网站需求:
1.基于域名www.lalala.com可以访问网站内容为 welcome to lalala!!!
2.给该公司创建三个虚拟网站目录分别显示学生信息,教学资料和缴费网站。
www.lalala.com/student 网站访问学生信息
www.lalala.com/data网站访问教学资料
www.lalala.com/money网站访问缴费网站。
3.(1)学生信息网站只有song和tian两人可以访问,其他网站所有用户不能访问。
(2)访问缴费网站实现数据加密基于https访问。
1.创建虚拟主机模块
vim /etc/httpd/conf.d/vhaost.conf
<directory /lalala>
allowoverride none
require all granted
</directory>
<virtualhost 192.168.17.134:80>
documentroot /lalala
</virtualhost>
2.创建网页文件
mkdir /lalala
vim /lalala/index.html
welcome to lalala!!!
3.由于是基于域名访问,添加IP域名的映射关系后重启服务
vim /etc/hosts
192.168.17.134 www.lalala.com
systemctl restart httpd
4.编辑虚拟主机文件
<directory /lalala>
allowoverride none
require all granted
</directory>
</directory>
<virtualhost 192.168.17.134:80>
documentroot /lalala
servername www.lalala.com
alias /money /lalala/money //别名目录
alias /student /lalala/student //别名目录
alias /data /lalala/data //别名目录
</virtualhost>
5.添加网页文件
echo this is xsxx! > /lalala/student/index.html
echo this is jxzl! > /lalala/data/index.html
echo this is jfwz! > /lalala/money/index.html
重启服务验证
6.添加用户song和tian修改配置文件
htpasswd -c /usr/local/htuser song
htpasswd -c /usr/local/htuser tian
vim /etc/httpd/conf.d/vhost.conf
<directory /lalala>
allowoverride none
require all granted
</directory>
<Directory /lalala/student> //用户控制
Authtype Basic
AuthName "this is private:"
AuthUserfile /usr/local/htuser
Require user tian song
</Directory>
<virtualhost 192.168.17.134:80>
documentroot /lalala
servername www.lalala.com
alias /money /lalala/money
alias /student /lalala/student
alias /data /lalala/data
</virtualhost>
验证
7.制作证书文件
cd /etc/pki/tls/certs/
make lalala.crt
制作过程参照制作证书
修改虚拟主机文件
<Directory /lalala/student>
Authtype Basic
AuthName "this is private:"
AuthUserfile /usr/local/htuser
Require user tian song
</Directory>
<virtualhost 192.168.17.134:80>
documentroot /lalala
servername www.lalala.com
alias /student /lalala/student
alias /data /lalala/data
</virtualhost>
<virtualhost 192.168.17.134:443>
documentroot /lalala
servername www.lalala.com
alias /money /lalala/money
SSLEngine on //安全引擎
SSLCertificateFile /etc/pki/tls/certs/lalala.crt //证书文件
SSLCertificateKeyFile /etc/pki/tls/certs/lalala.key //密钥文件
</virtualhost>
重启验证