httpd(2)

于 2022-12-27 07:11:14 发布
阅读量1.4k 收藏
点赞数
文章标签: linux 服务器 运维
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/linux_xk/article/details/128450810
版权

虚拟主机:
虚拟主机有三类:

  • 相同IP不同端口
  • 不同IP相同端口
  • 相同IP相同端口不同域名

1.配置两台虚拟主机,设置不同端口号

[root@xk conf]# vim httpd.conf
#virtual host 1     # 虚拟主机1的配置
<VirtualHost 192.168.154.128:80>
    ServerName www.wangqing.com
    DocumentRoot "/var/www/html/www"
    ErrorLog "/var/log/httpd/www/error_log"
    CustomLog "/var/log/httpd/www/access_log" combined
    <Directory /var/www/html/www>
        <RequireAll>
            Require all granted
            Require not ip 192.168.1
        </RequireAll>
    </Directory>
</VirtualHost>
# virtual host 2     # 虚拟主机2的配置
<VirtualHost 192.168.154.129:8080>
    ServerName blog.wangqing.com
    DocumentRoot "/var/www/html/blog"
    ErrorLog "/var/log/httpd/blog/error_log"
    CustomLog "/var/log/httpd/blog/access_log" combined
    <Directory /var/www/html/blog>
        <RequireAll>
          Require all granted
        </RequireAll>
    </Directory>
</VirtualHost>

创建www和blog的目录

[root@xk ~]# mkdir -p /var/www/html{www,blog}

修改属主属组

[root@xk ~]# chown -R apache.apache /var/www/html/
[root@xk ~]# ll /var/www/html/
total 0
drwxr-xr-x 2 apache apache 6 Dec 27 01:57 blog
drwxr-xr-x 2 apache apache 6 Dec 27 01:57 www

创建网站

[root@xk ~]# echo 'www test' > /var/www/html/www/index.html
[root@xk ~]# echo 'blog test' > /var/www/html/blog/index.html
[root@xk ~]# mkdir -p /var/log/httpd/{blog,www}

 检查配置文件

[root@xk ~]# httpd -t
Syntax OK

重启并查看

[root@xk ~]# systemctl restart httpd
[root@xk ~]# ss -antl
State  Recv-Q Send-Q Local Address:Port   Peer Address:Port Process 
LISTEN 0      128          0.0.0.0:111         0.0.0.0:*            
LISTEN 0      128          0.0.0.0:22          0.0.0.0:*            
LISTEN 0      128             [::]:111            [::]:*            
LISTEN 0      128                *:80                *:*            
LISTEN 0      128             [::]:22             [::]:*

在文件里面listen8080监听

Listen 80
Listen 8080

重启并查看

[root@xk conf]# systemctl restart httpd
[root@xk conf]# ss -antl
State  Recv-Q Send-Q Local Address:Port   Peer Address:Port Process 
LISTEN 0      128          0.0.0.0:111         0.0.0.0:*            
LISTEN 0      128          0.0.0.0:22          0.0.0.0:*            
LISTEN 0      128             [::]:111            [::]:*            
LISTEN 0      128                *:8080              *:*            
LISTEN 0      128                *:80                *:*            
LISTEN 0      128             [::]:22             [::]:*

访问

[root@xk ~]# curl http://192.168.154.128:80
www test
[root@xk ~]# curl http://192.168.154.128:8080
blog test

 2.相同端口号不同ip

删掉文件监听的8080,将主机2的IP改为192.168.154.129:8080,临时创建该ip

# virtual host 2     # 虚拟主机2的配置
<VirtualHost 192.168.154.129:80>
    ServerName blog.wangqing.com
    DocumentRoot "/var/www/html/blog"
    ErrorLog "/var/log/httpd/blog/error_log"
    CustomLog "/var/log/httpd/blog/access_log" combined
    <Directory /var/www/html/blog>
        <RequireAll>
            Require all granted
        </RequireAll>
    </Directory>
</VirtualHost>

