httpd-2.4 characteristics

First, httpd-2.4 Features Overview

Reference website Information: http://httpd.apache.org/docs/2.4/new_features_2_4.html

1.httpd-2.4 official Announcement new Features ( full )

(1) MPM support the operation of the DSO mechanism, in the form of modules on demand loading;

(2) Support event-driven,eventmpm Module production environment is available ;

(3) Support asynchronous read and write;

(4) support each module and each directory separate log level definition ;

(5) Each request related to the professional configuration;<if>

(6) Enhanced version of the expression parser;

(7) Support for the definition of the time limit for persistent connections in milliseconds (keepalivetimeout);

(8) FQDN-based virtual host no longer requires namevirtualhost instructions;

(9) support for new directives,allowoverridelist

(10) Support user-defined variables;

(one) Reduce the consumption of memory

2. new module ( part )

(1) mod_proxy_fcgi: module that supports Apache Server backend Protocol when reverse proxy

(2) mod_proxy_scgi: A module that supports the Python server back-end protocol when acting

(3) mod_proxy_express: Complete dynamic proxy configuration based on expression

(4) Mod_remoteip : Based on IP the access control mechanism has been changed

Some configuration mechanisms have been modified: no longer support the use of Order,deny, allow to do IP-based access control;

... ...

Second, CentOS 7 RPM Installation Configuration httpd-2.4

Master configuration file:/etc/httpd/conf/httpd.conf

Module configuration file:/etc/httpd/conf.modules.d/*.conf

Secondary configuration file:/etc/httpd/conf.d/*.conf

1. switch using MPM

1) MPM: Supplied with DSO mechanism dynamic module , configuration file 00-mpm.conf

[[email protected] ~]# vim/etc/httpd/conf.modules.d/00-mpm.conf Enable module configuration information

Loadmodulempm_name_module modules/mod_mpm_name.so

Name:prefork, event, worker

2) Service control: Systemctl{start|stop|restart|status|reload} httpd.service

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M00/79/CD/wKiom1abbduTFe5_AAC60aTjYDc282.png "title=" 1.png " alt= "Wkiom1abbdutfe5_aac60atjydc282.png"/>

2. Modify the DocumentRoot of ' Main ' server

any page defined by documentroot cannot be accessed by default and must be explicitly authorized

must define <Directory> ... ...<directory> container as CONTROL permission

3. IP-based access control rules

(1) all settings

Allow all hosts to access: Requireall granted

Deny all host access: Requireall deny

(2) controlling specific IP access

Require IP ipaddr: Host access authorized for the specified source address

Require not IP ipaddr: Deny host access to the specified source address

IPADDR:

ip:172.16.100.2

network/mask:172.16.0.0/255.255.0.0

Network/length:172.16.0.0/16

net:172.16

(3) Control specific Host (HOSTNAME) Access

Requirehost HOSTNAME: Authorized host access for the specified source;

Requirenot host HOSTNAME: Deny

which HOSTNAME can be represented in the following format :

FQDN: Specific Host

DOMIN.TLD: Specify all hosts under the domain name

Note: Defining multiple control directives requires the use of containers <RequireAll> ... </requireall> to write

For example: <RequireAll>

Requireall granted

Requirenot IP 172.16.100.2

</RequireAll>

4. Virtual host configuration

The FQDN-based virtual host also no longer requires namevirutalhost instructions;

<VirtualHost*:80>

Servernamewww.b.net

DocumentRoot "/apps/b.net/htdocs"

<directory "/apps/b.net/htdocs" >

Optionsnone

Allowoverridenone

Requireall granted

</Directory>

</VirtualHost>

Note: Pages in any directory can only be accessed by explicit authorization;

5.SSL module: Not much change

#yum install-y Mod_ssl

6. milliseconds Persistent connection length definition :keepalivetimeout #ms

This article from "Xu Ding blog" blog, declined reprint!

httpd-2.4 characteristics