该文详细描述了如何配置Apache服务器以使基于域名www.openlab.com能访问到不同内容的网站,包括创建学生信息、教学资料和缴费网站的子界面。通过设置Windows和Linux的hosts文件,以及在Apache配置文件中添加VirtualHost和Directory指令,实现了子站点的访问。同时,对部分子站点实施了密码保护和SSL加密,确保了数据的安全性。
基于域名www.openlab.com可以访问网站内容为welcome to openlab
首先进行预处理
安装阿帕奇,关闭selinux和防火墙
[root@server ~]# setenforce 0
[root@server ~]# systemctl stop firewalld
[root@server ~]# yum install httpd -y
域名的处理
1,在Windows端C:\Windows\System32\drivers\etc下的hosts文件加入192.168,190.129 www.openlab.com并保存
2,在linux端打开/etc/hosts文件写入 192.168.190.129 www.openlab.com
将域名进行映射
注意:我没有保存Windows端hosts文件的权限所以我用IP地址进行访问
编辑httpd的主配置文件
<VirtualHost 192.168.190.129>
DocumentRoot /www/openlab
ServerName "www.openlab.com"
<Directory /www/openlab>
AllowOverride none
Require all granted
</Directory>
</VirtualHost>
重启服务
[root@server ~]# systemctl restart httpd
测试
给该公司创建三个子界面分别显示学生信息,教学资料和缴费网站
学生信息网站
创建两个用户
[root@server ~]# mkdir /www/openlab/student
[root@server ~]# echo "student" > /www/openlab/student/index.html
[root@server ~]# chmod 755 -Rf 755 /www/openlab/student
[root@server ~]# useradd song
[root@server ~]# passwd song
[root@server ~]# useradd tian
[root@server ~]# passwd tian
增加密码访问控制
[root@server ~]# htpasswd -c /etc/httpd/passwd song
New password:
Re-type new password:
Adding password for user song
[root@server ~]# htpasswd /etc/httpd/passwd tian
New password:
Re-type new password:
Adding password for user tian
在主配置文件进行相应的配置
[root@server ~]# vim /etc/httpd/conf/httpd.conf
<Directory /www/openlab/student>
Authtype Basic
AuthName "student"
AuthUserFile /etc/httpd/passwd
Require user song tian
</Directory>
[root@server ~]# systemctl restart httpd #重启服务
测试
教学资料网站
[root@server ~]# mkdir /www/openlab/data
[root@server ~]# echo "data" > /www/openlab/data/index.html
[root@server ~]# vim /etc/httpd/conf/httpd.conf #进入主配置文件
<VirtualHost 192.168.190.129>
DocumentRoot /www/openlab
alias /data /www/openlab/data
ServerName "www.openlab.com"
</VirtualHost>
<Directory /www/openlab>
AllowOverride none
require all granted
</Directory>
<Directory /www/openlab/data>
AllowOverride none
require all granted
</Directory>
[root@server ~]# systemctl restart httpd #重启服务
测试
缴费网站
[root@server ~]# mkdir /www/openlab/money
[root@server ~]# echo "money" > /www/openlab/money/index.html
[root@server ~]# chmod -Rf 755 /www/openlab/money
[root@server ~]# openssl genrsa -aes128 2048 > /etc/pki/tls/private/openlab.key ##生产私钥文件
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
[root@server ~]# openssl req -utf8 -new -key /etc/pki/tls/private/openlab.key -x509 -days 365 -out /etc/pki/tls/openlab.crt ##新建数字证书
Enter pass phrase for /etc/pki/tls/private/openlab.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:86 ##所在国家
State or Province Name (full name) []:shanxi##所在省份
Locality Name (eg, city) [Default City]:xi'an ##所在城市
Organization Name (eg, company) [Default Company Ltd]:oplab ##所在公司
Organizational Unit Name (eg, section) []:xh ##所在部门
Common Name (eg, your name or your server's hostname) []:server##主机名
Email Address []:2962273654@qq,com ##邮箱
修改配置文件
[root@server ~]# vim /etc/httpd/conf.d/ssl.conf
<VirtualHost 192.168.190.129:443>
SSLEngine on
SSLCertificateFile /etc/pki/tls/openlab.crt
SSLCertificatekeyFile /etc/pki/tls/private/openlab.key
ServerName 192.168.190.129
DocumentRoot /www/openlab
alias /money /www/openlab/money
</VirtualHost>
<Directory /www/openlab/money>
AllowOverride none
require all granted
</Directory>
[root@server ~]# vim /etc/httpd/conf.d/ssl.conf
[root@server ~]# systemctl restart httpd ##重启服务
🔐 Enter TLS private key passphrase for 192.168.190.129:443 (RSA) : ******
测试
总结
在本次实验是基于域名访问,这就要修改window端的hosts文件,但是我的权限不够只能实现在window端基于IP地址进行访问网页。
扫一扫
1124
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