[root@xk ~]# ip addr add 192.168.154.129/24 dev ens160
[root@xk ~]# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: ens160: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
    link/ether 00:0c:29:51:05:b0 brd ff:ff:ff:ff:ff:ff
    inet 192.168.154.128/24 brd 192.168.154.255 scope global dynamic noprefixroute ens160
       valid_lft 1104sec preferred_lft 1104sec
    inet 192.168.154.129/24 scope global secondary ens160
       valid_lft forever preferred_lft forever
    inet6 fe80::20c:29ff:fe51:5b0/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever

重启再次访问查看结果

[root@xk conf]# systemctl restart httpd
[root@xk conf]# curl http://192.168.154.128:80
www test
[root@xk conf]# curl http://192.168.154.129:80
blog test

3.相同ip,域名不同

将两台主机ip都设置为192.168.154.128:80,重启用域名访问

[root@xk conf]# vim httpd.conf
#virtual host 1     # 虚拟主机1的配置
<VirtualHost 192.168.154.128:80>
    ServerName www.wangqing.com
    DocumentRoot "/var/www/html/www"
    ErrorLog "/var/log/httpd/www/error_log"
    CustomLog "/var/log/httpd/www/access_log" combined
    <Directory /var/www/html/www>
        <RequireAll>
                 Require all granted
                 Require not ip 192.168.1
        </RequireAll>
    </Directory>
</VirtualHost>
# virtual host 2     # 虚拟主机2的配置
<VirtualHost 192.168.154.128:80>
    ServerName blog.wangqing.com
    DocumentRoot "/var/www/html/blog"
    ErrorLog "/var/log/httpd/blog/error_log"
    CustomLog "/var/log/httpd/blog/access_log" combined
    <Directory /var/www/html/blog>
        <RequireAll>
                 Require all granted
        </RequireAll>
    </Directory>
</VirtualHost>

在客户机上验证
1.修改hosts文件
 ~ cat /etc/hosts
##
# Host Database
#
# localhost is used to configure the loopback interface
# when the system is booting.  Do not change this entry.
##
127.0.0.1   localhost
255.255.255.255 broadcasthost
::1             localhost
118.31.33.0 zabbix.forevercq.com
0.0.0.0 account.jetbrains.com
//添加以下2行
192.168.154.128 www.wangqing.com
192.168.154.128 blog.wangqing.com

用命令生成个人证书

创建CA的目录

[root@xk ~]# mkdir /etc/pki/CA
[root@xk ~]# cd /etc/pki/CA
[root@xk CA]# pwd
/etc/pki/CA

 创建private的目录

[root@xk ~]# mkdir -p /etc/pki/CA/private

生成密钥

[root@xk CA]# (umask 077;openssl genrsa -out private/cakey.pem 2048)
Generating RSA private key, 2048 bit long modulus (2 primes)
..+++++
........................+++++
e is 65537 (0x010001)
[root@xk CA]# ls
private
[root@xk CA]# ll private/
total 4
-rw------- 1 root root 1675 Dec 27 03:39 cakey.pem

查看公钥

[root@xk CA]# openssl rsa -in private/cakey.pem -pubout
writing RSA key
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGLX8iGOch0Y7GBCZtZZ
lXwON2MB6l6U+5Zd1pocaPyZ4CGGRWeh0ufw83/Ic3kAz8+m/+hn3/dHw0DZURHh
oZzzx+rlnpggJV1FxL5D8TV2Vw8o/XTzw9yHJJ/Gb2yquR8BfjqL0IQG/QyeLgTl
AzNJxpJEWaBb7ifp6sOv1JrybgcKy6YlGhXH4ZQwQBoT2A/jzfM7vyhIQjxlmmdh
xIlXunnVaA8X9gBLcnB05YvXCjGqulzffUIxoAPw0NwhYFj8b3FNeruKf/51aSEs
pJgphQpUBT0pyESNnEy5wiBnwsdi+U67vGVYzb9DjmZgQc3I/LbJdX4iMvXNK3y+
zQIDAQAB
-----END PUBLIC KEY-----

