

用户认证的设置

[root@apache xaut]# htpasswd -cm xautuser admin 第一次加c创建用户
New password:   输入密码
Re-type new password: 确认密码
Adding password for user admin
[root@apache xaut]# htpasswd -m xautuser admin1 之后添加不加c不然会覆盖掉新建的>用户
New password:
Re-type new password:
Adding password for user admin1
[root@apache xaut]# cat xautuser        查看建立的用户
admin:$apr1$ibb96oWU$sbvEq0sTE5miW8prYOktj0
admin1:$apr1$s3leX07J$e0g9a2zKLo2gUgGyBBNln.

120 <Directory "/var/www/html/xaut" >
121 #       Order Deny,Allow
122 #       Allow from 172.25.254.123
123 #       Deny from All
124         AuthUserFile    /var/www/html/xaut/xautuser  注意在那个目录下建立用户就在写那
125         AuthType        basic
126         AuthName        "Please input your name and password"
127         require user    admin
            require             valid-user
128 </Directory>

输入不同域名进入不同页面

[root@foundation23 html]# vim /etc/hosts
172.25.254.123 www.xaut.com news.xaut.com music.xaut.com login.xaut.com
mkdir /var/www/virtual/news -p
mkdir /var/www/virtual/music -p
mkdir /var/www/virtual/new/html -p
mkdir /var/www/virtual/music/html -p
vim /var/www/virtual/news/html/index.html
  1 This is a new's page
vim /var/www/virtual/music/html/index.html
  1 This is a music's page
vim /etc/httpd/conf/httpd.conf 注释上题120到128
cd /etc/httpd/conf.d/
vim a_default.conf
<Virtualhost _default_:80>
        DocumentRoot    /var/www/html
        CustomLog       logs/default.log combined
</Virtualhost>
vim news.conf
<VirtualHost *:80>
        ServerName news.xaut.com
        DocumentRoot    /var/www/virtual/news/html
        CustomLog       logs/news.log combined
</VirtualHost>
<Directory  "/var/www/html/news/html">
        Require all granted
</Directory>

  vim music.conf
<VirtualHost *:80>
        ServerName music.xaut.com
        DocumentRoot    /var/www/virtual/music/html
        CustomLog       logs/music.log combined
</VirtualHost>
<Directory  "/var/www/html/music/html">
        Require all granted
</Directory>

https

 yum install mod_ssl -y
yum install crypoto-utils -y
genkey www.xaut.com
vim ssl.conf
101 SLCertificateFile /etc/pki/tls/certs/www.xaut.com.crt
110 SSLCertificateKeyFile /etc/pki/tls/private/www.xaut.com.key
fg
https://

 

 

 

网页的重写加密

[root@apache ~]# cd /etc/httpd/conf.d/
[root@apache conf.d]# cp news.conf login.conf
[root@apache html]# mkdir /var/www/virtual/login/html/ -p
[root@apache html]# cd /var/www/virtual/login/html/
[root@apache html]# vim index.html
This is a login page
[root@apache html]# vim /etc/httpd/conf.d/login.conf
  1 <VirtualHost *:443>
  2         ServerName login.xaut.com
  3         DocumentRoot    /var/www/virtual/login/html
  4         CustomLog       logs/login.log combined
  5         SSLEngine       on
  6         SSLCertificateFile /etc/pki/tls/certs/www.xaut.com.crt
  7         SSLCertificateKeyFile /etc/pki/tls/private/www.xaut.com.key
  8 </VirtualHost>
  9 <Directory  "/var/www/html/login/html">
 10         Require all granted
 11 </Directory>
 12 <VirtualHost *:80>
 13         ServerName login.xaut.com
 14         RewriteEngine   on
 15         RewriteRule     ^(/.*)$ https://{HTTP_HOST}$1 [REDIRECT=301]
 16 </VirtualHost>
[root@apache httpd]# systemctl restart httpd

一台虚拟机通过另一台搭建上网

[root@apache ~]# yum install squid.x86_64 -y
[root@apache ~]# vim /etc/squid/squid.conf
56 http_access allow all
59 http_port 3128
62 cache_dir ufs /var/spool/squid 100 16 256
[root@apache ~]# systemctl start squid
[root@apache ~]# systemctl stop firewalld.service
测试机中登录百度在浏览器中添加这个如图

 轮询一个域名访问