Building Apache Web server Three-scenario simulation of Trilogy

Last Update:2015-03-30 Source: Internet

Author: User

Tags md5 encryption

Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more ＞

One, Apache based on port, IP, domain name access to three types of virtual host configuration method
Comments:
IP and domain name are the same when Port-based
Port and domain name are the same when IP-based
IP and port are the same when domain name is based
1. Port-based
[Email protected] ~]# vim/usr/local/apache2/conf/httpd.conf
Add listening 8080 port

650) this.width=650; "title=" 1.png "src=" Http://s3.51cto.com/wyfs02/M02/5B/FB/wKiom1UYK47h-9GgAAA6YzAF_Yw680.jpg " alt= "Wkiom1uyk47h-9ggaaa6yzaf_yw680.jpg"/>

Turn on child configuration files (secondary virtual host files)

650) this.width=650; "title=" 2.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M01/5B/FB/ Wkiom1uyk8-y6hugaabcpp9_t34382.jpg "alt=" Wkiom1uyk8-y6hugaabcpp9_t34382.jpg "/>

Create the appropriate directory and Web content

650) this.width=650; "title=" 3.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/F5/ Wkiol1uylqqwqbb8aahyrsnurwa610.jpg "alt=" Wkiol1uylqqwqbb8aahyrsnurwa610.jpg "/>

Add a virtual Host
Vim/usr/local/apache2/conf/extra/httpd-vhosts.conf
Comment out Namevirtualhost *:80

650) this.width=650; "title=" 4.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/FB/ Wkiom1uyk9dsya6jaaaisl55lvu640.jpg "alt=" Wkiom1uyk9dsya6jaaaisl55lvu640.jpg "/>

If you do not comment namevirtualhost * 80, the Restart Service will report the following error

650) this.width=650; "title=" 5.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/F5/ Wkiol1uylqqqjywraadeacrhooc730.jpg "alt=" Wkiol1uylqqqjywraadeacrhooc730.jpg "/>

The contents of the virtual host are as follows

650) this.width=650; "title=" 6.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/F5/ Wkiol1uyltwj6xwyaak5xa6so4u995.jpg "alt=" Wkiol1uyltwj6xwyaak5xa6so4u995.jpg "/>

Client Access
Virtual Host 1

650) this.width=650; "title=" 8.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/FB/wKiom1UYK_ Ydjbcaaacffhc9ids116.jpg "alt=" Wkiom1uyk_ydjbcaaacffhc9ids116.jpg "/>

Virtual Host 2

650) this.width=650; "title=" 9.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/F5/ Wkiol1uyltfd38sdaacpz0xgejy826.jpg "alt=" Wkiol1uyltfd38sdaacpz0xgejy826.jpg "/>

2. IP-based
Add IP address 192.168.1.22

650) this.width=650; "title=" 10.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/FB/ Wkiom1uyladrl640aarp41pgrwc192.jpg "alt=" Wkiom1uyladrl640aarp41pgrwc192.jpg "/>

Create a new directory and file

650) this.width=650; "title=" 11.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/F5/ Wkiol1uylwasvk3naagijo0mhv0013.jpg "alt=" Wkiol1uylwasvk3naagijo0mhv0013.jpg "/>

Configuring a virtual Host
[Email protected] ~]# vim/usr/local/apache2/conf/extra/httpd-vhosts.conf

650) this.width=650; "title=" 12.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/FB/ Wkiom1uylc6xycrtaakr0omrm-s603.jpg "alt=" Wkiom1uylc6xycrtaakr0omrm-s603.jpg "/>

Client Testing
Visit 192.168.1.2

650) this.width=650; "title=" 13.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/F5/ Wkiol1uylwmwmo3jaab37phsoim228.jpg "alt=" Wkiol1uylwmwmo3jaab37phsoim228.jpg "/>

Visit 192.168.1.22

650) this.width=650; "title=" 14.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/FB/wKiom1UYLC_ Ry5wjaab_pkbmxs4219.jpg "alt=" Wkiom1uylc_ry5wjaab_pkbmxs4219.jpg "/>

3. Domain-based
Create a new directory and file

650) this.width=650; "title=" 15.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M01/5B/F5/ Wkiol1uylwqbegkiaagsuc92rqs783.jpg "alt=" Wkiol1uylwqbegkiaagsuc92rqs783.jpg "/>

Modifying a virtual Host
[Email protected] ~]# vim/usr/local/apache2/conf/extra/httpd-vhosts.conf

650) this.width=650; "title=" 16.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M01/5B/FB/ Wkiom1uyleyc284qaaj-vhjtvr4778.jpg "alt=" Wkiom1uyleyc284qaaj-vhjtvr4778.jpg "/>

This line is to enable Namevirtualhost *:80
Otherwise the restart Service will report the following error

650) this.width=650; "title=" 17.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/F5/ Wkiol1uylyaxfevaaadp7wsq44s532.jpg "alt=" Wkiol1uylyaxfevaaadp7wsq44s532.jpg "/>