CA生成自签署证书

[root@xk CA]# openssl req -new -x509 -key private/cakey.pem -out cacert.pem -days 365
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:CN
State or Province Name (full name) []:HB
Locality Name (eg, city) [Default City]:WH
Organization Name (eg, company) [Default Company Ltd]:runtime    
Organizational Unit Name (eg, section) []:runtime
Common Name (eg, your name or your server's hostname) []:www.wangqing.com
Email Address []:1@2.com

[root@xk CA]# mkdir certs newcerts crl
[root@xk CA]# touch index.txt && echo 01 > serial

进入conf创建一个ssl的目录

[root@xk apache]# cd conf/
[root@xk conf]# ls
extra  httpd.conf  magic  mime.types  original
[root@xk conf]# mkdir ssl
[root@xk conf]# pwd
/usr/local/apache/conf

客户端生成密钥

/usr/local/apache/conf
[root@xk conf]# cd ssl/
[root@xk ssl]# ls
[root@xk ssl]# (umask 077;openssl genrsa -out httpd.key 2048)
Generating RSA private key, 2048 bit long modulus (2 primes)
........+++++
..........+++++
e is 65537 (0x010001)
[root@xk ssl]# ls
httpd.key
[root@xk ssl]#

证书签署请求

[root@xk ssl]# openssl req -new -key httpd.key -days 365 -out httpd.csr
Ignoring -days; not generating a certificate
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:CN
State or Province Name (full name) []:HB
Locality Name (eg, city) [Default City]:WH
Organization Name (eg, company) [Default Company Ltd]:runtime
Organizational Unit Name (eg, section) []:runtime
Common Name (eg, your name or your server's hostname) []:www.wangqing.com
Email Address []:1@2.com

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:

CA签署客户端提交上来的证书

[root@xk ssl]# openssl ca -in httpd.csr -out httpd.crt -days 365
Using configuration from /etc/pki/tls/openssl.cnf
Check that the request matches the signature
Signature ok
Certificate Details:
        Serial Number: 1 (0x1)
        Validity
            Not Before: Dec 26 22:17:43 2022 GMT
            Not After : Dec 26 22:17:43 2023 GMT
        Subject:
            countryName               = CN
            stateOrProvinceName       = HB
            organizationName          = runtime
            organizationalUnitName    = runtime
            commonName                = www.wangqing.com
            emailAddress              = 1@2.com
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            Netscape Comment: 
                OpenSSL Generated Certificate
            X509v3 Subject Key Identifier: 
                6E:AE:A0:4F:C9:FE:52:E8:9A:47:22:14:5E:85:0B:75:70:34:0F:C1
            X509v3 Authority Key Identifier: 
                keyid:F0:B2:FB:18:18:96:C4:92:64:5A:71:A4:01:FA:23:E1:0A:79:AC:1B

Certificate is to be certified until Dec 26 22:17:43 2023 GMT (365 days)
Sign the certificate? [y/n]:y


1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated
[root@xk ssl]# ls
httpd.crt  httpd.csr  httpd.key
[root@xk ssl]#

配置文件

[root@xk conf]# vim extra/httpd-vhosts.conf
# match a ServerName or ServerAlias in any <VirtualHost> block.
#
<VirtualHost *:80>
    ServerAdmin webmaster@dummy-host.example.com
    DocumentRoot "/usr/local/apachehth/htdocs/www.wangqing.com"
    ServerName www.wangqing.com
    ErrorLog "logs/www.wangqing.com-error_log"
    CustomLog "logs/www.wangqing.com-access_log" common
</VirtualHost>

<VirtualHost *:80>
    ServerAdmin webmaster@dummy-host2.example.com
    DocumentRoot "/usr/local/apache/htdocs/blog.wangqing.com"
    ServerName blog.wangqing.com
    ErrorLog "logs/blog.wangqing.com-error_log"
    CustomLog "logs/blog.wangqing.com-access_log" common
</VirtualHost>

