unit4.web服务的部署及高级优化方案

Yk_GSDN2024-04-28 20:01

搭建web服务器要求如下:

1.web服务器的主机ip:172.25.254.100

root@server101 桌面\]# vmset.sh 100 连接已成功激活(D-Bus 活动路径:/org/freedesktop/NetworkManager/ActiveConnection/3) \[root@server101 桌面\]# ifconfig eth0: flags=4163\ mtu 1500 inet 172.25.254.100 netmask 255.255.255.0 broadcast 172.25.254.255 inet6 fe80::9b83:9bbf:15db:3ba3 prefixlen 64 scopeid 0x20\ ether 00:0c:29:4b:1a:e5 txqueuelen 1000 (Ethernet) RX packets 1403 bytes 2053091 (1.9 MiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 1038 bytes 60260 (58.8 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 2.web服务器的默认访问目录为/var/www/html,默认发布内容为default's page (1)安装nginx.x86_64 \[root@server101 桌面\]# dnf install nginx.x86_64 -y 已安装: nginx-1:1.20.1-14.el9_2.1.x86_64 nginx-core-1:1.20.1-14.el9_2.1.x86_64 nginx-filesystem-1:1.20.1-14.el9_2.1.noarch redhat-logos-httpd-90.4-2.el9.noarch 完毕! (2)开启服务 \[root@server101 \~\]# systemctl enable --now nginx.service Created symlink /etc/systemd/system/multi-user.target.wants/nginx.service → /usr/lib/systemd/system/nginx.service. (3)关闭防火墙并查看状态 \[root@server101 桌面\]# systemctl disable firewalld \[root@server101 桌面\]# systemctl stop firewalld \[root@server101 桌面\]# systemctl status firewalld ○ firewalld.service - firewalld - dynamic firewall daemon Loaded: loaded (/usr/lib/systemd/system/firewalld.service; disabled; prese\> Active: inactive (dead) Docs: man:firewalld(1) (3)编辑 vim /etc/nginx/nginx.conf server { listen 80; listen \[::\]:80; server_name _; #root /usr/share/nginx/html; root /var/www/html; index index.html; (4)编辑完成后,wq退出保存,查错,无错后重启服务,查看访问目录,没有的话就创一个。 \[root@server101 nginx\]# vim /etc/nginx/nginx.conf \[root@server101 nginx\]# nginx -t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful \[root@server101 nginx\]# systemctl restart nginx.service \[root@server101 nginx\]# mkdir -p /var/www/html \[root@server101 nginx\]# echo default's page \> /var/www/html/index.html (5)测试: \[root@server101 nginx\]# curl 172.25.254.100 default's page ![](https://file.jishuzhan.net/article/1784553625876434945/1f186e71bd396b920b73d528a21f7d41.webp) 3.站点news.timinglee.org默认发布目录为/var/www/virtual/timinglee.org/news 默认发布内容为 news.timinglee.org (1)编辑 vim /etc/nginx/nginx.conf 注释server顶部的include /etc/nginx/conf.d/\*.conf; #include /etc/nginx/conf.d/\*.conf; server { listen 80; listen \[::\]:80; server_name _; 随后复制一份到server的末端 error_page 500 502 503 504 /50x.html; location = /50x.html { } } include /etc/nginx/default.d/\*.conf; 接着进入/etc/nginx/conf.d/,并进行编辑子目录文件 \[root@server100 \~\]# vim /etc/nginx/nginx.conf \[root@server100 \~\]# cd /etc/nginx/conf.d/ \[root@server100 conf.d\]# pwd /etc/nginx/conf.d \[root@server100 conf.d\]# vim vhosts.conf 子目录内容 server { listen 80; server_name news.timinglee.org; root /var/www/virtual/timinglee.org/news; index index.html; } \[root@server100 conf.d\]# mkdir -p /var/www/virtual/timinglee.org/news 创建默认发布内容 \[root@server100 conf.d\]# echo news.timinglee.org \> /var/www/virtual/timinglee.org/news/index.html 本地解析 \[root@server101 conf.d\]# vim /etc/hosts 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 172.25.254.100 server100.timinglee.org 测试 root@server101 \~\]# curl news.timinglee.org curl: (6) Could not resolve host: news.timinglee.org 4.站点login.timinglee.org在被访问时必须强制走加密协议,其默认发布目录为/var/www/virtual/timinglee.org/login 默认发布内容为login.timinglee.org 编辑子目录文件 server{ listen 80; server_name login.timinglee.org; root /var/www/virtual/timinglee.org/login; index index.html; } 创建发目录路径 \[root@server100 conf.d\]# mkdir -p /var/www/virtual/timinglee.org/login 默认发布内容 root@server100 conf.d\]# echo login.timinglee.org \> /var/www/virtual/timinglee.org/login/index.html 创建加密文件 \[root@server100 \~\]# mkdir /etc/nginx/certs \[root@server100 \~\]# openssl req -newkey rsa:2048 -nodes -sha256 -keyout /etc/nginx/certs/timinglee.org.key -x509 -days 365 -out /etc/nginx/certs/timinglee.org.crt ..+.+...........+.......+.....+.......+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\*......+.......+...+........+....+...+......+..+...+....+..+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\*.......+.....+.............+..+....+..+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ .....+..+.......+........+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\*.+............+....+..+.......+...+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\*...+.....+....+..+...+......+.+......+.....+...............+....+.....+.+........+.........+............+....+.....+.+...+.....+.......+.....................+...+......+..............+......+.+...+.....+......+..........+...+..+.........+.+........+...+.......+...+.........+....................+.+........+.+......+.....+.............+..+.......+.....+.+......+...+...+.....+.......+..+...+......+.......+...+............+........+..........+...............+......+...+.....+.+.........+........+.........+...+......................+...+..+...+......+......+...............+.+............+..+...+......+.+...........+...+.......+........................+...+..+...+.......+......+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ----- You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) \[XX\]:CN State or Province Name (full name) \[\]:Shanghai Locality Name (eg, city) \[Default City\]:Xi'an Organization Name (eg, company) \[Default Company Ltd\]:timinglee Organizational Unit Name (eg, section) \[\]:webserver Common Name (eg, your name or your server's hostname) \[\]:www.timinglee.org Email Address \[\]:admin@timinglee.org 接着编辑子目录文件 erver { listen 443 ssl; server_name login.timinglee.org; ssl_certificate "/etc/nginx/certs/timinglee.org.crt"; ssl_certificate_key "/etc/nginx/certs/timinglee.org.key"; root /var/www/virtual/timinglee.org/login; index index.html; } 强制加密 server { listen 80; server_name login.timinglee.org; rewrite \^/(.\*)$ https://login.timinglee.org/$1 permanent; 检错 \[root@server101 conf.d\]# nginx -t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful 无误后重启服务 \[root@server101 conf.d\]# systemctl restart nginx.service