Client Access
Win7 client to do hosts parsing
C:\Windows\System32\drivers\etc\hosts

650) this.width=650; "title=" 18.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/FB/ Wkiom1uyle-tvvsmaam5z15db1m550.jpg "alt=" Wkiom1uyle-tvvsmaam5z15db1m550.jpg "/>

Visit www.a.com

650) this.width=650; "title=" 19.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/F5/ Wkiol1uylyrcax80aab46v0gbc8881.jpg "alt=" Wkiol1uylyrcax80aab46v0gbc8881.jpg "/>

Visit www.b.com

650) this.width=650; "title=" 20.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/FB/ Wkiom1uylfgcxapnaab6hgnyyai568.jpg "alt=" Wkiom1uylfgcxapnaab6hgnyyai568.jpg "/>

Summarize:
When the test is based on one (port, IP, domain name), try to comment out the other two virtual host configuration files to avoid conflicts.
Using a virtual host, be sure to turn on
Include conf/extra/httpd-vhosts.conf in/usr/local/apache2/conf/httpd.conf

For Namevirtualhost in/usr/local/apache2/conf/extra/httpd-vhosts.conf *:80
When Port-based
Comment out #NameVirtualHost *:80
When IP-based
Comment out #NameVirtualHost *:80
When you are based on a domain name
To enable Namevirtualhost *:80
After you change the Apache configuration file, restart the service.

Second, website encryption verification

First make a link to open the appropriate file

650) this.width=650; "title=" 21.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M01/5B/F5/ Wkiol1uylb6bi9esaaj8ua-9vta646.jpg "alt=" Wkiol1uylb6bi9esaaj8ua-9vta646.jpg "/>

Demand:
Only allow IP for 192.168.1.253 clients to access the Web site, and can only be defined by the user (account password Authentication)
1. Create User and password (Htpasswd–c is to create a file –m password MD5 encryption, when creating a second user should remove-c, otherwise it will overwrite the first user.) For existing users, create again, which is equivalent to updating the password. If you do not have the HTPASSWD command, you can install the Httpd-tools tool or call directly
/usr/local/apache2/bin/htpasswd

650) this.width=650; "title=" 22.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/F5/ Wkiol1uylb-rhwpvaahvv1bvhzy272.jpg "alt=" Wkiol1uylb-rhwpvaahvv1bvhzy272.jpg "/>

2. Modify the virtual host configuration file
[Email protected] extra]# vim httpd-vhosts.conf

650) this.width=650; "title=" 23.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M02/5B/FB/ Wkiom1uyliwgpapzaahjb2nin-g527.jpg "alt=" Wkiom1uyliwgpapzaahjb2nin-g527.jpg "/>

AuthName Jiami prompts the user for the message "Jiami"
AuthType Basic Identification method is basic
authuserfile/usr/local/apache2/conf/users specifies the path and file name of the authentication user name password
Require valid-user a legitimate user to access (user in the users file above)
Order Allow,deny allow to be rejected first
Allow from 192.168.1.253 only Client access with IP 192.168.1.253
Note: Require user User1 if you want to make it accessible to some users in user User2
User names are separated by a space and are accessible only to the listed users.
Common code
Require all granted #允许所有
Require all denied #拒绝所有
Require env Env-var [Env-var] ... #允许, match any of the environment variables
Require method Http-method [Http-method] ... #允许, specific HTTP methods
Require expr expression #允许, true
Require user userid [userid] ... #允许, specific users
Require group Group-name [Group-name] ... #允许, specific user groups
Require Valid-user # #允许, active Users
Require IP 172.20 192.168.2 #允许 specific IP

3. Client Access
Win7 Client Access (Win7 client IP is 192.168.1.253), enter the account password to access.

650) this.width=650; "title=" 24.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/F5/ Wkiol1uylchb4wymaaeiaholrqs500.jpg "alt=" Wkiol1uylchb4wymaaeiaholrqs500.jpg "/>

650) this.width=650; "title=" 25.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M00/5B/FB/ Wkiom1uylimxo6zsaad8x8wwyzs270.jpg "alt=" Wkiom1uylimxo6zsaad8x8wwyzs270.jpg "/>

Linux No access (Linux client IP is 192.168.1.3)

650) this.width=650; "title=" 26.png "style=" Float:none; "src=" http://s3.51cto.com/wyfs02/M01/5B/F5/ Wkiol1uylcarytjeaaj_nbgnxzg888.jpg "alt=" Wkiol1uylcarytjeaaj_nbgnxzg888.jpg "/>

This article from "Step by step into the Linux World" blog, reproduced please contact the author!

Building Apache Web server Three-scenario simulation of Trilogy

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

Sales Support

1 on 1 presale consultation

Chat Contact Sales
After-Sales Support

24/7 Technical Support 6 Free Tickets per Quarter Faster Response

Open a Ticket
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

Learn More