删除两台主机配置的文件并且取消注释

# Virtual hosts
Include conf/extra/httpd-vhosts.conf

创建blog.wangqing.com和www.wangqing.com两个目录

[root@xk conf]# mkdir -p /usr/local/apache/htdocs/{blog.wangqing.com,www.wangqing.com}
[root@xk conf]# ls /usr/local/apache/htdocs/
blog.wangqing.com  index.html  www.wangqing.com

[root@xk conf]# mv /var/www/html/www/*  /usr/local/apache/htdocs/www.wangqing.com/
[root@xk conf]# mv /var/www/html/blog/*  /usr/local/apache/htdocs/blog.wangqing.com/

访问发现已成功

 

爱敲代码的朝暮
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
arm配置httpd
11-28
"arm配置httpd" 本文将指导如何使用buildroot工具配置httpd(HTTP Server),支持PHP,并在arm板上配置httpd和PHP的解释器的配置文件。 一、标题:arm配置httpd arm板是基于Linux的嵌入式系统,需要配置httpd以...
http://www.htsjpt.com/admin.php,webshell/php/xiao.php.txt at f875e7b78085777b8a10c3456478dbd192d851a...
热门推荐
weixin_39980575的博客
03-13 59万+
eval(gzuncompress(base64_decode("eJzsvfl3G8eROP6z/J7/h9GYK4AmiIP3IVDiTUq8RJA6qceHY0BABDDQAOAhW/u/MNpNvLJ2I0qkLoq6SJsUZVEUSUmOnnP4WCeO1slGzsd2rDjvW9XHTA8wACnFye7nky9tkUAf1dXV1dXV1dXViqap2rCmJFUtHU2M2Ku...
搬家了,新地址http://www.cnblogs.com/clayman/
Clayman的专栏
05-18 16万+
   终于决定搬家,难用都还可以勉强忍受,可是最近居然开始乱封blog了,怕怕。可惜那么多文章带不走,手动把部份我觉得比较有价值的文章搬过去了。呵呵,欢迎大家有空过去看看:)。 此blog将不再更新...........
http://www.115ps.com/all.html,plnt-20200804
weixin_32389853的博客
06-19 23万+
0001637207-20-000037.txt : 202008040001637207-20-000037.hdr.sgml : 2020080420200804161432ACCESSION NUMBER:0001637207-20-000037CONFORMED SUBMISSION TYPE:8-KPUBLIC DOCUMENT COUNT:15CONFORMED PERIOD OF R...
Linux系统重装出现c0409a9f,自学IT吧论坛Linux系统运营系列视频教程#28期2016系统/服务器资源天地 - www.zxit8.com...
weixin_39563722的博客
05-15 7754
0001-老学员学习方法心得分享说明9 Q) B4 dx. R# l0002-oldboy运维26期学员侯同学-13k入职8 j" I4 p+ m$ Z9 A9 d' @; f! O0003-oldboy运维26期学员曹同学-年薪21万入职: `& Q# z$ |. X+ A0004-oldboy运维26期学员万同学-14k入职1 _0 s! Q) K+ b1 d0005-oldboy...
一些下载网站
^_^TaeYang-Jade^_^
02-01 2万+
[黑客基地delphi教程](25课全).rar: http://www.t00y.com/file/10072590; X3 R9 N9 H+ r [黑客基地:C语言编程特训班].毒宫玫瑰.共26讲.iso: http://www.t00y.com/file/100725913 T9 z8 J% G# a( B( m  b [黑客基地:Linux操作系统特训班].毒宫玫瑰.共32
httpd安装包--httpd安装包
02-20
2. `-v`: 详细模式,显示安装过程中的详细信息,帮助用户跟踪安装进度。 3. `-h`: 显示哈希标记(#),随着安装进度变化,帮助用户追踪安装状态。 4. `--force`: 强制覆盖现有文件,即使这些文件可能与其他包冲突或...
httpd.conf
