1、配置ssh免密登陆:客户端主机通过redhat用户基于秘钥验证方式进行远程连接服务器的root用户。
(1)首先在服务端创建一个用户redhat
[root@localhost ~]# useradd redhat
(2)客户端创建一个密钥对
[root@localhost ~]# ssh-keygen -t rsa
(3)将客户端的密钥发送个服务端redhat用户并进行测试
[root@localhost ~]# ssh-copy-id root@192.168.126.128
[root@localhost ~]# ssh root@192.168.126.128
2、综合练习:请给openlab搭建web网站
网站需求: 1.基于域名www.openlab.com可以访问网站内容为 welcome to openlab!!! 2.给该公司创建三个子界面分别显示学生信息,教学资料和缴费网站,基于www.openlab.com/student 网站访问学生信息,www.openlab.com/data网站访问教学资料,www.openlab.com/money网站访问缴费网站。
(1)编辑配置文件(/etc/httpd/conf/httpd.conf )
[root@localhost ~]# vim /etc/httpd/conf.d/vhosts.conf
<Virtualhost 192.168.126.128:80>
DocumentRoot /www/openlab
ServerName www.openlab.com
</VirtualHost>
<Directory /www>
AllowOverride none
Require all granted
</Directory>
<Virtualhost 1192.168.126.128:80>
DocumentRoot /www/openlab/student
ServerName www.openlab.com/student
</VirtualHost>
<Directory /www>
AllowOverride none
Require all granted
</Directory>
<Virtualhost 192.168.126.128:80>
DocumentRoot /www/openlab/data
ServerName www.openlab.com/data
</VirtualHost>
<Directory /www>
AllowOverride none
Require all granted
</Directory>
<Virtualhost 192.168.126.128:80>
DocumentRoot /www/openlab/money
ServerName www.openlab.com/money
</VirtualHost>
<Directory /www>
AllowOverride none
Require all granted
</Directory>
(2)创建根目录
[root@localhost ~]# mkdir -p /www/openlab
[root@localhost ~]# mkdir /www/openlab/data
[root@localhost ~]#mkdir /www/openlab/student
[root@localhost ~]# mkdir /www/openlab/money
(3)编辑内容
[root@localhost ~]# echo 'welcome to openlab!!!' > /www/openlab/index.html
[root@localhost ~]# echo 'this is openlab data' > /www/openlab/data/index.html
[root@server ~]# echo 'this is openlab student' > /www/openlab/student/index.html
[root@localhost ~]# echo 'this is openlab money' > /www/openlab/money/index.html
(4)重启hppd服务(2,3一个一个做,一步一步更新)
[root@localhost ~]# systemctl restart httpd
[root@localhost ~]# setenforce 0
3、配置dns服务的正向解析
[root@localhost ~]# yum install bind -y
[root@localhost ~]# rpm -ql bind
[root@localhost ~]# vim /etc/named.conf
[root@localhost ~]# systemctl status firewalld
[root@localhost ~]#cp /var/named/named.localhost /var/named/named.baidu.com
[root@localhost ~]#vim /var/named/named.baidu.com
[root@localhost ~]# systemctl status firewalld
[root@localhost ~]#vim /var/named/named.qq.com
[root@localhost ~]# systemctl status firewalld
[root@localhost ~]#gentenforce
检查(3种方法)
[root@localhost ~]# host www.baidu.com 192.168.168.100
[root@localhost ~]# nslookup www.baidu.com 192.168.168.100
[root@localhost ~]# dig -t A www.baidu.com192.168.168.100