相关推荐
IpdataCloud1 分钟前
IP查询工具怎么选?在线API vs IP离线库:精度、速度、成本、隐私全对比
服务器·网络·数据库
Harm灬小海2 分钟前
【云计算学习之路】学习Centos7系统:Linux磁盘管理
linux·运维·服务器·学习·云计算
艾莉丝努力练剑7 分钟前
【Linux网络】Linux 网络编程:HTTP(三)HTTP 协议原理
linux·运维·服务器·网络·c++·http
小皮蛋儿子9 分钟前
mac 微信双开
linux·服务器·apache
minji...9 分钟前
Linux 网络基础之网络IP层(十一)私有IP地址和公网IP地址,运营商和全球网络,理解公网
linux·服务器·网络·nat·内网·公网·运营商
古怪今人9 分钟前
WSL和Hyper-V Ubuntu安装docker Docker安装Reids、MySQL、PostgreSQL和RabbitMQ
运维·docker·容器
安妮的小熊呢14 分钟前
CRMEB标准版v6.0: 商城DIY装修新升级,PS级自由设计!
运维·javascript·平面·信息可视化·小程序·开源软件
米高梅狮子14 分钟前
01.ELK企业日志分析系统
运维·服务器·网络·数据库·elk·oracle
逆境不可逃14 分钟前
Hello-Agents 第二部分-第九章总结:上下文工程
linux·运维·服务器
阿达hi15 分钟前
RPA 自动化SAP 流程授权
运维·自动化·rpa
热门推荐
01GitHub 镜像站点02Codex 接入 DeepSeek API 完整配置文档03CC-Switch & Claude 基于 Linux 服务器安装使用指南04【踩坑记录 | 第一篇】微软商店无法使用时,如何手动安装 OpenAI Codex?附`.msix`文件系统错误解决方法05几个好用的ip纯净度检测网站06裂开!ChatGPT 居然开始要手机号验证,附详细解决方法07装上就回不去了:CodeGraph 让 AI 编程效率飙升 92%,它到底做了什么?08【AI】2026 年具身智能模型和世界模型总结09codex app每次打开重连5次Reconnecting问题解决10用了半年 OpenRouter,我换到了 Ofox.ai — 两个 AI API 聚合平台的真实对比