开发: C++知识库 Java知识库 JavaScript Python PHP知识库人工智能区块链大数据移动开发嵌入式开发工具数据结构与算法开发测试游戏开发网络协议系统运维
教程: HTML教程 CSS教程 JavaScript教程 Go语言教程 JQuery教程 VUE教程 VUE3教程 Bootstrap教程 SQL数据库教程 C语言教程 C++教程 Java教程 Python教程 Python3教程 C#教程
数码: 电脑笔记本显卡显示器固态硬盘硬盘耳机手机 iphone vivo oppo 小米华为单反装机图拉丁

-> 网络协议 -> Apache的管理与优化 -> 正文阅读

[网络协议]Apache的管理与优化

Apache的简介以及服务安装与启用

1.Apache的作用

Apache的简介以及服务安装与启用

1.Apache的作用

在web被访问时通常使用http://的方式
http:// ##超文本传输协议
http:// 超文本传输协议提供软件：Apache nginx stgw jfe Tengine

?2.Apache的安装与启用?

dnf install httpd.x86_64 -y

##安装

systemctl enable --now httpd

##开启服务并设定服务位开机启动

firewall-cmd --list-all

firewall-cmd --permanent --add-service=http
firewall-cmd --permanent --add-service=https

firewall-cmd --reload

##查看火墙信息

##在火墙中永久开启http访问
##在火墙中永久开启https访问
##刷新火墙使设定生效

Apache服务的基本信息及信息优化

1.Apache的基本信息

服务名称：httpd
配置文件：

/etc/httpd/conf/httpd.conf????????##主配置文件
/etc/httpd/conf.d/*.conf????????##子配置文件

默认发布目录：/var/www/html
默认发布文件：index.html
默认端口：80

用户:apache
日志：/etc/httpd/logs

2.Apache的基本配置

#1.Apache端口修改#

vim /etc/httpd/conf/httpd.conf
Listen 8080
firewall-cmd --permanent --add-port=8080/tcp
firewall-cmd --reload
systemctl restart httpd
http://172.25.254.100:8080

#2.默认发布文件##

vim /etc/httpd/conf/httpd.conf
DirectoryIndex test.html index.html
systemctl restart httpd

#3.默认发布目录

mkdir /www/westos -p
vim /etc/httpd/conf/httpd.conf
DocumentRoot "/www/westos"
<Directory "/www/westos">
Require all granted
</Directory>
systemctl restart httpd
firefox http://172.25.254.100

Apache服务的访问控制

#实验素材#

mkdir /var/www/html/westos
vim /var/www/html/westos/index.html

firefox http://172.25.254.100/westos

?#1.基于客户端ip的访问控制#

#ip黑名单#

<Directory "/var/www/html/westos">
Order Allow,Deny
Allow from All
Deny from 172.25.254.34
</Directory>

#ip白名单#

<Directory "/var/www/html/westos">
Order Deny,Allow
Allow from 172.25.254.34
Deny from All
</Directory>

#2.基于用户认证#

vim /etc/httpd/conf/httpd.conf
<Directory "/var/www/html/westos">

AuthUserFile "/etc/httpd/.htpasswd"
AuthName "Please input your name and password !!"
AuthType basic
Require user lee
#Require valid-user
</Directory>

##指定认证文件
##认证提示语
##认证类型
##允许通过的认证用户 (2选1)
##允许所有用户通过认证(2选1)

htpasswd -cm /etc/httpd/htpasswdfile admin

##生成认证文件

注意：当/etc/httpd/htpasswdfile存在那么在添加用户时不要加-c参数否则会覆盖源文件内容

Apache虚拟主机设定

mkdir -p /var/www/virtual/westos.org/{linux,luck}
echo? linux.westos.org?> /var/www/virtual/westos.org/linux/index.html
echo luck.westos.org > /var/www/virtual/westos.org/luck/index.html
vim /etc/httpd/conf.d/vhost.conf
<VirtualHost _default_:80>
DocumentRoot "/var/www/html"
CustomLog logs/default.log combined
</VirtualHost>
<VirtualHost *:80>
ServerName linux.westos.org?
DocumentRoot? /var/www/virtual/westos.org/linux
CustomLog logs/linux.log combined
</VirtualHost>
<VirtualHost *:80>
ServerName luck.westos.org?
DocumentRoot /var/www/virtual/westos.org/luck
CustomLog logs/luck.log combined
</VirtualHost>
测试：
在浏览器所在主机中
vim /etc/hosts
172.25.254.100 www.westos.org linux.westos.org luck.westos.org
firefox http://www.westos.org
firefox http://linux.westos.org
firefox http:// luck.westos.org

Apache对语言的支持

#php#

vim /var/www/html/index.php
<?php
????????phpinfo();
?>
dnf install php -y
systemctl restart httpd
firefox http://172.25.254.100/index.php

#cgi#

mkdir /var/www/html/cgidir
vim /var/www/html/cgidir/index.cgi
#!/usr/bin/perl
print "Content-type: text/html\n\n";
print `date`;
vim /etc/httpd/conf.d/vhost.conf
<Directory "/var/www/html/cgidir">
Options +ExecCGI
AddHandler cgi-script .cgi
</Directory>
firefox http://172.25.254.100/cgidir/index.cgi

#wsgi#

书写wsgi的测试文件
vim /var/www/html/wsgi/index.wsgi
def application(env, westos):
westos('200 ok',[('Content-Type', 'text/html')])
return [b'hello westos ahhahahahah!']
dnf install python3-mod_wsgi
systemctl restart httpd
vim /etc/httpd/conf.d/vhost
<VirtualHost *:80>
ServerName wsgi.westos.org
WSGIScriptAlias / /var/www/html/wsgi/index.wsgi
</VirtualHost>

firefox http://wsgi.westos.org

Apache的加密访问

##安装加密插件
dnf install mod_ssl -y

##生成证书

##command?
openssl req --newkey rsa:2048 \
-nodes -sha256 -keyout /etc/httpd/westos.org.key \
-x509 -days 365 -out /etc/httpd/westos.org.crt

vim /etc/httpd/conf.d/vhost.conf
<VirtualHost *:80>
ServerName login.westos.com
RewriteEngine on
RewriteRule ^(/.*)$ https://%{HTTP_HOST}$1
</VirtualHost>

<VirtualHost *:443>
ServerName login.westos.com
DocumentRoot "/www/westos.com/login"
CustomLog logs/login.log combined
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/www.westos.com.crt
SSLCertificateKeyFile /etc/pki/tls/private/www.westos.com.key
</VirtualHost>

systemctl restart httpd

^(/.*)$
%{HTTP_HOST}
$1

##客户地址栏中输入的地址
##客户主机
##RewriteRule后面跟的第一串字符的值