apache
企业中常用的web服务,用来提供http://超文本传输协议
apache的安装部署
yum install httpd -y
yum install httpd-manual
systemctl start httpd
systemctl enable httpd
firewall-cmd --list-all
firewall-cmd --permanent --add-service=http
firewall-cmd --reload
/var/www/html
/var/www/html/index
Vim /var/www/html/index
<h1> hello world </h1>
:wq
测试:
浏览器中输入ip 有hello world
http://172.25.254.123
apache的基础信息
主配置目录 /etc/httpd/conf
主配置文件 /etc/httpd/conf/httpd.conf
子配置目录 /etc/httpd/conf.d
子配置文件 /etc/httpd/conf.d/*.conf
默认发布目录/var/www/html
默认发布文件 index.html
默认端口 80
默认安全上下文 httpd_sys_content_t
程序开启默认用户 apache
Apache日志 /etc/httpd/logs/*
修改默认端口和默认发布文件
[root@apache ~]# vim /etc/httpd/conf/httpd.conf
42 Listen 8080
165 <IfModule dir_module>
166 DirectoryIndex hello.html
167 </IfModule>
[root@apache ~]# systemctl restart httpd
[root@apache ~]# vim /var/www/html/hello.html
hello hello.html
允许用户登录
1在默认发布文件中新建index.html
[root@apache ~]# mkdir /var/www/html/xaut
[root@apache xaut]# vim index.html
1 hello xaut
2禁止指定ip其他可以访问
[root@apache ~]# vim /etc/httpd/conf/httpd.conf
120 <Directory "/var/www/html/xaut" > 访问目录
121 Order Allow,Deny 允许禁止顺序
122 Allow from All 允许所有
123 Deny from 172.25.254.123 禁止指定ip黑名单
124 </Directory>
[root@apache ~]# systemctl restart httpd.service
120 <Directory "/var/www/html/xaut" >
121 Order Deny,Allow 先禁止后允许
122 Allow from 172.25.254.123允许白名单不在名单之内的被禁止
123 Deny from All
124 </Directory>
用户认证的设置
[root@apache xaut]# htpasswd -cm xautuser admin 第一次加c创建用户
New password: 输入密码
Re-type new password: 确认密码
Adding password for user admin
[root@apache xaut]# htpasswd -m xautuser admin1 之后添加不加c不然会覆盖掉新建的>用户
New password:
Re-type new password:
Adding password for user admin1
[root@apache xaut]# cat xautuser 查看建立的用户
admin:$apr1$ibb96oWU$sbvEq0sTE5miW8prYOktj0
admin1:$apr1$s3leX07J$e0g9a2zKLo2gUgGyBBNln.
120 <Directory "/var/www/html/xaut" >
121 # Order Deny,Allow
122 # Allow from 172.25.254.123
123 # Deny from All
124 AuthUserFile /var/www/html/xaut/xautuser 注意在那个目录下建立用户就在写那
125 AuthType basic
126 AuthName "Please input your name and password"
127 require user admin
require valid-user
128 </Directory>
输入不同域名进入不同页面
[root@foundation23 html]# vim /etc/hosts
172.25.254.123 www.xaut.com news.xaut.com music.xaut.com login.xaut.com
mkdir /var/www/virtual/news -p
mkdir /var/www/virtual/music -p
mkdir /var/www/virtual/new/html -p
mkdir /var/www/virtual/music/html -p
vim /var/www/virtual/news/html/index.html
1 This is a new's page
vim /var/www/virtual/music/html/index.html
1 This is a music's page
vim /etc/httpd/conf/httpd.conf 注释上题120到128
cd /etc/httpd/conf.d/
vim a_default.conf
<Virtualhost _default_:80>
DocumentRoot /var/www/html
CustomLog logs/default.log combined
</Virtualhost>
vim news.conf
<VirtualHost *:80>
ServerName news.xaut.com
DocumentRoot /var/www/virtual/news/html
CustomLog logs/news.log combined
</VirtualHost>
<Directory "/var/www/html/news/html">
Require all granted
</Directory>
vim music.conf
<VirtualHost *:80>
ServerName music.xaut.com
DocumentRoot /var/www/virtual/music/html
CustomLog logs/music.log combined
</VirtualHost>
<Directory "/var/www/html/music/html">
Require all granted
</Directory>
https
yum install mod_ssl -y
yum install crypoto-utils -y
genkey www.xaut.com
vim ssl.conf
101 SLCertificateFile /etc/pki/tls/certs/www.xaut.com.crt
110 SSLCertificateKeyFile /etc/pki/tls/private/www.xaut.com.key
fg
https://
网页的重写加密
[root@apache ~]# cd /etc/httpd/conf.d/
[root@apache conf.d]# cp news.conf login.conf
[root@apache html]# mkdir /var/www/virtual/login/html/ -p
[root@apache html]# cd /var/www/virtual/login/html/
[root@apache html]# vim index.html
This is a login page
[root@apache html]# vim /etc/httpd/conf.d/login.conf
1 <VirtualHost *:443>
2 ServerName login.xaut.com
3 DocumentRoot /var/www/virtual/login/html
4 CustomLog logs/login.log combined
5 SSLEngine on
6 SSLCertificateFile /etc/pki/tls/certs/www.xaut.com.crt
7 SSLCertificateKeyFile /etc/pki/tls/private/www.xaut.com.key
8 </VirtualHost>
9 <Directory "/var/www/html/login/html">
10 Require all granted
11 </Directory>
12 <VirtualHost *:80>
13 ServerName login.xaut.com
14 RewriteEngine on
15 RewriteRule ^(/.*)$ https://{HTTP_HOST}$1 [REDIRECT=301]
16 </VirtualHost>
[root@apache httpd]# systemctl restart httpd
一台虚拟机通过另一台搭建上网
[root@apache ~]# yum install squid.x86_64 -y
[root@apache ~]# vim /etc/squid/squid.conf
56 http_access allow all
59 http_port 3128
62 cache_dir ufs /var/spool/squid 100 16 256
[root@apache ~]# systemctl start squid
[root@apache ~]# systemctl stop firewalld.service
测试机中登录百度在浏览器中添加这个如图