Apache的作用
在web被访问时通常使用http: //的方式
http:// ##超文本传输协议
http:// 超文本传输协议提供软件: Apache
nginx
stgw
jfe Tengine
Apache的安装
dnf install httpd.x86_64 -y
Apache的启用
systemctl enable --now httpd ##开启服务并设定服务位开机启动
firewall-cmd --list-all ##查看火墙信息
firewall-cmd --permanent --add-service=http ##在火墙中永久开启http访问
firewall-cmd --permanent --add-service=https ##在火墙中永久开启https访问
firewall-cmd --reload ##刷新火墙使设定生效
Apache的基本信息
服务名称: httpd
配置文件: /etc/httpd/conf/httpd.conf
/etc/httpd/conf.d/*.conf
默认发布目录: /var/www/html
默认发布文件: index.html
默认端口: 80 #http
443 #https
用户: apache
日志: /etc/httpd/logs
Apache的基本配置
1.Apache端口修改
vim /etc/httpd/conf/httpd.conf
Listen 8080
firewall-cmd --permanent --add-port=8080/tcp
firewall-cmd --reload
semanage port -l | grep http
semanage port -a -t http_port_t -p tcp 8080
systemctl restart httpd
2.默认发布文件
vim /etc/httpd/conf/httpd.conf
DirectoryIndex westos.html index.html
systemctl restart httpd
3.默认发布目录
vim /etc/httpd/conf/httpd.conf
DocumentRoot "/westos/html"
<Directory "/westos/html">
Require all granted
</Directory>
semanage fcontext -a -t httpd_sys_content_t ‘/westos(/.*)?’
restorecon -RvvF /westos/
systemctl restart httpd
firefox http://172.25.254.220
Apache的访问控制
实验素材:
mkdir /var/www/html/westos
vim /var/www/html/westos/index.html
westosdir’s page
firefox http://172.25.254.220/westos
基于客户端ip的访问控制
ip白名单:
vim /etc/httpd/conf/httpd.conf
<Directory "/var/www/html/westos">
Order Deny,Allow
Allow from 172.25.254.120
Deny from All
</Directory>
ip黑名单:
<Directory "/var/www/html/westos">
Order Allow,Deny
Allow from All
Deny from 172.25.254.120
</Directory>
基于用户认
vim /etc/httpd/conf/httpd.conf
<Directory "/var/www/html/westos">
AuthUserfile /etc/httpd/htpasswdfile ##指定认证文件(htpasswdfile可随意)
AuthName "Please input your name and password" ##认证提示语
AuthType basic ##认证类型
Require user admin ##允许通过的认证用户 2选1(只允许admin通过)
Require valid-user #允许所有用户通过认证 2选
1 </Directory>
htpasswd -cm /etc/httpd/htpasswdfile admin ##生成认证文件
注意:
当/etc/httpd/htpasswdfile 存在那么在添加用户时不要加-c参数否则会覆盖源文件内容