10-25
# yum -yinstall httpd //安装httpd会自动安装一下依赖包: apr apr-util httpd-tools mailcap # rpm -qi httpd Name : httpd Version : 2.4.6 Release : 18.el7.centos Architecture: x86_64 Install Date: Mon 11 ...
httpd服务器
05-30
apache服务器,也就是httpd服务器,win64版本。官网下载较慢,放到这里。2.4.33版本+(说明)
httpd-2.4.39.tar.bz2
07-01
httpd-2.4.39.tar.bz2 http apache服务器配置(域名+转发端口)
Endnote x7 和X8的下载
不吃瓜的吃瓜群众
11-28 2万+
  链接:https://pan.baidu.com/s/1p-8S2EvdDNGHbq4MqAzgNg  提取码:bnjd  EndNote x7中文破解版     按照里面的步骤,一步一步来,可以,拿积分下载的,我用是这个。   https://blog.csdn.net/u012878602/article/details/53908414    这是一个哥们的链接,是百度云英文版的...
新手理解的bash环境变量解析漏洞
smstong的成长轨迹
09-26 1万+
以最简单的方式解释bash环境变量解析漏洞的原理。
HTTP1.x协议详解和HTTP2.0
loserbai的博客
09-18 6744
http简称超文本传输协议,属于应用层协议,基本用于应用之间的数据传输,常用于web方向,是基于tcp的应用层协议,有时候还会基于ssl,tsl就是我们说的https协议HTTP协议(超文本传输协议HyperText Transfer Protocol),它是基于TCP协议的应用层传输协议,简单来说就是客户端和服务端进行数据传输的一种规则。注意:客户端与服务器的角色不是固定的,一端充当客户端,也可能在某次请求中充当服务器。这取决与请求的发起端。HTTP协议属于应用层,建立在传输层协议TCP之上。
arduino-rgb888-code-02
lmf666的博客
05-21 6万+
/* The 8x8x8 RGB LED Cube by Kevin Darrah www.kevindarrah.com kevin@kevindarrah.com Latest V12 04/17/2013 Release Notes: V11 - Fixed bug with BAM timing - Moved Blank pin setup to ISR so pins are dead until they are written to V12 bitwise operation to
SEO网站优化团队官网模板分享
php源码
01-19 6006
下载地址: http://www.bytepan.com/d8x8Xvx50v7
动漫用语
weixin_34067049的博客
08-15 2961
fHL  乙 ma|]T(c}  おつ」的日本語漢字,為「お疲れ様」的減省表示,有「辛苦了」的意思。 \n*fk@8&gt;  EX「轉貼神乙です...m(_ _)m」 j*cY+$R  幼馴染 4P&gt;t\  日本語中青梅竹馬的漢字。 4pFn6 0"  光源氏計畫 ,9g/ih.V  把小羅莉養大再推倒的計畫 (詳細部份就不解釋了..) 3 p- {  控 O P/xg;;  出自日本語「...
前端现场笔试题
木木木森林
09-18 9911
多行文本溢出以省略号表示: overflow: hidden; text-overflow: ellipsis; display: -webkit-box; -webkit-line-clamp: 2; // 最大行数 -webkit-box-orient: vertical;
一切免费的大学视频教程,免费空间和网盘
C#.Net/通信/网页/WinForm专题
11-27 2万+
 一切都是免费的,好多让人留口水的东东!资源全部来自网上,不能保证所有链接正常!发现错误链接请大家留言!谢谢!不断更新中.......[注意]目前很多很重要的视频资料均实行了加密处理,使之必须使用专用的软件播放,并且视频无法修改和编辑,Teaching Player v5.00.1118 (CSF格式视频教程专用播放器)就是专门用来播放csf加密文件的视频播放软件! 下载地址:http://www
web服务器httpd1和httpd2的需求分析
最新发布
06-08
假设httpd1和httpd2都是用于托管Web应用的服务器,需求分析需要考虑以下几个方面: 1. 访问量:根据Web应用的访问量来确定服务器的配置、规模和数量。如果访问量较大,需要高性能的服务器和大容量的存储空间。 2. ...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值